February 2012 Chapter Announcements

ATTENTION, Important Notice:

The Technical Webinar with Brent Huston

Scheduled for Tuesday Jan 24th will be

rescheduled for a date TBD in the near future.

Chapter News & Updates:

-  Slides from January Meeting!

Click Here


Summary of upcoming ISSA Events:
-  Technical Webinar – Brent Huston – RESCHEDULED
-  Central Ohio ISSA Chapter Meeting – Feb 15th
-  Central Ohio ISSA CISSP Prep – Mar 13 – Jun 12
-  Full Day IAM Course – Dan Houser – Mar 17th
-  Central Ohio ISSA Chapter Meeting – Mar 21tst
-  Forensic Lab – Steve Romig – April 11th
- Central Ohio InfoSec Summit – May 17th – 18th

February Central Ohio ISSA Chapter meeting
Where: J. Liu Restaurant, Worthington
When: Wednesday February 15th, 2012
Time: 7:45 AM – 11:30 AM for all sessions
Member Cost:
Chapter Meeting  - $0
Non Member Cost:
Chapter Meeting  - $20
Sponsored By:
Registration:
Event Registration

Schedule:
07:45 – 08:15 Chapter meeting Registration with light Breakfast
08:15 – 09:10 Creating the Business Case, An Essential Guide for the Security Practitioner

All too often, legitimate and critically required security initiatives fail to reach fruition.  Oftentimes, this is due to a lack of communication and understanding between the security practitioner and the business owners.  Jack Jones, SR VP of IT Risk, Huntington Bank, will describe in detail how practitioners can achieve greater success by clearly linking an improved security posture to the success of the enterprise.

Jack Jones, SR VP of IT Risk – CISSP, CISA, CISM

09:25 – 10:20 Open Source Security Tools Your Team Is Not Using

The second a web application is published, your internal infrastructure is instantly exposed to vulnerabilities network-level protection can’t defend. Now that you’ve benefitted from our previous sessions information share of OWASP and the Top 10, we will dive into actual tactical mitigation tools available to help detect and mitigate the most common security vulnerabilities.

From WebGoat and WebScarab to VulnXML – OWASP has many free projects and web application security assessment tools, but which is right for your situation?  The combination of Bill Sempf’s knowledge, Aaron Ansari’s practical application, tools and sample code (.NET) is just what you need to keep those hackers at bay.

Bill Sempf – Administrative Director, Locksport Intl / Director OWASP

Aaron Ansari – Regional Director, PhishMe / Director OWASP

10:35 – 11:30 Identity & Access Management

At JPMorgan Chase Bank the challenge of balancing business flexibility and regulatory compliance is paramount. In the Retail lines of business: Consumer and Business Banking, Chase Mortgage Banking, Chase Auto Financing, and Chase Student Lending, as well as the supporting technology teams, compliance controls heavily leverage the Identity & Access Management processes and tools. The IAM team is charged with providing governance and monitoring of the banks access controls across nearly 1000 applications and thousands of infrastructure assets with 1.4M distinct levels of access for 2.1M non distinct users.  The only viable solution to effectively manage this volume of data is broad integration, automation, and a strategic push to on board all assets to the IAM tool suite.

Kwame Fields – CISSP

Bios: Click Here

Details on Upcoming Events:
RESCHEDULED – TBD
Deep Dive Technical Webinar with Brent Huston.  This session will cover an approach and methodology for creating graphical maps for business applications that demonstrate assets involved, data flow, trust relationships and attack surfaces. contact cmatthews@microsolved.com for more info.
Click Here to register!

March 13thCISSP Prep Class

Begins March 13th, 1 night weekly/12 weeks

Click Here for Details & Registration

March 14th Regular Monthly Meeting

Email Archiving in the Cloud

Keith Fricke, ISO, Catholic Health Partners

Compliance

Evan Tegethoff, Accuvant

PCI in the enterprise

Josiah Wilkinson, Nationwide

May 17thFull Day Course on IAM

Building an Enterprise-Strength Identity & Access Management Architecture
Date: Saturday March 17, 2012
Time: 8:30am – 5pm
Location:  Platform Lab, 1275 Kinnear Rd. http://www.platformlab.org/directions.html
Light breakfast (coffee / Danish / fruit) , lunch and beverages to be provided.
Cost: $300
Discounted rate of $250 by March 9th for:  members of (ISC)2 Central Ohio Chapter, ISSA, or ISACA
Registration via PayPal, for Credit/Debit card, or can invoice for company check.
Contact dan.houser@gmail.com for details.
Conducted by Dan Houser
Building an Enterprise-Strength Identity & Access Management Architecture
Date: Saturday March 17, 2012
Time: 8:30am – 5pm
Location:  Platform Lab, 1275 Kinnear Rd. http://www.platformlab.org/directions.html
Light breakfast (coffee / Danish / fruit) , lunch and beverages to be provided.
Cost: $300
Discounted rate of $250 by March 9th for:  members of (ISC)2 Central Ohio Chapter, ISSA, or ISACA
Registration via PayPal, for Credit/Debit card, or can invoice for company check.
Contact dan.houser@gmail.com for registration details.

April 11thForensics Lab

Steve Romig of OSU will conduct a full day lab with a mix of lecture and hands-on application (lap top required).   Beginner and intermediate level content, this course is very well suited for the IT professional or security practitioner who does not have forensics as their core competency.  With a morning of lecture and a an afternoon lab, Steve will carefully layout the correct processes and procedures to follow, teach the audience how to utilize certain VMware tools critical to enabling a forencis project, and ensure the practitioner understands how to properly prepare and hand off data to an investigator.

Two volunteers needed!

contact president@centralohioissa.org for more details.

Click Here for event registration

April 18thRegular Monthly Meeting

Phishing

Aaron Ansari, Phishme

Case study involving Forensics in the Cloud

Matt Curtin, Interhack

User Access Management

Local Speaker TBD

May 17th & 18thCentral Ohio InfoSec Summit

Details coming SOON!


For more information on speaking, teaching, and sponsorship opportunities, contact info@centralohioissa.org.

Add comment January 23rd, 2012

Previous Posts


Welcome!

Welcome to the Website of the Central Ohio ISSA!

Follow us on:

LinkedInFacebook
TwitterTwitter


Subscribe to our mailing list!

Unsubscribe to our mailing list!

RSS SANS News Bites

RSS Security TIp of the day

Blogroll

Contributors