Orange County Tech-Security Conference

Peter Bybee, CISSP, CISA

7 Top Data Sources for Security Monitoring

Based on 20 years of experience in the IT industry, this session given by Peter Bybee, CISSP, CISA provides valuable insight on how to best utilize your company's logs, and security event data to achieve an optimal reporting and monitoring system.

As part of this discussion the following areas will be covered:

• Best Practices in Security Monitoring - What should be monitored, where to Monitor
• Why should you monitor? What is the business value received when monitoring
• How to filter superfluous data before its processed and analyzed
• Monitoring Audit Logs within Applications
• Applying Compliance requirements such as PCI, SOX, HIPAA, & GLBA to Security Monitoring
• Insourcing, Outsourcing, & Co-Management - Utilizing Managed Security Providers to help with the Monitoring Tasks
• Using Security Incident Management (SIM) Products & Event Correlation to aid in Monitoring
• Understanding and Applying Context to the Monitoring Process

At the end of the presentation a Q & A period will be offered and any questions related to the topic will be answered. For those that miss the presentation and would like a copy, please visit our website at www.securityondemand.com, or send us an e-mail at info@securityondemand.com.

Ken Pappas
VP Marketing/Security Strategist

How to Proactively Protect Against Next Generation Network Threats - Meet Security and Compliancy Requirements and Keep Your Network Safe in a Down Economy

This educational session will focus on:

• The next generation of network threats and increased risk in a depressed economy
• Automating strategies to defeat threats
• How to proactively protect your network from threats including malicious content, undesired access, and rate-based attacks using the latest network Intrusion Prevention System (IPS)
• Addressing PCI, GLBA and HIPAA compliance requirements
  

Jim Shaeffer
CEO

Major Components of Risk Management: Consolidating Endpoint Security Functions and Adding a Managed Security Service for a Safer Business Environment

In general, we all want the world to be a place where everyone can trust one another, and this certainly holds true in the business world. Today, however, with so much information out there, it's no longer about blind trust. It's about being able to see how everyone's using their endpoints and your network and to make very clear what's appropriate and that everyone follows the rules.

Acknowledging that the risk exists for the inside employee or the outside hacker to misuse your business resources and information, it is more likely that trusted employees are doing something accidentally or something they think is benign. We've all heard about the large-scale cyber attacks that make the news, but it's the under-the-radar "accidents" that will take your business for a long, expensive ride. Fortunately, there are ways to recognize and proactively defend against them.

By deploying at the endpoint a single-agent solution that delivers multiple security functions managed from a single console, you'll achieve greater security than by using individual products from different vendors or a suite of products from a single vendor combining disparate technologies that merely masquerade as a single agent. Monitoring your perimeter and all communications with an independent verification solution and adding a managed security service greatly reduces risks for your organization, while saving you time and money.

Attend this informative presentation and learn about the risk management advantages you'll get by deploying a true single-agent endpoint network security solution integrated with a managed security service.

>> click here for the presentation

Dave Butcher

Understanding Managed File Transfer - Insights & Best Practices

As IT departments continually adopt new technologies to improve the performance of their systems, productivity of their end users and relationships with trading partners, they are faced with numerous challenges. One such challenge companies face today is securing and automating large file transfers. Traditional file transfer systems and mediums no longer meet the needs of most organizations or their trading partners, especially when data exposure is a concern. Many organizations have developed in-house solutions that are difficult to manage, lack the ability to track and audit file transfers, and expose the organization to security breaches. A Managed File Transfer (MFT) solution should be secure, easy to manage, and have the flexibility to integrate with existing technologies.

In this presentation, you will:

• Gain a better understanding of the business challenges and drivers of file transfers.
• Identify the security concerns around traditional file transfer systems and mediums.
• Learn best practices to develop security architectures for file transfers.
• Understand how a MFT solution can meet the needs of your stakeholders

Scott Shepard
Principal Consultant

Prevent Information Leakage

Given the current economic climate and financial scandals, data leakage may become even more important in the coming year. Companies know how to implement systems to protect outside threats, but what about those that originate inside the company walls?

In this session attendees will learn how to effectively implement framework, processes, and tools to protect the organization from the following:

• Protection of internal networks and systems
• Insiders sending sensitive information via e-mail
• Business partners sharing sensitive information
  

>> click here for the presentation

Bret Newman
McAfee, Inc.

McAfee Data Protection

>> click here for the presentation

Benjamin Rice
Senior Director of Worldwide Business Development
Blue Coat Systems/Accuvant

Evolving Web Threats and Countermeasures

Despite over $7 billion a year being spent on anti-virus and other security software, the dangers of becoming a victim of cybercrime are increasing. What was once the hobby of amateur hackers has become the business of organized groups around the world. Cyberthieves want your identity and financial information, and they aren't just going through shady websites to get it.

This presentation discusses the evolution of the web itself as well as the evolution of the web borne threats. Web 2.0 impact, rogueware, malware, phishing, proxy avoidance are discussed and then counter measures and practical approaches to protecting corporate networks as well as individuals are presented.

For a copy of the Blue Coat Systems presentation, please contact Benjamin Rice at Benjamin.rice@bluecoat.com

Paul Royal
Principal Researcher

The Evolving Threat Landscape

The Web is a fertile breeding ground for cybercriminals to distribute malware and perpetrate fraud. Traditional URL filtering databases can't keep up and businesses are left vulnerable to compromise from new attack types with no known signature. Organizations are challenged with protecting their users from where they are going on the Web, from what they are downloading and from malicious people with whom they are interacting.

This presentation will highlight threats that challenge the ability of traditional security approaches to protect end users, and includes discussion of:

1. Zero Days Attacks - From weaponized Microsoft Video ActiveX control vulnerabilities to targeted attack emails with attachments that exploit the flash interpreter in Acrobat Reader, July 2009 was a month of zero days.
2. Social Engineering - From malicious tweets about Erin Andrews to poisoned ads that direct USAToday.com visitors to RogueAV, tricking the user into infecting themselves remains a primary vehicle for malware propagation.
3. Botnets - With Waledac celebrating Independence Day to recruit more members and Zeus-based botnets DDoSing research communities and government websites, botnets continue to be the Swiss Army knives of the criminal underground.