New York Tech-Security Conference

Dave Kosenko
Sr. Sales Engineer

The Quagmire of IT Security Regulation - Don't get stuck in the mud

Virtually every organization is affected by at least one information security or data privacy regulation, which requires putting controls in place to manage their IT infrastructure across multiple functional disciplines. Although individual requirements vary between companies and industries, organizations still face the same challenges, and yet new challenges have recently emerged. Current IT operations and security problems challenges include; lack of visibility, real-time identification of non-compliant systems, too many tools, maintaining continuous enforcement and configuration drift. BigFix shares customer cases of real problems & how their nimble solution provides business and technical advantages to the ever evolving IT world.

Dave Kosenko is a sales engineer for BigFix, Inc. in the Northeast, with over 24 years of IT security and infrastructure expertise. Dave has served in various roles during his IT career including technical pre-sales and post-sales enterprise account management, systems and database administration, training delivery and development, and software development.
His resume boasts tenure at Informix Software, Veritas and Symantec. Dave's extensive work experience has given him a broad perspective on the needs of IT professionals in a fast-paced, ever-changing corporate environment.

>> click here for the presentation

Ken Pappas
VP Marketing/Security Strategist

How to Proactively Protect Against Next Generation Network Threats - Meet Security and Compliancy Requirements and Keep Your Network Safe in a Down Economy

This educational session will focus on:

• The next generation of network threats and increased risk in a depressed economy
• Automating strategies to defeat threats
• How to proactively protect your network from threats including malicious content, undesired access, and rate-based attacks using the latest network Intrusion Prevention System (IPS)
• Addressing PCI, GLBA and HIPAA compliance requirements
  

Moira Jack

Managing Mobile Devices - Working Outside In Rather Than Inside Out

>> click here for the presentation

Jim Shaeffer
CEO

Major Components of Risk Management: Consolidating Endpoint Security Functions and Adding a Managed Security Service for a Safer Business Environment

In general, we all want the world to be a place where everyone can trust one another, and this certainly holds true in the business world. Today, however, with so much information out there, it's no longer about blind trust. It's about being able to see how everyone's using their endpoints and your network and to make very clear what's appropriate and that everyone follows the rules.

Acknowledging that the risk exists for the inside employee or the outside hacker to misuse your business resources and information, it is more likely that trusted employees are doing something accidentally or something they think is benign. We've all heard about the large-scale cyber attacks that make the news, but it's the under-the-radar "accidents" that will take your business for a long, expensive ride. Fortunately, there are ways to recognize and proactively defend against them.

By deploying at the endpoint a single-agent solution that delivers multiple security functions managed from a single console, you'll achieve greater security than by using individual products from different vendors or a suite of products from a single vendor combining disparate technologies that merely masquerade as a single agent. Monitoring your perimeter and all communications with an independent verification solution and adding a managed security service greatly reduces risks for your organization, while saving you time and money.

Attend this informative presentation and learn about the risk management advantages you'll get by deploying a true single-agent endpoint network security solution integrated with a managed security service.

>> click here for the presentation

Manu Namboodiri
Vice President of Marketing

Slashing security costs and complexity : An information-centric approach to data protection

Organizations are investing heavily in multiple products to protect sensitive and personal data. These include device-based defenses (such as disk encryption), network-based defenses (such as VPNs and Firewalls) and application-specific defenses. What do they all have in common? They are, in fact, all trying to protect the data - not the device, not the network, and not the port. Taking a piecemeal, device or network-centric approach to data protection only increases costs and complexity. Trends point to an information or data-centric approach - that is, one that truly focuses on protecting the data itself - at all times. This logical approach reduces costs and complexity and will serve as the security & privacy paradigm of tomorrow.

This session will investigate the top 5 security myths of today, the evolving nature of data and why current approaches to protection are swiftly becoming obsolete. We will further delve into the promise of an information-centric approach, the essential requirements of a solution, and the roadmap of how this can be achieved.

>> click here for the presentation

Mike Denapoli
Enterprise Systems Engineer

Data Sustainability on a Budget

>> click here for the presentation

Dave Butcher

Understanding Managed File Transfer - Insights & Best Practices

As IT departments continually adopt new technologies to improve the performance of their systems, productivity of their end users and relationships with trading partners, they are faced with numerous challenges. One such challenge companies face today is securing and automating large file transfers. Traditional file transfer systems and mediums no longer meet the needs of most organizations or their trading partners, especially when data exposure is a concern. Many organizations have developed in-house solutions that are difficult to manage, lack the ability to track and audit file transfers, and expose the organization to security breaches. A Managed File Transfer (MFT) solution should be secure, easy to manage, and have the flexibility to integrate with existing technologies.

In this presentation, you will:

• Gain a better understanding of the business challenges and drivers of file transfers.
• Identify the security concerns around traditional file transfer systems and mediums.
• Learn best practices to develop security architectures for file transfers.
• Understand how a MFT solution can meet the needs of your stakeholders

Allen Brewer
CIO Flushing Savings Bank

Data Loss Prevention: The Enemy Within

IT departments at companies of all sizes are concerning themselves about how to protect themselves and their data against outside threats, such as hackers and viruses. However, while their attention is turned to options on how to keep these malicious entities from entering their networks, IT departments haven't realized that the greatest threat to their data is already inside and has gained access - the company's employees.

Insider threats are the number one cause of data breaches. Fifty-nine percent of employees who leave or are asked to leave a company - and have access to proprietary information - will steal company data. When a company has a fiduciary responsibility to keep its intellectual property secure, how can it implement a solution that won't adversely affect day-to-day operations?

This presentation, given by Allen Brewer, Senior Vice President of Flushing Savings Bank, will delve into the ways insiders can get access to a business' internal data, the options available to securing data stored on a network from unauthorized access and the guidelines and parameters that need to be considered when implementing a security solution.

>> click here for the presentation

Sean Lyons - McAfee

Insider Threats / Access Management

>> click here for the presentation