October 6, 2011
10:00am: Registration
11:30 AM : ISE West Nominee Welcome Luncheon & Presentation *Invitation Only
Location: Ambassador 2, 2nd floor
Dr. Eric Cole, PhD
Faculty Fellow & Course Author
SANS
Fighting Off an Advanced Persistent Threat and Defending Infrastructure and Data
Today's cybercrime industry is thriving and has transformed itself to improve efficiency, scalability and profitability through the introduction of Advanced Persistent Threats (APTs). The latest in cyber-risk, APTs are a broad pallet of attack possibilities that enabling attackers to break into systems, avoid detection, and maintain long-term access to compromised networks. Confronting the threat does not always require the implementation of new technologies but it does require rethinking some of the strategies that companies may be adopting to protecting data.
In this in-depth presentation, Dr. Eric Cole will present the following:
- Importance of sharing communication best practices to articulate risk across your organization to eliminate potential backdoors
- How to identify an APT and then implement a remediation plan that includes the collection and review audit information with regards to accessing sensitive assets.
- Understand how multiple vulnerabilities and social engineering techniques can be linked into a single attack
- How APT’s are designed for long-term espionage - siphoning off Microsoft Office files and PDFs to achieve desired objectives of penetrating your organization
- Importance of educating end users to help them understand their role in stopping social engineering techniques
- Continuously look for gaps that may appear in security infrastructure
During the ISE Northeast Sponsor Pavilion and Dinner Buffet, Dr. Eric Cole will sign his book, “Network Security Bible” at the Core Security Booth.
1:00 PM : Welcoming Remarks and Introductions
Location: Ambassador 3, 2nd Floor
Marci McCarthy
CEO and President of T.E.N.
CEO and Chairman of ISE® Talent
Biography
1:15 PM : Keynote Address
Location: Ambassador 3, 2nd Floor
John Masserini
Chief Information Security Officer
Miami Holdings, Inc.
ISE® Northeast Executive Award Winner 2010
ISE® North America Executive Award Finalist 2010
Why Information Security is a Top of Mind Issue for Everyone > Download Presentation
Before the digital revolution, security professionals were kept awake at night worrying about the potential threat posed by an untrustworthy member of their organization Now with insider threats, social engineering, spear phishing, legitimate websites hosting malware as well as blended threats with multiple infection vectors being commonplace and the rapid adoption of cloud and mobile computing, Information Security Executives are being asked by the C-Suite, Board of Directors, lines of business leaders, end-users and customers and partners alike about what is being done to combat these threats.
In this keynote presentation, John will share how to articulate that information security has become a business enabler and is critical to organizations. This presentation explores information security from a business point of view with the premise that investing the time and resources needed for security risk mitigation produces excellent returns from a business perspective. Additionally, this presentation explains ways of measuring the value of information security and ensuring that security investments yield suitable business returns across the enterprise.
2:15 PM : Interactive Executive Roundtables
Location: Ambassador 3, 2nd Floor
The Interactive Executive Roundtables brings together ISE® Nominees, industry leaders, invited guests, and sponsor delegates to meet each other and join in interactive discussions on key industry issues as well as share best practices. The interactive roundtable discussions are hosted by our ISE® Judges and Nominees.
View Roundtable Topics and Guest Moderators
3:30 PM : Break
2:55 PM : Nominee Showcase Presentations
Location: Ambassador 3, 2nd Floor
Peter Lassig
Global Head of Risk Management, Border Controls
Deutsche Bank
Biography
Markus Sanio
Global Lead for GT Security
Deutsche Bank
Biography
Managing Risk and Remediation through Global Interactive Security Heat Mapping > Download Presentation
ITSET Demo Innovation Day Flyer
In this presentation, Peter Lassig and Markus Sanio will discuss the IT Security Exposure Tool (ITSET) that delivers a Global interactive Security Heat Mapping model that identifies IT security exposures and guides the prioritization of re-mediation efforts. ITSET delivers an interactive Global Technology wide application-centric Heat Mapping model, identifying IT security risks in order to prioritize re-mediation and exposure reduction efforts. Join this presentation to learn more about how the application layers are visualized in a dynamic component tree with drill down capabilities for risk evaluation. All the information is pulled directly from global asset repositories including location, ownership and support group information.
James Beeson
Chief Information Security Officer
GE Capital
Compliance with the Dodd-Frank Act—Highly Privileged Access Monitoring and Control > Download Presentation
Mike Parella and James Beeson will share their Highly Privileged Access Monitoring and Control project they used to prepare GE Capital for operating under stricter regulatory standards imposed by the federal government through the Dodd-Frank Act. The project involved establishing an operational definition of file transmission and implementing technology to prohibit the egress of sensitive information while enabling such data to flow freely within the organization from secure source to secure destination without impeding business processes. This presentation will showcase how the Verdasys Digital Guardian Enterprise Information Protection platform was the cornerstone of a transparent and user-aware solution that provides monitoring, identification, control and blocking capabilities to ensure that administrators cannot mishandle sensitive and confidential HPA information residing on mission-critical Windows servers.
Cathy Beech
Chief Information Security Officer
Children's Hospital of Philadelphia
Role Based Security > Download Presentation
In this presentation, Cathy Beech will talk through the steps CHOP took to establish a dedicated Information Security team to support the development, implementation, deployment, and maintenance of the new role based security model as part of the Hospital’s implementation of its integrated electronic medical record (EMR) system for its entire healthcare network. Join Cathy as she discusses how this project established standardized roles across the Hospital within the EPIC system and established the foundation for our Role Based Access Control (RBAC) and User Provisioning projects that will begin in fiscal year 2012.
5:00 PM : VIP Reception (invitation only)
Location: Pearl, 9th Floor
ISE® Nominees, sponsors and special guests will have the opportunity to network in a private setting with beverages and appetizers.
6:00 PM : Sponsor Pavilion and Dinner Buffet
Location: New York Atrium, 9th floor
Guests enjoy gourmet dinner while networking and meeting the sponsors. Honoring and celebrating the award nominees for 2013, this exciting occasion will bring together top security executives to recognize the individuals who have made significant and positive impact on their organizations through exemplary performance.
7:30 PM : ISE® Northeast Awards Gala
Location: Majestic Ballroom, 5th floor
Honoring and celebrating the ISE® Northeast Award Nominees, this exciting occasion will bring together top security executives to recognize the individuals and the project teams who have made significant and positive impact on their organizations through exemplary performance.
9:00 PM : Champagne & Dessert Reception
Location: Majestic Foyer, 5th floor
Enjoy champagne and dessert while celebrating the winners, nominees and project teams. Don't miss the Passport for Prizes drawing and a chance to win outstanding gifts from our ISE® sponsors.