 |
|
|
|
|
Los Angeles Tech-Security
Conference
|
Overview
This year, the Los Angeles Tech-Security Conference
will bring together private industry, government decision
makers and technical enthusiasts in the fields of Information
& Network Security. This unique conference format
will provide several interactive high intensity training
sessions as well as tremendous networking opportunities.
Topics may include: Intrusion Detection and Prevention
Systems, Wireless Security, Web Hacking, Contingency
Planning, Vulnerability Assessments, Threat Management
Workshop, Computer/PDA & Enterprise Forensics, Password
Recovery & Disk Wiping Tools, Internet Investigation
Techniques.
You'll come away with advice and knowledge that you
can start applying to your environment immediately.
| Agenda: |
|
| 8:30am-9:00am |
Check-In
and Opening Introductions |
 |
Data
Connectors is proud to host the Tech-Security Strategies
Conference. |
| 9:00am-9:45am |
Session
One |
|
|
Comprehensive Data Protection Solutions
Do you know the hundreds of ways to lose your
important data? The numbers don’t lie –
more than 60% of information loss is the result
of lost or stolen equipment. In short, every laptop,
PC, smartphone, or USB stick is a potential weak
point in your security strategy – unless
you have Pointsec® software.
Come to this informative keynote session to learn
about the security vulnerabilities in your organization
and how Pointsec offers more data protection solutions
where it really matters – from full disk
encryption to port management and encryption for
removable media.
|
| 9:45am-10:00am |
Break/Vendor
Booth Time |
| 10:00am-10:45am |
Session
Two |
|
|
Walking Through Walls - Presented by Accuvant
and Imperva
There is more to securing a web application than
putting it behind a firewall and enabling SSL.
After all, a web application by definition accepts
input from any web user and inserts it into running
code on your server. Because of the unique nature
of many web application vulnerabilities, traditional
perimeter security measures are ineffective in
protecting these critical assets and require a
more focused security approach.
Learn how perpetrators begin their attacks and
understand how to stop them. This application
hacking workshop will demonstrate how intruders
can compromise custom web applications to steal
data and break into systems. Accuvant and Imperva
will demonstrate exploits of the following web
application vulnerabilities and discuss how to
make sure these problems are not present in your
web applications:
- SQL injection
- Parameter manipulation
- Error handling
- Cookie tampering
- Residual content
- Cross site scripting
|
| 10:45am-11:30am |
Session
Three |
|
Peter
Bybee
Founder and CEO
|
How to Strengthen Your Incident Response Program:
A Hands on Approach
- 2008 Security IT Security & Risk Outlook
- 3 Trends that are creating more risk
- Differentiating between Security Events
vs Security Incidents
- Defining Your Information Security Incident
Program
- What you need to do before it happens
- Incident Response Program Objectives
- Developing your Incident Response Policy
- The 4 R's of Incident Response
- Determining Authority, Roles & Responsibilities,
Procedures, & Tools
- Developing Awareness Training
- Developing Your Security Incident Response
Team
- Communication with Outside Parties regarding
an Incident
- Incident Types & Prioritization
- Risk Based Mitigation Response Methodology
- Incident Handling Process Overview
- How to Assess your Level of Readiness
- Outsourcing Security
- Benefits and Pitfalls of using a Managed
Security Provider
- Understanding what your security provider
is and is NOT responsible for
- Understanding Service Level Agreements (SLAs):
What you need to Know
- How to be successful with a MSSP Partner
- When to bring it in-house
|
| 11:30am-12:00pm |
Break/Vendor
Booth Time |
| 12:00am-12:45pm |
Session
Four (includes lunch) |
|
|
Securing the endpoint from unauthorized, unwanted,
and malicious executables, and controlling the
usage of devices including USB, Bluetooth, WIFI
and others.
|
| 12:45pm-1:30pm |
Session
Five |
|
|
Email Security Best Practices
As IT departments continually adopt new technologies
to improve the performance of their systems and
productivity of their end users, they are faced
with numerous challenges. One such challenge companies
face today is securing their messaging environments
and business critical content for regulatory compliance,
and against inbound and outbound threats. Understanding
email threats, regulations, and encryption will
help ensure that IT departments implement messaging
and content security solutions based on recommended
best practices. In this presentation, you will:
- Gain a better understanding of email
- Understand malicious email threats
- Learn about compliance and regulations
- Grasp email encryption concepts
- Discover best practices for email security
|
| 1:30pm-1:45pm |
Break/Vendor
Booth Time |
| 1:45pm-2:30pm |
Session
Six |
|
|
Lessons from the Field: A Tried and True Approach
to Implementing Enterprise Single Sign-On
|
| 2:30pm-3:15pm |
Session
Seven |
|
|
Technology at the Perimeter
The Astaro Security Gateway combines best-of-breed
technology under one easy to use interface.
Regardless of whether an organization requires
basic network security technology or sophisticated
intrusion protection, the modular concept of the
Astaro Security Gateway effectively provides a
well tailored security solution. A complete range
of hardware appliances scale to the performance
needs of most enterprises.
With more than 30,000 installations, Astaro's
award-winning security solutions belong to the
most proliferated UTM solutions worldwide.
|
Event Sponsors/Exhibitors
|
