 |
|
|
|
|
Raleigh Tech-Security
Conference
|
Overview
The Raleigh Tech-Security Conference features 25-30
vendor exhibits and several industry experts discussing
current tech-security issues such as email security,
VoIP, LAN security, wireless security, USB drives security
& more. There will be lots of give a ways and prizes
such as iPods, $25, $50 and $100 gift cards, as well
as cash prizes and lots more! This unique conference
format will provide educational speaker sessions as
well as tremendous networking opportunities. You'll
come away with advice and knowledge you can start applying
to your environment immediately. To register for this
conference, click on the link in the left column. Your
registration will include your breakfast, lunch, conference
materials and entrance into the conference sessions
and exhibit area. Scroll down to view the full conference
agenda.
For information on participating as a vendor: sales@dataconnectors.com
| Agenda: |
|
| 8:15am-8:45am |
Check-In
and Opening Introductions |
 |
Data
Connectors is proud to host the Tech-Security Strategies
Conference. |
| 8:45am-9:30am |
Session
One |
Bob Lane |
Protection Against Spear Phishing and the Modern Cyber Threats
Advanced threats target users through email, website, instant messenger, USB devices and social engineering. Traditional blacklist antivirus cannot keep pace with today's modern malware. Join Jessica Couto from Bit9 to better understand how hackers are outsmarting traditional security approaches with targeted attacks and spear phishing – the most common technique behind some of today’s most damaging cyber attacks. Learn how these threats work and the most impactful things you can do to prevent targeted attacks from breaching your organization.
>>click here for the presentation |
| 9:30am-10:00am |
Break/Vendor
Booth Time |
| 10:00am-10:45am |
Session
Two |
|
Grant Asplund
|
SAFELY ENABLING SOCIAL MEDIA IN A MOBILE WORLD
Malware and other threats have taken notice of the progressively mission critical role social media has taken in professional communications and collaboration today. At the same time, our work force connectivity has becoming increasingly mobile. How can you leverage an always accessible work force and the benefits of social media while mitigating the risks they may pose?
- How has social media and a mobile workforce impacted your business?
- How do you assess and prioritize the benefits of social media while mitigating risks?
- What best practices, strategies, or solutions are currently being applied to the situation?
|
| 10:45am-11:30am |
Session
Three |
|
Juan Tardio
|
Get Your Wi-Fi Ready for the iPad
Apple has sold over 52 million iPhones and iPads in the first half of 2011. These employee-owned consumer devices are making their way to the workplace creating a new set of security and management challenges for IT departments. Aruba has developed a new solution to help customers scale their "existing" Wi-Fi network (including Cisco Wi-Fi) and IT helpdesk processes to support productivity enhancing bring-your-own-device initiatives. Aruba's clientless solution provides a mechanism to secure, provision and manage employee-owned devices while minimizing IT overhead.
|
| 11:30am-12:00pm |
Break/Vendor
Booth Time/Lunch |
| 12:00pm-12:45pm |
Session
Four |
|
Aleck Brailsford |
Privileged Identity management
Securing privileged accounts
|
| 12:45pm-1:00pm |
Break/Vendor
Booth Time |
| 1:00pm-1:45pm |
Session
Five |
|
John Kimberly
Systems Engineer
|
Centralizing Data Center Security to Simplify Compliance
Join this session to learn how to prevent insider attacks and more easily pass audits in mixed system data centers comprised of UNIX, Linux and Mac systems. Learn how to protect systems and data, manage user access and privileges, and audit and report on rights and privileges using an IT asset you likely already own - Active Directory.
>>click here for the presentation |
| 1:45pm-2:30pm |
Session
Six |
|
Brad Tompkins
Sales Engineer
|
Securing the Virtual World
Virtualization is part of an overall trend within IT to centralize administrative tasks while improving scalability and workloads. Questions have arisen around security within virtualized environments and if they are as safe as physical environments or even perhaps safer. This presentation addresses the challenges that are faced and how to tackle them successfully.
>>click here for the presentation |
| 2:30pm-2:45pm |
Break/Vendor
Booth Time |
| 2:45pm-3:30pm |
Session
Seven |
|
Tom Murphy
CMO |
Onboarding Personal Devices to Corporate Networks
Many IT organizations are being asked to allow personal devices onto corporate networks. Unlike corporate-issued devices that are well-managed and under IT’s control, this new Bring-Your-Own-Device (BYOD) initiative introduces a unique set of security challenges that require a balance of flexibility, visibility, security.
This presentation will explain the concept of a “BYOD Blueprint” and lessons learned from onboarding personal devices to over 800 networks around the world.
|
| 3:30pm-4:15pm |
Session
Eight |
|
Christopher Jost
|
DDoS attack evolution: you're protecting the network but that's no longer the target
In fact, the network never was the real target. Recent changes in DDoS tactics are targeting the application servers themselves and in such a way as to be extremely difficult to detect and mitigate using traditional network management techniques. In this session, you will:
- Understand the changing motivations of DDoS and the why, who, and how of the attacks
- Learn about some of the new application attacks (HTTP, DNS, SMPT, SIP, SSL) and how they differ from network attacks (UDP flood, etc.)
- Form questions to ask your carrier or hosting company once you view the attack from their standpoint
- Compare different approaches (appliance vs. cloud) to mitigating DDoS attacks and the trade-offs you must make
|
| |
Prize Drawings For All In Attendance |
| 4:15pm-5:00 |
Session
Nine |
Rob David
McAfee
|
Solving SQL injections that exploit zero-day vulnerabilities
Though many types of SQL injection can be prevented by secure coding practices, one can limit and even stop SQL injection attacks by deploying the correct tools to protect applications and databases. Certain classes of SQL injection, including those exploiting zero-day vulnerabilities, can be entirely blocked by deploying deep inspection tools, which will be demonstrated in the presentation.
This course will present a new angle on a popular attack vector on the database layer of applications: SQL Injection.
We will describe types and techniques of SQL Injection attacks on both web applications and built-in database stored program units.
We will show how simple SQL Injection can be used to own the database server through the means of privilege escalation.
We will also list ways of preventing SQL Injection attacks - ranging from secure coding practices to various external tools that will alert and prevent SQL Injection attempts, and demonstrate how hacker techniques of evasion can be used to subvert them.
Finally, we will introduce new deep inspection tools that can prevent SQL injection, even in zero-day scenarios.
Take away points:
- Characteristics of a SQL injection attack
- Secure coding practices
- Existing tools for SQL Injection prevention and techniques to evade them
- New resilient technologies used to solve entirely SQL injections, even those exploiting zero-day vulnerabilities.
|
| |
Prize Drawings For All In Attendance |
Event Sponsors/Exhibitors
Media Sponsors
|
