Browse communities
Presenting a webinar?
Share this content

(ISC)2 Security Congress 2012 – An Insider’s Look

Brandon Dunlap. Brightfly (Moderator); David Wilson, CISSP, Attorney, Titan InfoSecurity Group; Dan Houser, Sr Security & I
(ISC)2 will have its 2nd Annual Security Congress at the Annual ASIS Conference this September in Philadelphia, PA. This conference brings together thought leaders in traditional and information security for three days of educational sessions and an exhibit floor featuring over 350 solution providers. Join (ISC)2 and several of the conference speakers who’ll be presenting at the Security Congress On August 23, 2012 at 1:00pm Eastern as we preview their sessions, get a preview of what will be discussed at the event and examine some of the “hot button” issues facing security practitioners today.
Aug 23 2012
29 mins
(ISC)2 Security Congress 2012 – An Insider’s Look
(ISC)2 Security
More from this community:

IT Security

Webinars and videos

  • Live and recorded (2597)
  • Upcoming (175)
  • Date
  • Rating
  • Views
  • By 2014, 60% of global companies are expected to pilot, deploy or expand their BYOD programs (RainKing). As BYOD has become a fixture in the workplace, with 72% of employees clamoring to have their personal devices work-enabled, the IT industry has watched as the familiar “perimeter" model has become untenable. Data is going to more places, and ending up on a wider variety of devices, than ever before. A new model for protecting data has become a necessity. Organizations have tried to do so in a multitude of ways: extending policies to cover mobile devices, monitoring usage, MDM solutions, and even NAC; all have been methods used to try and create the most stable environment for mobile technology. Let Integralis security expert Mike Gabriel explain how to best balance mobile productivity and security in this Security Talks installment.

    Why Attend?

    1.Discover how your peers are trying to protect mobile data.
    2.See how the perimeter is being sculpted (or not) by the IT industry.
    3.Find out what the future holds for BYOD in the workplace.
    Read more >
  • Over the years true MSPs have had to work diligently to differentiate themselves from companies that are at best, not true MSPs and at worst, are shady fly-by-night operators. This is where the Unified Certification Standard or (UCS) for Cloud & Managed Service Providers comes in.

    The UCS was created by a team of dedicated MSPs to address the shortfalls of existing standards like ISO 27001, ITIL, CoBIT, SSAE 16, which were never intended for managed services organizations and offered little in the way of consumer protection.

    CASE IN POINT: Many MSPs do NOT fail because of technical deficiencies, but due to financial risk. Because of this, customers have very little insight into the service provider's business practices and financial strengths and capabilities.

    Attend this webcast and you will hear from real MSP executives on how the UCS certification and audit has helped them to:

    - Win new business
    - Provide needed transparency to customers
    - Achieve compliance objectives
    - Quickly develop trust with customers and prospects
    - Provide documentation on how those MSPs deliver their services
    - And much more...

    Both Cloud and Managed Service Providers should attend this webcast and at least begin to follow the standards necessary to achieve managed services and cloud computing excellence.
    Read more >
  • Doug Turner, CEO of Mantis Technology Group, talks about how his team built Pulse Analytics, a sentiment analysis solution using text analytics tool running on SAP HANA One. Hear how his team strengthened the capabilities of this solution while simplifying their data architecture by replacing 20 servers with only 1 SAP HANA One instance.
    Read more >
  • Most SMB's use a single point product for each of the different perceived security threats. This has worked in the past, but a far better approach is layering multiple products in a stouter defense.
    Read more >
  • APIs are a hot topic in all sectors of IT - they have gone from being niche solutions provided by big players like Amazon and Google, to being almost as ubiquitous as corporate websites. Ad hoc API development & evangelism without a formal program can leave real revenue on the table, can unintentionally leak sensitive data, and can tarnish the corporate brand with the development community. Today, developers and partners expect to be engaged with first class API programs, while businesses expect real insights to know which APIs are profitable and which APIs to bring to market next. In this webinar, Intel & Mashery outline the baseline enterprise pillars for constructing a first class API program. Learn from CapitalOne how they strategized to build an API program grounded in core business objectives. All attendees to receive a new Mobile API Buyers Guide that presents how to optimize APIs for mobile apps.
    Read more >
  • Are you using or considering a next-generation threat protection solution? Join this webcast and learn how you can multiply the value of your investment by integrating network and endpoint security.

    During this session you’ll learn best practices for protecting your network and your endpoints and servers from today's new breed of cyber attacks. You’ll also see firsthand how the integration of network and endpoint security solutions will help you:

    ・ Automatically confirm and prioritize alerts
    ・ Provide enterprise-wide visibility of infections to speed investigation
    ・ Drive remediation
    ・ Automatically analyze files from endpoints and servers
    Read more >
  • In today’s socially-connected world, conducting business effectively demands easy access to information from anywhere at any time. More people need access to more data through the use of more devices than ever before.

    Join this webcast and learn how CA Technologies helps companies across the world to enable business in a secure manner. Through the use of a Cloud Identity and Access Management service, CA allows the right people have access to the right information at the right time. By seamlessly leveraging existing investments, while extending Identity and Access Management to the cloud, CA Technologies vastly reduces the time to deliver secure new business services.
    Read more >
  • Join us on May 22 for a complimentary webcast on how Oracle Exalogic is the simple way to deploy and upgrade your business applications. Oracle Exalogic is hardware and software engineered together to provide extreme performance, reliability and scalability for your critical applications. Hyundai Motor Company saves more than US$1 Million per year with Exalogic and related Oracle products.

    During this webcast you will hear how Oracle customers have used Exalogic to:

    • Seize new market opportunities
    • Lower business risk
    • Reduce the cost of application deployments

    “We chose Oracle Exalogic, Oracle Exadata, Oracle WebLogic Server, and Oracle WebCenter Content over their competitors as Oracle offers stable storage for petabytes of data and high processing speeds. We have cut the time spent each day on document-related work by around 85% and saved up to US$1.1 million in printing costs.” Kang Tae-jin, Manager, General Affairs Team

    If you would like to contact Tom Smith directly for more information, his email address is tom.a.smith@oracle.com
    Read more >
  • Ever feel like you spend more time converting security information from one format to another, than actually connecting the dots hidden within it? The Collective Intelligence Framework (CIF) is a data processor for pulling in and normalizing out all these threat intel sources into a single combined dataset.

    Learn how to...
    Get CIF up and running
    Connect intelligence sources to CIF
    Leverage CIF with your existing security controls
    Host: Conrad Constantine, Community Manager, AlienVault
    Guest: Todd Leetham, Visiting Scientist, RSA I The Security Division of EMC
    Event Date: Tuesday, May 21, 2013 at 11am PDT
    Read more >
  • "People are talking about doing security in the mobile space and I ask the following question: You have spent the last 13 years building up proper, compliant infrastructures inside your four walls. Now we're going mobile. Why should you implement any lesser degree of compliance in that portion of your infrastructure than you currently have?" Winn Schwartau, one of the world's top experts on security, privacy, infowar and cyber-terrorism, discusses the importance of mobile security and the implications it can have for your pre-existing infrastructure.
    Read more >
  • Channel
  • Channel profile

(ISC)2 ThinkTank

Up Down
  • When Trust is Assumed - The Dangers of Failed Certificates Jun 20 2013 5:00 pm UTC 75 mins
    Today, every business and government is a target for data theft. Research shows 100% of all advanced attacks are a result of credential compromises and organizations are racing to add new layers of security to help detect and respond. But, are you still leaving the door open to advanced persistent threats (APTs) and targeted attacks? How can organizations mitigate this potential vulnerability and better manage their cryptographic infrastructure? Join (ISC)2 and Venafi on June 20, 2013 for a discussion on the failure of trust and how to improve your security posture.
  • Big Data and Internet of Things May 23 2013 5:00 pm UTC 75 mins
    More and more organizations are exploring the ramifications of Big Data on their enterprises. Deployments of Smart Meters to better manage the electric grid, Industrial Control Systems (ICS) across a variety of sectors, and the promise of always on and always connected systems are pushing organizations to gather more data than previously imagined. What are the implications from a privacy and intellectual property perspective and how can we as security professionals provide a level of control and risk management over the coming wave of The Internet of Things? Join (ISC)2 and Capella University on May 23, 2013 at 1:00pm Eastern for a discussion on these important concerns.
  • Who Shouldn't BYOD? Recorded: Apr 18 2013 60 mins
    Face it, BYOD is already here, at least in parts of your enterprise. But, it is probably not the right solution for every part of the organization. By spreading the right message to the right people, you can slow this trend enough to identify who should, and who should not be connecting personal devices to the corporate network. Join IBM Software Group and (ISC)2 on April 18, 2013 at 1:00pm Eastern as we take a look at key factors in identifying off-limits employee groups and how to include Human Resources (policy), Legal (contracts), Finance (billing) and IT (purchasing) to craft a much more robust risk picture from which your stakeholders can make an informed decision about this strategy.
  • Security Briefings Part 3: Data Breaches are just the Tip of the Iceberg Recorded: Apr 4 2013 59 mins
    Digital security is the new battleground and cyber criminals are focused on stealing corporate and government secrets for financial and strategic gain. With increasing internal and external attacks and stronger regulatory compliance enforcement, investing in data security is a top priority for organizations; yet, significant gaps still exist at the very core - the databases that house the crown jewels. Join (ISC)2 and Oracle on Apr 4, 2013 for the conclusion of our Security Briefings series as we summarize implementing an effective database security strategy by using administrative controls that can help organizations discover where sensitive data resides and who has privileged access to this data.
  • The State of Cloud Security 2013 Recorded: Mar 21 2013 64 mins
    In May of 2010, CA and The Ponemon Institute released a survey in North America and Europe on the security of cloud applications, infrastructure and platforms. Almost 3 years have passed from that initial study and CA and Ponemon have decided to revisit the topic. What¹s changed in 3 years? Are the concerns the same or have they evolved? Have security threats changed to meet this new computing model? Have solutions kept pace? Are more standards in place? Join (ISC)2 along with CA, The Ponemon Institute and Cloud Security Alliance on March 21, 2013 for a discussion on the latest survey findings and what the industry thinks about cloud security issues.
  • Security Briefing Part 2: As Attacks Evolve, Can You Prevent Them? Recorded: Feb 21 2013 58 mins
    The collaboration and sharing of information made possible by social media has enabled a new class of social engineering attacks, greatly increasing the risks posed by insiders for most organizations. Consider that LinkedIn searches for "Database Administrator" and "System Administrator" return over one million potential targets. In fact, stolen credentials were involved in 84% of the attacks that have resulted in over one billion records stolen from database servers. Join (ISC)2 and Oracle on February 21, 2013 for Part 2 of our Security Briefings series as we focus on database security and the preventive controls that can be used to mitigate the risks posed by insiders and attackers exploiting legitimate access to data and database infrastructure by adopting a defense-in-depth strategy.
  • Divining Meaning From Security Information Recorded: Feb 14 2013 63 mins
    With modern enterprises generating hundreds of millions of log events per day, how is today's practitioner supposed to make sense of this deluge and distill from it actionable intelligence? To date, legacy SIEM implementations have relied on vast numbers of rules and correlation logic to separate the signal from the noise. With ever increasing data volumes this becomes a model that is difficult to scale.

    To identify stealthy attacks, stop attacks before they become breaches and improve security defenses, organizations need stronger context, advanced analytics and dynamic access to data. Join us on February 14, 2013 at 1pm Eastern where (ISC)2 and McAfee & DynTek explore how SIEM implementations need to evolve to fight the increased sophistication of attacks and derive meaning from the ever growing masses of security data.
  • Security Briefings Series - The Easy Target: Your Unsecured Databases Recorded: Jan 31 2013 63 mins
    Part 1: 60 Seconds to Infiltrate, Months to Discover
    According to leading industry reports, 98% of breached data originates from unsecured database servers and nearly half are compromised in less than a minute! Almost all victims are not aware of a breach until a third party notifies them and nearly all breaches could have been avoided through the use of basic controls. Join (ISC)2 and Oracle on January 31, 2013 for Part 1 of our next Security Briefings series that will focus on database security and the detective, preventive, and administrative controls that can be put in place to mitigate the risk to your databases. There's no turning back the clock on stolen data, but you can put in place controls to ensure your organization won't be the next headline.
  • Taming the PCI Beast Recorded: Jan 24 2013 64 mins
    Just about every company is conducting commerce over the internet. Because of this, compliance with the Payment Card Industry Data Security Standard 2.0 (PCI DSS) has become a concern all the way to the boardroom. Yet, as we know from on-going headlines, data breaches are still happening. And on top of that, new threats and technologies are being introduced every day. What can your organization do to streamline the process, mitigate the problem and protect your company and your customers from data breach? Join (ISC)2 and Voltage Security along with FishNet Security on January 24, 2013 for our first ThinkTank Roundtable of the New Year as we discuss PCI and solutions to this important multi-faceted issue of payment security in a changing world.
  • Situational Awareness Meets Strong Authentication Recorded: Jan 17 2013 60 mins
    Security and risk professionals are increasingly turning to risk-based authentication as an alternative to other authentication solutions. Usability, ease of deployment, and the ability to work well on mobile devices are just some of the reasons driving the adoption of risk-based authentication in the enterprise. But even more important, rapid advances in cyber threats - from phishing to session hijacking - call for a new risk-based approach that allows for continuous learning of the environment and the user and enables authentication and access controls to be adjusted in real-time. Join (ISC2)2 and RSA on January 17, 2013 at 1:00pm Eastern for a discussion on risk, authentication and access control.
  • Identity is the New Perimeter part 6: ­ Big Data and Identity Recorded: Dec 20 2012 62 mins
    It seems that all organizations are talking about these days is "Big Data". As security professionals, we all know that there are challenges in securing it, making it appropriately accessible and classifying the growing mountains of data. How do organizations deal with these issues, as well as adding the appropriate controls for identity and access to limit the disclosure and leakage of sensitive data. Join (ISC)2 and CA Technologies on December 20, 2012 at 1pm Eastern as we present the final part of our Security Briefings series on Identity and Access Management.
  • After the Storm - Cleaning up After a Malware Incident Recorded: Dec 13 2012 61 mins
    Chances are it’ll happen to your organization. A large malware outbreak will hit and you’ll have to deal with the incident itself and the aftermath. Join (ISC)2 and Verisign on December 13, 2012 for our next ThinkTank Roundtable for a discussion about best practices that can be used and the new processes that can be implemented. We’ll also examine the skills that can be called into play to mitigate the damage and get the enterprise back up and running infection free.
  • Identity is the New Perimeter - Part 5: ­Social Identity Recorded: Nov 29 2012 61 mins
    On the surface, leveraging social or consumer identities in the business world might not seem that useful. The truth is many organizations are finding that their marketing departments are active on the social networking front and trying to leverage more information from it. Being successful in this could prove to be a huge advantage. However, these disparate identities and the information gathered needs to be secured. How can a security department best work with the marketing department to connect and protect these identities? Is there a better way to capture online customers and identities? How does security become a business enabler in a situation like this? Join (ISC)2 and CA Technologies on November 29, 2012 as we continue our Security Briefings series
  • ­Identity is the New Perimeter Part 4: Identity and BYOD Recorded: Oct 25 2012 61 mins
    The Bring Your Own Device [BYOD] trend is in full swing as the growth of
    mobile devices within the enterprise explodes. How do you enable secure
    data access for mobile applications? How do you deal with user
    authentication? How do you allow broader adoption for enterprise
    applications on user owned devices? Join (ISC)2 and CA for the next part
    of our Security Briefings series on October 25, 2012 as we outline
    solutions to these issues, explore different mobile security approaches,
    and discuss, through case studies, how others have solved these problems.
  • Attacker Attribution - It¹s NOT Who You Think Recorded: Oct 18 2012 59 mins
    It seems as though every node on the Internet is under attack. As security practitioners, we spend most of our time and effort layering defenses and cleaning up the aftermath of these attacks often, without any idea who might be behind them. Chances are, the bad guys you think are attacking you aren¹t the guilty parties. Join (ISC)2 and Trend Micro for a roundtable discussion on cyber attacks, advance persistent threats (APTs) and the entities out there that are targeting and attacking networks and how to defend against them.
  • Identity is the new Perimeter: Part III Virtualization Challenges Recorded: Sep 27 2012 60 mins
    Virtualization Challenges for Privileged Identities

    (ISC)2 is excited to bring you part 3 in their Security Briefings Series, "Virtualization Challenges for Privileged Identities". These Security Briefings are a series of monthly webinars focusing on different aspects of a specific area of information security. This series allows members to gain a better understanding of a given subject by allowing us to dig deeper, uncovering hidden pitfalls and discovering the challenges inherent in considering solutions, all presented by noted subject matter experts.

    On September 27, 2012 at 1pm Eastern, we will kick off Part 3 of a 6 part "Identity is the New Perimeter" series sponsored by CA Technologies. "Virtualization Challenges for Privileged Identities" will host Nimrod Vax, VP, Product Management, who will examine trends in managing access to virtual environments, how the compliance efforts are being impacted by the migration of business critical and sensitive applications into the virtual datacenter, and how protecting the entire virtualized infrastructure presents interesting problems for today's CISO.
  • Identity is the New Perimeter - Part II ­ The Role of Content and Context Recorded: Aug 30 2012 60 mins
    While traditional Identity and Access Management (IAM) solutions allow
    control to access to key applications and information, they do not control
    what an individual does once they get the information. Soft skill efforts
    such as data classifications and information protection policies are still
    critical, and provide a valuable foundation of your protection strategy,
    but what tactics and technologies do they require to support the rest of
    your efforts? Join (ISC)2 and CA Technologies for part 2 of our Security
    Briefings series on August 30th at 1pm Eastern where content expert Sumner Blount discusses with moderator Brandon Dunlap and the audience these topics and presents case studies on IAM and content control.
  • (ISC)2 Security Congress 2012 – An Insider’s Look Recorded: Aug 23 2012 29 mins
    (ISC)2 will have its 2nd Annual Security Congress at the Annual ASIS Conference this September in Philadelphia, PA. This conference brings together thought leaders in traditional and information security for three days of educational sessions and an exhibit floor featuring over 350 solution providers. Join (ISC)2 and several of the conference speakers who’ll be presenting at the Security Congress On August 23, 2012 at 1:00pm Eastern as we preview their sessions, get a preview of what will be discussed at the event and examine some of the “hot button” issues facing security practitioners today.
  • Cybercrime's Favorite Target - The Crown Jewels in Your Databases Recorded: Aug 16 2012 59 mins
    Despite facing an ever-growing number of cyber-threats targeting highly sensitive and valuable information, many organizations fail to establish a last line of defense for their business-critical databases without compromising performance for threat protection. Join security experts from (ISC)2 and McAfee on August 16, 2012 at 1:00pm Eastern time for a discussion on how the right database security strategy and posture can help organizations of all sizes and types achieve robust security, continuous compliance, and optimal security management costs and practices.
  • Identity is the New Perimeter Part I -The Evolution of Identity Recorded: Jul 26 2012 62 mins
    (ISC)2 Security Briefings – Identity is the New Perimeter, Part 1

    John Hawley, Senior Director, Security Strategy at CA Technologies will examine trends in Identity, how to position security as an enabler of innovation and set the foundation for the other parts of the series which will feature installments on a number of important and timely security topics such as Mobile Security, Big Data and Virtualization.
ThinkTank
(ISC)2 hosts a monthly panel discussion around different thought engaging topics within the information security sector.
  • Upcoming webinars (2)
  • Recorded webinars (55)
  • Subscribers (12,407)
Channel RSS feed
Up Down

Embed in website or blog

Successfully added emails: 0
Remove all
  • Title: (ISC)2 Security Congress 2012 – An Insider’s Look
  • Live at: Aug 23 2012 5:00 pm
  • Presented by: Brandon Dunlap. Brightfly (Moderator); David Wilson, CISSP, Attorney, Titan InfoSecurity Group; Dan Houser, Sr Security & I
  • From:
Your email has been sent.
or close
You must be logged in to email this
OK