Protecting Digital Economy through Vulnerability Coordination Center
1. Public Slide
Protecting Digital Economy through
Vulnerability Coordination Center
Girindro Pringgo Digdo
girindigdo@pm.me
State Cyber and Cryptography Agency
Meetup and Information Sharing on Cyber Security
Jakarta, July 18th 2018
2. About
• Security Consultant @ Sg Company
• Holds: CSX-F, OSCP
• Focused on Application Security
• Founder of CyberArmy.ID
• Books Author
26. Steps (1)
• Preparation (Before Incident)
✓ Establishing policy and warning banners
✓ Identify which business are important
✓ Backup Server
✓ Security awareness to all parties in Organization
✓ Rules fine tuning
✓ Up to date
✓ Using strong passphrase
✓ P&P (Patch & Pray)
✓ …
27. Steps (2)
• Incident / Disaster Strikes
✓ Isolation
✓ Using 2nd server with the most recent version of backups
✓ Monitor all activities
✓ Block all incoming suspicious requests
✓ …
28. Steps (3)
• Post Incident
✓ Lesson learned
✓ Restoring operations to normal
✓ Better wipe out all files, change with a new fresh apps
✓ Ensuring that no vulnerabilities remain
✓ Improving defences
✓ Performing vulnerability analysis
✓ Standardized
✓ …