Speakers include:

Marcus Ranum

Chief Information Officer
Tenable Network Security, Inc.
Topic - Doctrines of Segmentation
Synopsis - Need to know and network compartments Many security practitioners consider segmentation to be a burdensome process from the 'bad old days' of security. It is, however, the intellectual foundation of positive security, and offers tremendous benefits when facing the unknown. In this presentation, we will refresh some of the arguments in favor of the practice.

Andy Spruill

Senior Director of Risk Management/FSO
Guidance Software Inc.
Topic - eDiscovery in the Trenches
Synopsis - Andy Spruill in his role as the head of Risk Management for Guidance Software shares with us his practical experience from numerous eDiscovery matters both on behalf of Guidance and for their customers worldwide. Time and again, at company after company, Andy has seen people that are great at talking about what should be done and then blaming people when it doesn't get done. This is not a presentation where he will talk at a high level about abstract ideas or what you should be doing. Andy will take you through the down and dirty of what you will actually need to do, from identifying what to collect to how to document your work. This is meant for the people who have been tasked with taking the "What you should be doing" and actually making it happen in their company or for their clients

Marc Maiffret

Chief Technology Officer
eEye Digital Security
Topic - IT Security Insights: On the Frontline of the Threat Landscape
Synopsis - The cost and consequences of maintaining security and compliance are steeper than ever. Exploits aren't slowing down and attackers have gotten smarter about how to penetrate networks. Plus, with new technical standards and government regulations, the urgency to secure and manage every aspect of the IT infrastructure increases even further.
In this presentation, eEye CTO and cofounder, Marc Maiffret, will give an overview of today's threat landscape and offer insights and guidance on the most recent high-profile attacks, such as "Night Dragon" and "Stuxnet." His candid talks are best known for cutting through hype and pinpointing what really matters to those in the trenches of IT security. Learn how to protect your critical IT assets and the data they hold, avoid common security pitfalls, and respond to today's ever-increasing threats and compliance requirements to minimize risk.

David Perry

Global Director of Education
Trend Micro Inc.
Topic - Security from the Cloud, for the Cloud, and by the Cloud
Synopsis - The most popular cloud application of all time is not a backup system, not a shared office, and not a social network. It is the Conficker botnet. Botnets are cloud based and so are many other malware applications. This has driven vendors (like Trend Micro) to focus on particular security problems found in data centers, and in virtual servers, and on every contact point to the cloud. Security is also best served from the cloud, for many different reasons. Join Trend Micro’s David Perry in a frank examination of the problems and promise of cloud computing, and what can be done about it, today.


Ali Pabrai

Chief Executive Officer
ecfirst.com
Topic - Checklist for Addressing Breach Readiness
Synopsis - Tenacious attacks on the infrastructure as well as significant unauthorized access to sensitive information, are resulting in incident management as an executive priority. Not a question of if, but when an organization experiences a breach, how prepared is it to discover the incident and what are controls and processes to respond. Compliance mandates such as HIPAA and HITECH, State regulatory requirements and standards including ISO 27000 and PCI DSS emphasize the area of incident management. Examine how to address the risk to Personally Identifiable Information (PII) within the scope of an enterprise security program.