Orlando Tech-Security Conference

Allen Brewer
CIO Flushing Savings Bank

Data Loss Prevention: The Enemy Within

IT departments at companies of all sizes are concerning themselves about how to protect themselves and their data against outside threats, such as hackers and viruses. However, while their attention is turned to options on how to keep these malicious entities from entering their networks, IT departments haven't realized that the greatest threat to their data is already inside and has gained access - the company's employees.

Insider threats are the number one cause of data breaches. Fifty-nine percent of employees who leave or are asked to leave a company - and have access to proprietary information - will steal company data. When a company has a fiduciary responsibility to keep its intellectual property secure, how can it implement a solution that won't adversely affect day-to-day operations?

This presentation, given by Allen Brewer, Senior Vice President of Flushing Savings Bank, will delve into the ways insiders can get access to a business' internal data, the options available to securing data stored on a network from unauthorized access and the guidelines and parameters that need to be considered when implementing a security solution.

>> click here for the presentation

Dave Butcher

Understanding Managed File Transfer - Insights & Best Practices

As IT departments continually adopt new technologies to improve the performance of their systems, productivity of their end users and relationships with trading partners, they are faced with numerous challenges. One such challenge companies face today is securing and automating large file transfers. Traditional file transfer systems and mediums no longer meet the needs of most organizations or their trading partners, especially when data exposure is a concern. Many organizations have developed in-house solutions that are difficult to manage, lack the ability to track and audit file transfers, and expose the organization to security breaches. A Managed File Transfer (MFT) solution should be secure, easy to manage, and have the flexibility to integrate with existing technologies.

In this presentation, you will:

• Gain a better understanding of the business challenges and drivers of file transfers.
• Identify the security concerns around traditional file transfer systems and mediums.
• Learn best practices to develop security architectures for file transfers.
• Understand how a MFT solution can meet the needs of your stakeholders

Jim Shaeffer
CEO

10 Simple Rules for Implementing an Encryption Strategy

Organizations are becoming more and more proactive about data security, with data encryption viewed as a core element to their defensive measures. Encryption of data is being adopted at a rapid rate to comply with industry regulations, protect intellectual property, obtain safe harbor from data breachdisclosure laws, and effectively manage risk. As encryption proliferates, IT professionals are making critical decisions that directly contribute to, or detract from, an organization's ability to effectively manage encryption keys and data security.

Data is an organization's most valuable asset and it must be protected. Designing and implementing an encryption strategy is not complicated if you understand the needs of your organization and establish the right decision-making criteria for encryption solutions. Simplicity, breadth, manageability and efficiency are the primary requirements security-minded organizations must build into their encryption strategy. A solution that has the least complexity will make the jobs of IT professionals easier, be more cost-effective and time-efficient, while at the same time protecting data and meeting compliance standards.

Bryan Atchison

Three issues underscore the need to secure digital identities and information: risk mitigation, business enablement and compliance pressures.

• When data is lost or stolen, organizations incur both financial and brand damages.
• Organizations require greater information flow to customers, partners and employees faster and in real time to stay competitively viable.
• Regulatory agencies recognize the need to protect identities and information and have mandated certain requirements dictating the handling of sensitive information.

Moreover, because of hackers, keystroke logging, phishing and other attacks which grant access to applications, perimeter security (anti-virus, firewall, etc.) is no longer enough to protect identities and information. Rather, organizations should have trusted security - often SSL, strong authentication, fraud detection, digital certificates and PKI - which strikes the right balance between affordability, expertise and service.

>> click here for the presentation

Jim Gauvain

Managing Mobile Devices - Working Outside In Rather Than Inside Out

Doug Taylor
Director of Marketing

Creating, Updating and Enforcing Your Acceptable Use Policy for a Social Networking World

An Internet Acceptable Use Policy is a written, legally binding agreement that is signed by employees with the intent of identifying the permissible workplace uses of the Internet. With today's many distractions caused by social networking, online videos and ready access to news - workers often blur what is acceptable as work related and what is inappropriate use and abuse. This session will discuss the latest trends in workplace Internet access and what an employer can do to create an AUP that helps balance work and life with regards to PC use, Data Security, Communications and Internet access.

Doug Taylor, Director of Marketing

Doug has been a lecturer, writer and broadcast media guest for nearly 20 years. Today Taylor speaks on topics ranging from Internet Safety to trends in Social Networking. As a certified iSafe Internet Safety Instructor Taylor often meets with Employers, Schools and Parent groups on what they can do to increase productivity and keep computer users, and networks, safe from the potential dangers found on the Internet.

>>click here for the presentation