Auflistung nach Autor:in "Stöckli, Dario"
Gerade angezeigt 1 - 3 von 3
- Treffer pro Seite
- Sortieroptionen
Publikation Endpoint - Cybersecurity Controls, Safeguards, Policies & Management(Hochschule für Wirtschaft FHNW, 2019) Miccoli, Alexandre; Roggwiller, Cedric; Stöckli, Dario; Felley, Gabriel; Brother International Europe Ltd, MANCHESTER, UNITED KINGDOM M34 5JE UNITED KINGDOMBrother has adopted the CIS20 framework to work with, but still must create business reasoning and an assessment on each control to determine if safeguards are appropriate, including what level of investment in safeguards is reasonable. The goal of this project is to articulate an endpoint device management policy for Brother Europe, based on the risk assessment and proper safeguard analysis. Additionally, the organization is looking to adopt device management using the Microsoft Azure based Enterprise Mobile Security (EMS) E3 level toolset. At the start of the project, management of some device types (e.g.: mobile phones, tablets) has already been configured for Europe with some basic management and security controls. Since EMS E3 licenses are quite expensive, Brother wants to ensure that the purchase of around 1'500 licenses makes sense, which is why a proof of concept shall be conducted.11 - Studentische ArbeitPublikation Securing IoMT – A Case Study in a Swiss Hospital(Hochschule für Wirtschaft FHNW, 2022) Stöckli, Dario; Scherb, ChristopherHospitals are considered critical infrastructure. Medical device connectivity is rapidly growing and with it is the potential attack surface. Healthcare delivery organizations face an increasing challenge trying to secure medical technology due to a myriad of reasons elaborated in this work. Every stakeholder is ultimately responsible to limit the attack surface of medical devices and perform their due diligence, this includes the hospitals. This work specifically targets, investigates, and concentrates on the deficiencies and potential countermeasures that hospitals should take in order to securely operate IoMT devices. The findings and deliverables were created on the basis of literature research and a primary data collection effort through a case study with interviews and observations conducted in a Swiss general hospital. The case study mostly corroborated the literature research’s findings and provided additional insight into the maturity of the hospital. Some considerable information security gaps in the medical device security field were confirmed, for which this work suggested a systematic remediation approach.11 - Studentische ArbeitPublikation Security Operations Center Strategy - Introducing a Network Detection and Response System(Hochschule für Wirtschaft FHNW, 2020) Stöckli, Dario; Felley, Gabriel; Kantonsspital Baden AG, Baden AGAdministrative: The hospital is in need of working out a proper security operations center strategy for the years to come. By doing so, it wants to improve its cyber security maturity and visibility across the infrastructure to better react to threats in the environment. Technical: The hospital is looking into purchasing and operating a Network Detection and Response system (NDR). No solution has been evaluated, installed or configured yet, which is all part of this thesis.11 - Studentische Arbeit