Phoenix Tech-Security Conference

Peter Bybee, CISSP, CISA

7 Top Data Sources for Security Monitoring

Based on 20 years of experience in the IT industry, this session given by Peter Bybee, CISSP, CISA provides valuable insight on how to best utilize your company's logs, and security event data to achieve an optimal reporting and monitoring system.

As part of this discussion the following areas will be covered:

• Best Practices in Security Monitoring - What should be monitored, where to Monitor
• Why should you monitor? What is the business value received when monitoring
• How to filter superfluous data before its processed and analyzed
• Monitoring Audit Logs within Applications
• Applying Compliance requirements such as PCI, SOX, HIPAA, & GLBA to Security Monitoring
• Insourcing, Outsourcing, & Co-Management - Utilizing Managed Security Providers to help with the Monitoring Tasks
• Using Security Incident Management (SIM) Products & Event Correlation to aid in Monitoring
• Understanding and Applying Context to the Monitoring Process

At the end of the presentation a Q & A period will be offered and any questions related to the topic will be answered. For those that miss the presentation and would like a copy, please visit our website at www.securityondemand.com, or send us an e-mail at info@securityondemand.com.

>> click here for the presentation

Ken Pappas
VP Marketing/Security Strategist

How to Proactively Protect Against Next Generation Network Threats - Meet Security and Compliancy Requirements and Keep Your Network Safe in a Down Economy

This educational session will focus on:

• The next generation of network threats and increased risk in a depressed economy
• Automating strategies to defeat threats
• How to proactively protect your network from threats including malicious content, undesired access, and rate-based attacks using the latest network Intrusion Prevention System (IPS)
• Addressing PCI, GLBA and HIPAA compliance requirements
  

Jim Shaeffer
CEO

Major Components of Risk Management: Consolidating Endpoint Security Functions and Adding a Managed Security Service for a Safer Business Environment

In general, we all want the world to be a place where everyone can trust one another, and this certainly holds true in the business world. Today, however, with so much information out there, it's no longer about blind trust. It's about being able to see how everyone's using their endpoints and your network and to make very clear what's appropriate and that everyone follows the rules.

Acknowledging that the risk exists for the inside employee or the outside hacker to misuse your business resources and information, it is more likely that trusted employees are doing something accidentally or something they think is benign. We've all heard about the large-scale cyber attacks that make the news, but it's the under-the-radar "accidents" that will take your business for a long, expensive ride. Fortunately, there are ways to recognize and proactively defend against them.

By deploying at the endpoint a single-agent solution that delivers multiple security functions managed from a single console, you'll achieve greater security than by using individual products from different vendors or a suite of products from a single vendor combining disparate technologies that merely masquerade as a single agent. Monitoring your perimeter and all communications with an independent verification solution and adding a managed security service greatly reduces risks for your organization, while saving you time and money.

Attend this informative presentation and learn about the risk management advantages you'll get by deploying a true single-agent endpoint network security solution integrated with a managed security service.

Jim Resch

Enterprise-wide Computer Power Management

BigFix®, Inc. is a leading provider of high-performance enterprise systems and security management solutions that revolutionizes the way IT organizations manage and secure their computing infrastructures. Based on a revolutionary architecture that distributes management intelligence directly to the computing devices themselves, BigFix is radically faster, scalable, more accurate and adaptive than legacy management software. Today, BigFix provides real-time visibility and control for over 8 million computing devices for 900 customers worldwide. The BigFix customer list counts many of the world's largest and most prestigious organizations in every industry including financial services, retail, education, manufacturing, and public sector agencies.

During this timely session, we will highlight BigFix Power Management, which leverages the BigFix platform to centrally manage the power profiles of PC and Macs across the enterprise for significantly reduced electricity costs and carbon emissions. Mr. Phinick is a 25-year industry veteran who has helped companies of all sizes identify cost-effective technology solutions to increase efficiencies and reduce operating expenses costs.

>> click here for the presentation

Elan Winkler
Director of Solutions, McAfee

Stopping Blended Threats- Inside and Out

This is an informative presentation was designed specifically for you and the evolving threats you face today including blended threats, data leakage, malware, phishing, and spyware that enter your enterprise from Web, Email and VoIP traffic. We will discuss practical solutions to protect against today's Web 2.0 threats, prevent data leaks and secure outbound email. You will leave this presentation with a clear vision and plan with which to identify and neutralize the blended threats that face your organization today, as well as learn ways to protect your Web and Messaging infrastructure from the threats of tomorrow.

Attend this presentation and you will learn:

• About security threats from adoption and use of Web 2.0 technologies
• How spammers now take advantage of Web 2.0 vulnerabilities and social engineering
• How to use Global Reputation to eliminate unknown web and messaging threats
• How to ensure sensitive data doesn't leak out of your network through web and messaging protocols
• About practical, easy-to-use email compliance and encryption solutions
• About safeguarding SSL traffic - an open door for many hackers
• About advancements in content filtering methodologies
  

If you would like a copy of this presentation, please contact DeeDee Wilson at DeeDee_Wilson@Mcafee.com

Dave Butcher

Understanding Managed File Transfer - Insights & Best Practices

As IT departments continually adopt new technologies to improve the performance of their systems, productivity of their end users and relationships with trading partners, they are faced with numerous challenges. One such challenge companies face today is securing and automating large file transfers. Traditional file transfer systems and mediums no longer meet the needs of most organizations or their trading partners, especially when data exposure is a concern. Many organizations have developed in-house solutions that are difficult to manage, lack the ability to track and audit file transfers, and expose the organization to security breaches. A Managed File Transfer (MFT) solution should be secure, easy to manage, and have the flexibility to integrate with existing technologies.

In this presentation, you will:

• Gain a better understanding of the business challenges and drivers of file transfers.
• Identify the security concerns around traditional file transfer systems and mediums.
• Learn best practices to develop security architectures for file transfers.
• Understand how a MFT solution can meet the needs of your stakeholder

Scott Perry
Director of Marketing

Enterprise Authentication: 5 Key Steps to Success in Today’s Business Climate

It is generally accepted that enterprises need to deploy strong authentication in light of the increasing number of data breaches, the escalation in internet security threats, and a growing number of government regulations. But in todays business climate, with tightening resources, organizations need to understand what is important in an authentication platform to ensure they meet immediate requirements, are positioned for the future, and can make the best use of their resources.

This presentation will review the need for strong authentication within the enterprise and highlight five key considerations when selecting an enterprise authentication platform.

>> click here for the presentation

Brian Tokuyoshi
Product Marketing Manager

The Right and Wrong Way to Deploy Encryption with Case Studies from the Real World

Both enterprises and government organizations are under tremendous pressure to encrypt their data. But is there a right way and a wrong way to do it?

In this session, learn about how to develop a long term data protection strategy, and avoid the pitfalls that lead to operational headaches. Brian Tokuyoshi from PGP Corporation will provide a look at the right way to protect data and present case studies that illustrate how to keep data safe without breaking the bank.