New York Tech-Security Conference

Peter Bybee

Using Network Access Control (NAC) to consolidate security layers, eliminate endpoint security threats, manage risk, and maintain compliance.

Session Abstract: This session given by Peter Bybee, CISSP, CISA will provide valuable insight into the confusing array of NAC technology solutions in the marketplace. If you've been thinking about deploying a NAC solution, this is the independent analysis that you've been waiting for.

As part of this discussion the following areas will be covered:

• Understanding different approaches using Network Access Control to secure endpoints, the internal network environment and enforcing policies
• Explaining both pre-admission and post-admission approaches including various solution enforcement options offered in the marketplace
• Should you wait for 802.1x? Do you need to upgrade your switching infrastructure?
• What are the current NAC trends in the marketplace? What is Microsoft doing with NAP? How will what Microsoft and Cisco are doing affect the choices that you make?
• So once you've got NAC deployed, what kinds of policies should you implement and enforce that will help you manage risk?
• How do you reduce the complexity and consolidate security layers using full-cycle NAC?
• How can you use NAC to address compliance requirements for PCI, GLBA, SOX, HIPAA, and others?
• What is the best way to deploy and manage a NAC solution?

Network Access Control is perhaps the most significant network security concept since the introduction of the firewall, don't miss this informative and enlightening presentation!

Seven Steps to Delivering a Secure USB Drives Strategy and Policy!

Jim Shaeffer
President

Network Quality Assurance

Information is the foundation of effective management. For IT managers, achieving a well-run network and aligning it with company goals requires a consistent and objective baseline reporting process. Traditionally, this has required regular review of firewall logs, Email systems, Web logs, Hosts and communications, time-consuming and labor and cost intensive work, to verify
controls and policies are effective.

As clouded economic times and shrinking budgets impact business, IT teams must do more with less and show bottom-line value. IT must lead with innovation and cost-efficiency, extracting maximum benefit from existing network investments. Network Quality Assurance provides an efficient and consistent automated reporting process offering 100% visibility
into IT & business operations.

NQA provides clear, empirical metrics so management can make informed decisions for fast issue resolution, increased productivity and better planning.

To learn about easy, comprehensive ways to assure the quality of your network, including your endpoints, you'll want to attend this informative educational opportunity and learn about Network Quality Assurance and Endpoint Security Management technology.

As a special thank you for attending this presentation, JCS & Associates, Inc. will be giving away a 1 year license to one company for up to 5,000 endpoints
worth up to $9,995 of Congruity Inspector, the premier Network Quality Assurance solution.

Slashing security costs and complexity : An information-centric approach to data protection

Organizations are investing heavily in multiple products to protect sensitive and personal data. These include device-based defenses (such as disk encryption), network-based defenses (such as VPNs and Firewalls) and application-specific defenses. What do they all have in common? They are, in fact, all trying to protect the data - not the device, not the network, and not the port. Taking a piecemeal, device-centric approach to data protection only increases costs and complexity. Trends point to an information or data-centric approach - that is, one that truly focuses on protecting the data itself. This logical approach reduces costs and complexity and will serve as the security & privacy paradigm of tomorrow.

This session will investigate the evolving nature of data and why current approaches to protection are swiftly becoming obsolete. We will further delve into the promise of an information-centric approach, the essential capabilities of a solution, and the roadmap of how this can be achieved.

10 Data Protection Myths Dispelled

Fact or Faction: Companies only need tape backup for optimal data protection. Not sure? When it comes to managing your company's storage environment, it's hard to make good decisions without the proper insight. This presentation will outline the top 10 data protection myths and provide the tools you need to make the best decisions for data protection optimization. We will discuss common storage myths like "Won't clustering protect my company in the event of a disaster?" and "Isn't replication too expensive and complex for our server system?" and explain why these ideas are unfounded. We will also outline alternatives to clustering and illustrate how companies can use technologies like asynchronous replication in their storage environments to effectively protect important data and information.