October 13th – Half Day Event
Date(s) - Oct 13, 2016
8:30 am - 1:00 pm
Doubletree Orlando Airport
8:30 a.m Arrival, Check-in & Networking
8:45 a.m. ISSA Announcements
9:00 a.m. Incident Detection and Response: Moving Beyond the Kill Chain (RSA)
9:50 a.m. Refreshment Break
10:10 a.m. Security Intelligence and Operations – The Importance of Context (Conventus)
11:00 a.m. Refreshment Break
11:20 a.m. Say what you mean: A survey of InfoSec clichés and other miscommunication (ISSA)
12:10 p.m. Concluding Remarks / Door Prizes
12:15 p.m. Lunch
Incident Detection and Response: Moving Beyond the Kill Chain
As digital attacks continue to occur, there is an established pattern exhibited by the majority of attackers. While Incident Response professionals understand these patterns, breaches continue to occur. The “Cyber Kill Chain” established by Lockheed Martin creates a taxonomy of attack progression from the attackers point of view, however, the kill chain is focused on external visibility. This presentation will use real world details from 3 breaches across multiple industries to create a new perspective that organizations can use when thinking about breach response and prevention.
Kevin Flanagan, CISSP, CISA
RSA, The Security Division of EMC, Area Vice President of Security Consulting for North America
Kevin Flanagan, is the Area Vice President of Security Consulting for North America at RSA. He has more than 20 years of security experience in building programs, building teams, and designing security architectures. At RSA, Kevin leads a team of over 100 security experts responsible for assisting clients with development of security programs and infrastructure that assist with detection, response and mitigation of today’s and tomorrow’s threats. In addition to Kevin’s consulting leadership role, he was responsible for customer outreach and subsequent education campaign in the wake of the 2011 RSA breach.
Security Intelligence and Operations – The Importance of Context
In an effort to understand and address each of our unique security environments, we often look to our peers in attempt to gain clarity, understanding, and efficiency in our own strategies and operations. As consumers of that data we’re continually asking for more; more information, more detail, more sources, more…everything. Yet the more data we gather and analyze, the more we tend to lose sight of our own unique situations. This discussion will highlight the importance of developing, maintaining, and applying context to security intelligence and operations in order to drive quickly towards action.
Alex Moss, Managing Partner, Conventus
With more than a decade of hands-on experience researching, designing, implementing, and maintaining IT and security programs, Alex Moss is a leading authority on server and endpoint infrastructure security. A prolific author on the subject of IT security, Alex has penned numerous white papers in addition to developing a targeted prevention policy for server security
“Say what you mean: A survey of InfoSec clichés and other miscommunication”
This presentation will evaluate common language used by InfoSec community in communication with our non-technology counterparts. Then, we explore adjustments that practitioners can make to express what they really mean when sharing ideas and information with their non-technology counterparts. The presentation will also provide updates from ISSA International.
Keyaan Williams, Director, International Board of Directors, ISSA
Keyaan has dedicated almost two decades to the information security profession as a leader, practitioner, educator, and volunteer. His specialty is developing security programs and strategies for critical infrastructure, high-security systems, and business IT systems. He is currently the managing director of Cyber Leadership and Strategy Solutions (CLASS LLC), which delivers strategic planning and leadership development solutions across the globe. He also provides board and advisory services for ISSA International, Metro Atlanta ISSA, and SecureWorld Atlanta.