The 26th Annual 2011 ISSA SoCal Security Symposium
The SoCal Security Symposium features over 30 vendor exhibits and several industry experts discussing current security issues such as eDiscovery, cloud security, threat vectors, mobile security, and much more. There will be lots of give a ways and prizes! This conference will provide tremendous networking opportunities. You'll come away with advice and knowledge you can start applying to your environment immediately. Your registration will include your breakfast, lunch, , ice cream social, CPE credits (8) and entrance into the conference sessions and exhibit area.
Speakers include:
Marcus Ranum Chief Information Officer Tenable Network Security, Inc. Topic - Doctrines of Segmentation Synopsis - Need to know and network compartments
Many security practitioners consider segmentation to be a burdensome
process from the 'bad old days' of security. It is, however, the intellectual
foundation of positive security, and offers tremendous benefits when
facing the unknown. In this presentation, we will refresh some of the
arguments in favor of the practice.
Andy Spruill Senior Director of Risk Management/FSO Guidance Software Inc. Topic - eDiscovery in the Trenches Synopsis - Andy Spruill in his role as the head of Risk Management for Guidance Software shares with us his practical experience from numerous eDiscovery matters both on behalf of Guidance and for their customers worldwide. Time and again, at company after company, Andy has seen people that are great at talking about what should be done and then blaming people when it doesn't get done. This is not a presentation where he will talk at a high level about abstract ideas or what you should be doing. Andy will take you through the down and dirty of what you will actually need to do, from identifying what to collect to how to document your work. This is meant for the people who have been tasked with taking the "What you should be doing" and actually making it happen in their company or for their clients
Marc Maiffret Chief Technology Officer eEye Digital Security Topic - IT Security Insights: On the Frontline of the Threat Landscape Synopsis - The cost and consequences of maintaining security and compliance are steeper than ever. Exploits aren't slowing down and attackers have gotten smarter about how to penetrate networks. Plus, with new technical standards and government regulations, the urgency to secure and manage every aspect of the IT infrastructure increases even further. In this presentation, eEye CTO and cofounder, Marc Maiffret, will give an overview of today's threat landscape and offer insights and guidance on the most recent high-profile attacks, such as "Night Dragon" and "Stuxnet." His candid talks are best known for cutting through hype and pinpointing what really matters to those in the trenches of IT security. Learn how to protect your critical IT assets and the data they hold, avoid common security pitfalls, and respond to today's ever-increasing threats and compliance requirements to minimize risk.
David Perry Global Director of Education Trend Micro Inc. Topic - Security from the Cloud, for the Cloud, and by the Cloud Synopsis - The most popular cloud application of all time is not a backup system, not a shared office, and not a social network. It is the Conficker botnet. Botnets are cloud based and so are many other malware applications. This has driven vendors (like Trend Micro) to focus on particular security problems found in data centers, and in virtual servers, and on every contact point to the cloud. Security is also best served from the cloud, for many different reasons. Join Trend Micros David Perry in a frank examination of the problems and promise of cloud computing, and what can be done about it, today.
Ali Pabrai Chief Executive Officer ecfirst.com Topic - Checklist for Addressing Breach Readiness Synopsis - Tenacious attacks on the infrastructure as well as significant unauthorized access to sensitive information, are resulting in incident management as an executive priority. Not a question of if, but when an organization experiences a breach, how prepared is it to discover the incident and what are controls and processes to respond. Compliance mandates such as HIPAA and HITECH, State regulatory requirements and standards including ISO 27000 and PCI DSS emphasize the area of incident management. Examine how to address the risk to Personally Identifiable Information (PII) within the scope of an enterprise security program.
Fees
ISSA members admission fee is $75 until October 25, $95 afterwards.
Non-members admission fee is $95 until October 25, $115 afterwards.
At the door admission fee is $125.
Date/Time
Presentation date - October 26th, 2011
Registration opens at 7:30 a.m., closing at 7:00 p.m.
Location
Hyatt Regency, Long Beach
200 South Pine Avenue,
Long Beach, California, USA 90802
Tel: +1 562 491 1234 Fax: +1 562 983 1491 Maps & Directions