ISO/IEC 27001:2013 (ISMS)

transcript

Security Intelligence

Prinya Hom-anekCISSP, CSSLP, CISA, CISM, SSCP, CFE, CBCI, CGEIT, CRISC,

(ISC)2 Asian Advisory Council Member; ISACA Thailand - Committee,

Thailand Information Security Association (TISA) – VP & Committee ,

ACIS Professional Center Co., Ltd. - President and Founder, Cybertron Co., Ltd.,

We have been certified to

standards.

ISO 22301:2012 (BCMS)

ISO/IEC 27001:2013 (ISMS)

ISO/IEC 20000-1:2011 (IT-SMS)

ACIS PROFESSIONAL CENTER

Cyber is the Modern Battlefield

การเปลยนแปลงครงยงใหญของแนวความคดความมนคงปลอดภยไซเบอรในยค S M C I(Social, Mobile, Cloud and Information/Big Data)

www.acisonline.net

CISSP, SSCP, CSSLP, CISA, CISM, CRISC, CGEIT, CASP, ITIL Expert

President and Founder, ACIS Professional Center Co., Ltd.

E-mail: prinya@acisonline.netwww.facebook.com/prinyah

www.twitter.com/prinyaACIS (@prinyaacis)

About Me, ACIS and Cybertron

Security intelligence

แนวโนมเทคโนโลยของโลกทก ำลงเขำมำเปลยนแปลงชวตประจ ำวนของชำวโลกในศตวรรษท 21

The World has Changed

Internet of Things

Cybersecurity Environment

Strategic IT-GRC and Cybersecurity Risk Awareness in Digital Economy: Cybersecurity Resilience Framework and Implementation in Action 6

Challenges, Threats, Risks, Opportunities

We have been certified to standards.

ISO 22301:2012 (BCMS)

ISO/IEC 20000-1:2011 (IT-SMS)

We have been certified to standards.

ISO 22301:2012 (BCMS)

ISO/IEC 20000-1:2011 (IT-SMS)

“S-M-C-I” Era : The Nexus of Disruptive Forces

"Challenging in Digital Economy : The Nexus between Cybersecurityand Privacy Protection”

S-M-I-C ERA : Risks vs. Oppotunities

Mega IT Trends: Social, Mobile, Cloud, Big Data Analytics

Security intelligence

Source: Global Risks Report 2016, World Economic Forum

Cyber Attack News Update

Tesco Bank Hacked Cyber Fraudsters Stole Money From 20,000 Accounts

Source : http://thehackernews.com/2016/11/tesco-bank-hack.html

Someone is Using Mirai Botnet to Shut Down Internet for an Entire Country

Source : http://thehackernews.com/2016/11/ddos-attack-mirai-botnet.html

Danish Payment Processing Firm Suffers Breach 100k Credit Cards Stolen

Source : https://www.hackread.com/danish-payment-processing-data-breach/

Major Ransomware Attack Shuts Down Entire National Health Service System

Source : https://www.hackread.com/ransomware-attack-on-nhs-system/

Red Cross Data Leak; Personal Data of 550,000 Blood Donors Stolen

Source : https://www.hackread.com/red-cross-blood-donors-data-leak/

Google discloses Critical Windows Zero-Day that makes all Windows Users Vulnerable

Source : http://thehackernews.com/2016/10/google-windows-zero-day.html?m=1

Millions of Android Devices Vulnerable to DRAMMER Attack

Source : https://www.hackread.com/android-vulnerable-to-drammer-attack/

Mirai Botnet Linked to Massive DDoS Attacks on Dyn DNS

Source : https://www.hackread.com/mirai-botnet-linked-to-dyn-dns-ddos-attacks/

DDoS attack on Dyn involved 10s of millions of hacked IP addresses

Source : https://www.hackread.com/dyn-ddos-attack-millions-ip-addresses/

Chip and Pin Hack spits out cash

Source: http://www.bbc.com/news/technology-36971832

An ATM hack and a PIN-pad hack show chip

cards aren’t impervious to fraud

Source: http://arstechnica.com/security/2016/08/an-atm-hack-and-a-pin-pad-hack-show-chip-cards-arent-impervious-to-fraud/

Swift Hack Probe Expands to Up to a Dozen

Banks Beyond Bangladesh

Source: http://www.bloomberg.com/news/articles/2016-05-26/swift-hack-probe-expands-to-up-to-dozen-banks-beyond-bangladesh

Swift hackers steal $10 millions from

Ukrainian bank

Source: http://thehackernews.com/2016/06/ukrainian-bank-swift-hack.html

Source: http://www.bbc.co.uk/news/business-36473912

US warns of hacking threat to interbank

payment network

Four Lessons to Learn From the SWIFT Hacks

Source: http://www.infosecurity-magazine.com/opinions/four-lessons-to-learn-from-the/

Source: https://www.wired.com/2014/03/bitcoin-exchange/

The Inside Story of Mt. Gox,

Bitcoin’s $460 Million Disaster

Hackers Steal $72 Million in Bitcoin

From Hong Kong Exchange

Source: http://gizmodo.com/hackers-steal-72-million-in-bitcoin-from-honk-kong-exc-1784757592

Bitcoin tumbles after HK exchange ‘hacked’

Source : http://www.thestar.com.my/business/business-news/2016/08/03/bitcoin-tanks-after-hong-kong-exchange-hacked/

Bitcoin Price Drops 20% After $72 Million in Bitcoin Stolen from Bitfinex Exchange

Source : http://thehackernews.com/2016/08/bitcoin-exchange-price.html

Vitalik Buterin - Founder, Ethereum (Age 22)

How a $50M hack changed the fate of Ethereum,Bitcoin's closest competitor

Source : http://www.cbc.ca/news/technology/ethereum-hack-blockchain-fork-bitcoin-1.3719009

A $50 Million Hack Just Showed That the DAO

Was All Too Human

Source: https://www.wired.com/2016/06/50-million-hack-just-showed-dao-human/

Hacked BitcoinTalk.org User Data Goes Up For Sale On Dark Web

Source : https://www.cryptocoinsnews.com/hacked-bitcointalk-org-user-data-goes-up-for-sale-on-dark-web/

BlockChain.info Domain Hijacked8 Million Bitcoin Wallets Inaccessible

Source : http://thehackernews.com/2016/10/blockchain-bitcoin-website.html

Security intelligence360o Cybersecurity : Fraud and Cyber Risks in e-Payment Services

Acknowledgements

Prinya Hom-anekCISSP, SSCP, CSSLP, CISA, CISM, CRISC, CGEIT, CASP, ITIL Expert,

ISACA Cybersecurity Nexus, COBIT 5 implementation, IAPP Foundation

President and Founder, ACIS Professional Center Co., Ltd.

CEO, Cybertron Co., Ltd.

ผอ ำนวยกำรศนยกำรรกษำควำมมนคงปลอดภยทำงไซเบอร มหำวทยำลยรงต

Strategic IT-GRC and Cybersecurity Risk-Awareness: Transforming Cybersecurity of Things and Literacy in Digital Economy 47

“พบมลแวรและเครอขำยบอทเนตยงคงท ำงำนอยตงแตป พ.ศ. 2557

ในเครองคอมพวเตอรของประเทศไทยกวำหนงแนเครอง

Top 10 Asia under Cyber Attack

Malware Infection Index* for ASEAN for the first quarter of 2015

India remains the most infected country, while Indonesia is no. 5 globally, and China is 8th.

Thailand is number 5 of malware detections in Asia and 11th globally among the top 25 list.

Top ranked malwares in Asia are B106 (Bladabindi/Jenxcus), Conficker, Ramnit, Sireref and Citadel respectively.

Source: Microsoft https://www.facebook.com/MicrosoftDCU/ https://news.microsoft.com/presskits/dcu/

Worldwide Threat AssessmentMicrosoft Security Intelligence Report

Source: [https://www.microsoft.com/security/sir/default.aspx]

Figure F: Average number of Simda-infected devices connecting to the sinkhold each month, April-July, 2015Figure E: Drive-by download pages indexed by Bing at the end of 2Q15 per 1,000 URLs in each country/regionFigure C: Infection rates by country/region in 2Q15 Figure B: Encounter rates by country/region in 2Q15 Figure D: Phishing sites per 1,000 Internet hosts for locations around the world in 1H15Figure A: Malware distribution sites per 1,000 Internet hosts for locations around the world in 1H15

Security Incidents in 2015

Data Breach Investigation Report, Verizon

Source: [https://www.microsoft.com/security/sir/default.aspx]

“Shadow IT” : The New IT Problem that comes with “Cloud Computing”

The World & ASEAN Cybersecurity

Trends and Current Situation

www.acisonline.net

ACIS Professional Center Co., Ltd. CYBERTRON Co., Ltd.

ITG-COBIT5-introduction v1.1 Security Intelligence

Internet of Things, Internet of Trust

INTERNETOF

THINGS

SECURITY

PRIVACY

Source: [“ACIS Top Ten Cybersecurity Threats and Trends”, ACIS-Research, www.acisonline.net]

Internet of Things, Internet of Trust

Internet of Threats

Internet

of Trust

Internet of Everything

Security of Things

Security-driven architecture

Big Data

Data Science

Internet of Things

Integrated Risk-based

approach

Hackingindustry

Undefined threats

vulnerableSupplier

Identity of Things

PrivacyInformationof Things

Source: [“ACIS Top Ten Cybersecurity Threats and Trends”, ACIS-Research, www.acisonline.net]

56Source: “ACIS/Cybertron Top Ten Cybersecurity Trends for 2016”, ACIS Research; www.acisonline.net

1. Emerging Hacking Industry

2. Undefined, Unknown Threats at Risk

3. Security of Things, Internet of Trust

4. Security-driven Architecture

5. Vulnerable Third-party

6. Information of Things and Data Science Revolution

7. The Rise of Generation C : Digital Lifestyle in Digital Economy

8. Cybersecurity Centric and Cyber Resilience in Action

9. Increasing in Cybersecurity Capabilities and Competence Gap

10. Integrated Risk-Based Approach Standards & Best Practices

57Source: “ACIS Top IT & Cybersecurity Threats and Trends for 2016”, ACIS Research; www.acisonline.net

10. Integrated Risk-Based Approaches and Standards

9. IT-related & Security Capabilities and Competence Gap

4. Security-driven architecture

3. Security of Thing, Internet of Trust

1. Emerging Hacking Industry

2. Undefined Unknown Threats at Risk

7. C-Generation: Gen-C Lifestyle in Digital Economy

5. Vulnerable Suppliers,

Service Provider

6. Information of Thing and Data Science Revolution

8. Cybersecurity Centric and Resilience in Action

C-Generation: Gen-C Life StyleGen C คอกำรกำวขำม Demographic ไปส Psychographic

source: K. Nuttaputch

58Source: http://www.zocialinc.com/blog/genc-behavior/ ; http://www.positioningmag.com/content/61576

“CONNECTED”

1. Connection

2. Convenience

3. Creation

4. Curation

5. Community

C-Generation: Gen-C Life Style

59Source: http://www.zocialinc.com/blog/genc-behavior/ ; http://www.positioningmag.com/content/61576

4 Types of Hackers

1. Hacktivism

2. Cyber Crime (make $$$)

3. Cyber Espionage (need IP)

4. Cyber Warfare

State-Sponsored Attack

State-Act Attack

Emerging

Hacking

Industry

Source: “Top Cybersecurity Threats and Trends for 2016”, ACIS Research; www.acisonline.net

ISF’s Marketplace of Attacks is Evolving

Information Security Forum Threat Horizon 2014 Priview 61

ISF’s Motives, Impacts, and Adversaries

Information Security Forum Threat Horizon 2014 Priview 62

Reconnaiss

Weaponizat

ionDelivery Exploitation Installation C2

Actions on

Intent

Top MalWare File Extensions

Bahtgrabber: Now It’s Not Just Euro

Mobile MalWare on Android Devices

Real case in Thailand

21-Nov-1666Source: The Knowledge from Gartner Symposium ITxpo; Top 10 Strategic Technology Trends for 2013

21-Nov-1667Source: The Knowledge from Gartner Symposium ITxpo; Top 10 Strategic Technology Trends for 2013

ITBN CONF-EXPO

In the August 2008 Russia used DDoS and defacing operations to Georgian news sites and government offices.

USA has a plan for assimilating cyberattack abilities in the military commands as part of every operative plan, and setting up attack groups within these commands.

Beijing’s hackers continue to conduct cyber attacks on government and private networks.

“Cyber warfare is REAL”

ITBN CONF-EXPO

Who are the cyberwar superpowers?Source : World Economic Forum

ITBN CONF-EXPO

Who are the cyberwar superpowers?Source : World Economic Forum

ITBN CONF-EXPO

The best hacking country in the WorldSource : Abbas Naderi,Quora

There are two factors in making nation advanced in cyber crime capabilities

Lawlessness Technological Advancement

The more free of law hackers are in a country, the more practice they get, and the better they become.

The more technological advanced a country is, the more people canbecome hackers.

ITBN CONF-EXPO

The best hacking country in the WorldSource : Abbas Naderi,Quora

Traditional IoT hacking by using Shodan

Shodan – Search for Vulnerable CCTV

ISF’s Cybersecurity and Cyber Resilience

Paradigm Shift in Cybersecurity 76

Build cyber resilience into your

organisation

• Organisation’s capability to

withstand impacts from threats

meterialising in cyberspace

• Covers all threats – even the

one we don’t know about

• Driven by agile, broader risk

management, linking

information risk to ERM

Source: “Cybersecurity strategies”, Information Security Forum (ISF), www.securityforum.org

www.cdicconference.comwww.cdicconference.com 77

Internet of Things - Internet of Threats - Internet of Trust

Cybersecurity Resilience Framework

in Actions

Stage 1 : Information Security

Stage 2 : Cybersecurity

Stage 3 : Cybersecurity Resilience

Research from ACIS/Cybertron Cyber LAB

Hidden Security and Privacy Threats on Mobile Applications

Research from ACIS/Cybertron Cyber LAB

Hidden Behaviors and Processes on Mobile Applicationssource : Pradeo, France

Bridging into the Underground Threats

Prinya Hom-anek,

CISSP, SSCP, CSSLP, CISA, CISM, CRISC, CGEIT,

CASP, ISACA Cybersecurity Nexus, ITIL Expert, IAPP Foundation

ACIS Professional Center Co., Ltd. & Cybertron Co’, Ltd.

Bangkok, Thailand

www.acisonline.net

“If you know the enemy and know yourself, you need not fear the result of a hundred battles.

If you know yourself but not the enemy, for every victory gained you will also suffer a defeat.

If you know neither the enemy nor yourself, you will succumb in every battle.”

Sun Tzu’s Quote, ”The Art of War”

Understand

Dark Web, Deep Web vs. Surface Web

www.acisonline.net

Security IntelligenceITG-COBIT5-introduction v1.1 Security Intelligence

Case Study :

“MalWare in the Darknet”

www.acisonline.net

1. “SkyNet : A Tor Botnet”

2. “Atrax Crimekit”

3. “Citadel Trojan : Malware-as-service”

How to response the undefined threats

www.acisonline.net

ISF’s Cyber Security and Cyber Resilience

Source: “Cyber Security strategies achieving cyber resilience”, Information Security Forum (ISF), www.securityforum.org

DHS Cybersecurity Resilience

From The World Real-time Cyber Attack Map

• Cybersecurity is “An Executive-Level Concern”

• Cybersecurity is “A Full Time Activity”

• Cybersecurity is “A Business Imperative”

การเปลยนแปลงครงยงใหญของแนวความคดความมนคงปลอดภยไซเบอรในยค S M C I(Social, Mobile, Cloud and Information/Big Data)

www.acisonline.net

Certified ISO/IEC 27001:2005© Copyright , ACIS Professional Center Company Limited

Paradigm Shift in Cybersecurity

“From preventive to responsive”

Business Impact and Time

Manage and Mitigate

“REPUTATION RISK”

Credit : Responsive Security , Dr. Meng-Chow Kang

Security Factors : Time-based Security Responsive Security

Protective Control

Detective Control

Corrective control

Focus on “Responsiveness Readiness”

Focus on “Protective controls”

From “Time-based Security” to “Responsive Security”

Are we Secure?Are we Ready?

Fortress MentalityResponsive & Readiness Mentality

Credit : Responsive Security , Dr. Meng-Chow Kang

President Executive Order ( EO) 13636 “Improving Critical Infrastructure Cybersecurity”, February 2013.

ACIS Strategic IT-GRC and Cybersecurity Risk Awareness in Digital Economy: Cybersecurity Resilience Framework and Implementation in Action 103

NIST: Framework for Improving

Critical Infrastructure Cybersecurity

ACIS Strategic IT-GRC and Cybersecurity Risk Awareness in Digital Economy: Cybersecurity Resilience Framework and Implementation in Action 104

Cybersecurity Framework

for Critical Infrastructure

Cybersecurity Framework

Identify

Vulnerability Assessment

Penetration Testing

Risk Assessment

Business Impact Analysis

Protect

Cyber Drill & Awareness Training

Critical System Hardening

Detect

Outsource Log Monitoring

IT Audit

Respond

Incident Response

Digital Forensics

Recover BCP & DRP

Cybersecurity Resilience Framework Gap Analysis

Current State vs Target State

Benchmarking between your organization and Industries

012345ID.AM

ID.BEID.GV

PR.DSPR.IP

PR.PTDE.AE

DE.CMDE.DP

RC.RPRC.IM

Oil and Gas

Financial

Regulator

Target

012345Identify

Protect

DetectRespons

RecoverOil and Gas

Financial

Regulator

Target

CsP-MICS (NexusFour) Model and Cybersecurity Resilience Framework

CYBERSECURITY RESILIENCE FRAMEWORK

Organizational (Business) Perspective Organizational IT-related and Cybersecurity Perspective

SECURITY PRIVACY

RESILIENCE

SUSTAINABILITY

Cybersecurity Resilience

Cybersecurity Environments[NexusFour: Mobile, Big Data (Information), Cloud, Social]

Cybersecurity Centric

Balancing

SUSTAINABILITY

RESILIENCE

EXCELLENCE

Business Resilience

Organizational Resilience

Integrated GRC

Holistic Conceptual Thinking View

ACIS-Cybertron Cybersecurity Resilience Framework 112

Stage 3 : Cyber Resilience

SECURITY PRIVACY

RESILIENCE

SUSTAINABILITY

Cybersecurity Resilience

Cybersecurity Environments[NexusFour: Mobile, Big Data (Information), Cloud, Social]

Cybersecurity Centric

Balancing

RESILIENCE

SECURITY PRIVACY

Holistic Conceptual Thinking View

Internet of Things - Internet of Threats - Internet of Trust

CsP-MICS (NexusFour)

Cybersecurity Resilience Framework

in Actions

References

1. ISF : Cyber Security Strategy

2. ISACA : Cyber Security Nexus (CSX)

3. ISO : ISO/IEC 27032:2012, IT -- Security techniques -- Guidelines for Cybersecurity

4. NICE : National Cybersecurity Workforce Framework

5. NIST : NIST Cybersecurity Framework

6. US-CERT : Cyber Resilience Review (CRR)

7. ENISA : National Cyber Security Strategies

8. ITU : National Cyber Security Strategies Guide

9. Book : Time Based Security, Winn Schwartau

10. Book : Responsive Security, Dr. Meng Chow Kang

References

Determine

Establish

Define

Implement

Exercise

Review

Establish Cybersecurity Programme

Study Cybersecurity Requirements

Define Cybersecurity Controls

and Resilience Strategy

Implement Resilience Solutions

Exercise, Maintain, Evaluate

Review Cybersecurity Assurance

Determine Cybersecurity Environments

Cybersecurity Objectives and Goals

prepared,

be ready to be secured

Identify

Protect

Detect

Respond

Recover

before security incident/data breach

after security incident/data breach

maintain plans for

resilience, restore to normal operations

Core Functions to achieve specific cybersecurity outcomes

ACIS-Cybertron: Cybersecurity Resilience Framework Implementation

Assuranceassure that all related

solutions having executed effectively

ACIS-Cybertron: Cybersecurity Resilience Framework Implementation

<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<< t = 0 >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>

Identify & Protect (be ready to be secured)

Business Impact Analysis (BIA)

Cybersecurity Gap Analysis/

Cyber Risk Assessment

based on Risk Scenario

Vulnerability Assessment,

Compromised Assessment /

Penetration Testing

Cybersecurity Awareness

Training

Develop Cyber Drill Scenario/

Cyber Incident Response Plan

Exercise Cyber Drill

Detect (t<0) (before security incident

/data breach)

24x7 Managed Next-Gen SOC

Threat Intelligence

Big Data Analytics

Social Listening/Analytics

Advanced APT/

Malware In-Depth Analytics

Pre-Crisis Management

Event Management

Respond (t>0) (after security incident

/data breach)

Incident Response &

Incident Handling

Incident Management/

Problem Management

Digital Forensics and

Investigation

APT/Malware Hunting

Crisis Management

Root Cause Analysis

Post-Respond Report

Law Enforcement Coordination

ACIS Internal Cyber Drill Result

Are we ready for Digital Economy ?

National Cybersecurity Capacity Maturity Model (CMM)

Structure of National Cybersecurity Capacity Maturity Model (CMM)

มต มทงหมด 5 มตซ งเปนการจดหมวดหมของขดความสามารถดานความมนคงปลอดภยไซเบอร

ปจจย อธบายความหมายของคณลกษณะของความมนคงปลอดภยไซเบอรในแตละมต

องคประกอบของแตละปจจย เปนองคประกอบทแตกตางกนของแตละปจจย ซงองคประกอบเหลานจะแสดงใหเหนถงตวบงช เปนกลมยอยๆทสามารถเขาใจไดงาย

ระดบวฒภาวะ เปนความกาวหนาการพฒนาระดบวฒภาวะในแตละประเทศทสอดคลองกบปจจยและองคประกอบดานความมนคงปลอดภยไซเบอรของประเทศนนๆ

ตวบงช อธบายขนตอน กระบวนการ ทบงชถงลกษณะเฉพาะเจาะจงของในแตละระดบ ปจจยทเกยวของ และ องคประกอบของแตละปจจยทง 5 มต

1. Cybersecurity

Policy and

Strategy

2. Cyber

Culture and

Society

3. Cybersecurity

Education,

Training and

Skills

4. Legal and

Regulatory

Frameworks

5. Standards,

Organizations,

Technologies

- National Cybersecurity Strategy

- Incident Response

- Critical Infrastructure (CI) Protection

- Crisis Management

- Cyber Defense Consideration

- Communications Redundancy

- Cybersecurity Mind-set

- Trust and Confidence on the Internet

- User Understanding of Personal Information

Protection Online

- Reporting Mechanisms

- Media and Social Media

- Awareness Raising

- Framework for Education

- Framework for Professional

Training

- Legal Frameworks

- Criminal Justice System

- Formal and Informal Cooperation

Frameworks to Combat Cybercrime

- Adherence to Standards

- Internet Infrastructure Resilience

- Software Quality

- Technical Security Controls

- Cryptographic Controls

- Cybersecurity Marketplace

- Responsible Disclosure Cybercrime

Five Dimensions of CMM

Stages of Maturity

Start-up

Formative

Established

Strategic

Dynamic

เปนระดบทเพงเรมอภปรายเกยวกบการสรางความมนคงปลอดภยไซเบอร แตยงไมมการกระท าทเปนรปธรรม

เปนระดบทมบางองคประกอบของแตละปจจยไดเรมปฏบตกนแลว แตยงอยในข นตอนการสาธต

เปนระดบทองคประกอบตางๆถกน าไปใช มการจดสรรทรพยากร และมคาเสยโอกาสทตองตดสนใจ

เปนระดบทปจจยตางๆขนอยกบระดบชาตหรอสภาวะแวดลอมขององคกร

เปนระดบทมความชดเจนในดานกลไกน าไปส

การเปลยนแปลงกลยทธทข นอยกบภยคกคามไซเบอรทเกดขนจรงในปจจบน

Benefit of CMM

1. Cybersecurity

Policy and

Strategy

2. Cyber

Culture and

Society

3. Cybersecurity

Education,

Training and

Skills

4. Legal and

Regulatory

Frameworks

5. Standards,

Organizations,

Technologies

Worldwide capacity acceptance

Your capacity

Gap for Improvement

Cybersecurity is “A Full Time Activity”

Cybersecurity is “A Business Imperative”

Cybersecurity is “An Executive-Level Concern”

Source: “Cybersecurity for Executive” book, Gregory J. Touhill and C.Joseph Touhill

The Real Meaning of Cybersecurity

Cyber Warfare is REAL

Collaboration

more powerful than ever to improve cybersecurity

Email : prinya@acisonline.net

Facebook : www.facebook.com/prinyah

Facebook search : prinya hom-anek

Twitter: www.twitter.com/prinyaACIS (@prinyaacis)

www.TISA.or.th ,

Thailand Information Security Association (TISA)

www.cdicconference.com

Cyber Defense Initiative Conference 2015

www.acisonline.net

ACIS Professional Center Co., Ltd.

www.youtube.com/thehackertv

www.youtube.com/thecyber911

The Hacker TV Programme 20:55 Monday-Friday

Update Your Cybersecurity Knowledge

The Hacker ทาง Nation TV ทกวนจนทร – ศกร เวลา 20.50-21:00 น.www.youtube.com/thehackerTV

วทยครอบครวขาว FM 106.00 MHz ทกวนพฤหสบด เวลา 17:30-17:45 น.

รายการทน ไทยพบเอส ชวงคดยกก าลงสอง ทกวนพธ เวลา 21.45 – 22.00 น.

21-Nov-16 132

วทยาลยเทคโนโลยสารสนเทศและการสอสาร มหาวทยาลยรงสต

รน 2 : มกราคม 2559

Thank you very much

www.acisonline.net

ISO/IEC 27001:2013 (ISMS)

Documents