SecureWorld Dallas 2017

Come to the Registration desk in the lobby to check-in and get your badge. SecureWorld staff will be available throughout the day if you have any questions.

Moderated discussion for SecureWorld Advisory Council members. By invite only.

Big Data and the Internet of Things are revolutionizing virtually every industry. We’re told of pinpoint accurate medical records and diagnostics, all-encompassing analytics, mastery of industrial processes, effortless control of our static and moving environments and complete connectivity and communication with anything and everything we might ever imagine being useful. Wonderful!

But SecureWorld attendees and others who’ve been in IT Security for any appreciable time have an internal red flag that goes up upon hearing “It’s gonna be great!” Then those euphoria-deflating security questions start multiplying and running through our somewhat addled brains. Where is all this Big Data coming from? Where will it reside? Who controls it? Who grants access? On what basis? How do we know it’s accurate, relevant? Is it complete enough for life and death medical decisions? What about analytics system administration; data monitoring and correction procedures; incompatible security architectures? Oh yeah, and privacy?

What kind of security is built into all these Internet-connected devices? How easy is it to control access? Is the data they trade and store encrypted? Who’s liable if they fail or give erroneous signals?

Big Data and IoT are neither fads nor merely trends, they constitute a revolution. There’s no going back. Join us as we look from a security perspective at both the bright and dark sides.

The University of Massachusetts has developed a 6 hour SecureWorld Plus training class that instructs attendees on the best practices for designing, building, and maintaining a Cybersecurity Program based on the NIST Cybersecurity Framework. Organizations who currently use the Framework or are planning to use the Framework for their cybersecurity program will benefit from this course.

This innovative education and training program includes the following key elements:

• An introduction to the key components of the NIST Cybersecurity Framework
• How to use the Framework to support business strategy, technology strategy, and cyber-risk strategy
• An approach for adopting the framework to build and sustain secure and resilient infrastructure, secure and resilient networks, secure and resilient applications
• How to use the framework to protect critical information assets
• A Controls Factory Model that organizations use to create an Engineering Program, a Technical Program and a and Business / Management Program
• A methodology for developing a Cybersecurity Strategy, System Security Plan (SSP), Risk Assessment, Plan of Action and Milestones (POA&M) and Executive Report

The class will help individuals and organizations acquire knowledge, skills and abilities to:

• Develop a strategy to apply the NIST Cybersecurity Framework (NCSF) to their environment
• Create a comprehensive System Security Plan (SSP) based on the NIST Cybersecurity Framework
• Conduct a Risk Assessment to compare the current profile with the target profile and identify any gaps that need to be addressed
• Develop a Plan of Action and Milestones (POA&M) to mitigate the highest priority gaps
• Establish an Executive Report to measure and communicate current profile, target profile, POA&M and program plan / roles and responsibilities to remediate identified gaps
• Identify required workforce skills and develop career pathways for improving skills and experience

About the Instructor – Larry Wilson:

• Larry Wilson is the former CISO for UMass President’s Office from 2009 to 2017
• Prior to UMass, Larry developed and managed the Global Infrastructure Services (GIS) Security Program for State Street Corporation
• Larry has been teaching cybersecurity courses based on the NIST Cybersecurity Framework at SecureWorld events for the past 5 years
• Larry has conducted over 20 consulting engagements, helping organizations design and build cybersecurity programs based on the NIST Cybersecurity Framework

The program and its author have won the following industry awards:

• Security Magazine’s Most Influential People in Security, 2016
• SANS People Who Made a Difference in Cybersecurity Award, 2013
• Information Security Executive (ISE) North America Program Winner for Higher Education, 2013

The human mind is the weakest link in cyber space. We will show what to look for to be safe online.

Blockchain technology is very young and often times overhyped. In this talk we will cut through the hype and explore the use of blockchain technology to secure IoT devices. No previous understanding of blockchain technology is required to attend.

The core of the next-generation security protection process will be continuous, pervasive monitoring and visibility that is constantly analyzed for indications of compromise. Security Monitoring will encompass as many layers of the IT stack as possible including network activity, endpoints, system interactions, application transactions and user activity
My presentation will provide several security related scenarios where centralized security data analytics and adaptive security architecture are used to respond in a dynamic way to enable this next generation security protection. The design and benefit of joining the foundational elements of intelligence, context, and correlation with an adaptive architecture will be discussed. I will look behind the curtain of “marketecture” to the real and aspirational solutions for the SOC that will likely materialize as vendor products mature over the next few years.

Your opportunity to visit our solution vendor partners, whose sponsorship makes SecureWorld possible! Booths have staff ready to answer your questions. Look for participating Dash For Prizes sponsors to be entered to win prizes.

Reboot with coffee and infused water while visiting exhibitors on the exhibitor floor.

This session is for our Advisory Council members only.

The General Data Protection Regulation (GDPR) is a uniform data security law becomes effective in May 25, 2018, as the primary law regulating how companies that store or process an EU citizens’ personal data must protect that data. It applies to businesses in the EU and all businesses marketing services or goods to EU citizens regardless of their geographic location. The GDPR provides a baseline set of standards for companies that handle EU citizens’ data to better safeguard how EU citizens’ personal data is processed and transferred. Penalties for non-compliance can be up to 4% of the violating company’s global annual revenue depending on the nature of the violation.

The GDPR contains 11 chapters and 91 articles that:
• give data subjects more control over personal data that is processed automatically.
• require data breach notification to a government enforcer within 72 hours of learning of the breach and must provide certain specific details of the breach and requires data controllers to notify data subjects as quickly as possible of breaches when the breaches place their rights and freedoms at high risk.
• require companies to perform Data Protection Impact Assessments to identify risks to consumer data and Data Protection Compliance Reviews to ensure those risks are addressed.
• require most all companies to appoint a data protection officer to advise about GDPR compliance and act as a point of contact.

Those data protection officers have certain reporting responsibilities as outlined in the GDPR. US regulators have looked to European privacy laws in their own enforcement and legislative actions. As geographic boundaries where companies do business and where customers access products and services, it is important to be aware of the GDPR’s requirements. Where the GDPR does apply, it is crucial for companies to comply in order to avoid potentially devastating fines.

The evolution of the TTP’s or Tactics, Techniques and Procedures in cybercrime in the 1H of 2016 based on threat intelligence derived from Trend Micro’s global Smart Protection Network™ with focus on ransomware and other key threats.

Every organization has a unique way of representing their cyber security maturity. In this informative session, we will be covering a variety of topics including risk management, the full spectrum of security considerations, and 2 different approaches you can use to represent a maturing security program. Join Michael R. Smith and James Carpenter as they present two different views on how to evaluate whether an Information Security Department is maturing.

Throughout 2018 mainstream headlines highlighted cyber-attacks and security threats that included possible interference in the U.S. presidential election, worldwide malware outbreaks and the Equifax data breach. These and other high-profile events spurred greater cyber-defense investment by everyone from nation states and global corporations to individuals purchasing anti-malware solutions for personal devices. Yet even as investments increase so do threats, hacks and vulnerabilities. This session will help you understand these complex and challenging dynamics. Based on findings from Radware’s research and a global industry survey, the session will show real attack data and customer stories to paint a picture of where we are and what security professionals can do.

Join the session to learn more about:
• The threat landscape deep dive—the who, what and why of attacks
• Potential impact on your business, including associated costs of different cyber-attacks
• Critical attacks in the midst: DNS, IoT and risks lurking in the cloud
• Emerging threats and how to protect against them
• A look ahead – predictions and what to prepare for

Shawn Tuma will explain why cybersecurity is a legal issue and overall business risk issue that companies must manage. He will address why federal, state, and international law (including the GDPR and NY Cyber Regs) requires companies to have a cyber risk management program and key components to include.

Security teams are struggling to keep up with the myriad of attack vectors that exist. Future InfoSec professionals will take a more adversarial approach to incident response. Will we have artificial intelligence helping threat hunters squash attacks before they can do any significant damage on the network while alerting the authorities in real time? Can a true partnership form between organizations and law enforcement to share information? Join our experts as they discuss challenges modern security teams face and how we can build a better plan for tomorrow.
Panelists:
Rick Miles, Red Seal
Tommy Hui, SentinelOne
Ron Winward, Radware
Marcelo Brunner, CloverIT
Moderator: Dion McBride

It would seem the more we “build a better mousetrap” the better the threats become. Will machine learning and AI be used against us in the future? Will these and other innovations be hacked and used for gain? Will the Crime as a Business platform take off where business competitors are utilizing these attacks for the upper hand? Perhaps the cars that are being hacked will evolve into driverless vehicles that are hacking companies from inside there own parking lots. What about drones? So many questions, let’s see what our experts say on this panel.
Panelists:
Kristi Thiele, Ixia
Bryan Lares, Sparkcognition
John Macintosh, Comodo
Paul Trulove, SailPoint
Steve Shalita, Pluribus Networks
Moderator: JP Hill, (ISC)2

Reboot with coffee and infused water while visiting exhibitors on the exhibitor floor.

Easy to remember actions that they can implement in their environment today, use my presentation as a template to create your own Security Awareness. Educate attendees about their home / private cyber lives today. Security Awareness has become the number one action in many companies that pays the most dividends in your network, do you have one?

The Internet of Things has become a topic of concern over the past few years: the interconnection of devices have brought to life the Internet in a manner seldom conceived in science and is looking to broaden its expansive nature. Enter nano-robotics with an extension of IoT called the Internet of Bio-NanoRobotic Things: linking human physiology and human vulnerability to the internet. How do we secure what we do not understand?

From insiders to sophisticated external attackers, the reality of cyber security today is that the threat is already inside. A fundamentally new approach to cyber defense is needed to detect and investigate these threats that are already inside the network – before they turn into a full-blown crisis.

Based on unsupervised machine learning and probabilistic mathematics developed by specialists from the University of Cambridge, new ‘immune system’ technologies are capable of learning the ‘self’ of an organization. By analyzing every network, device, and user, and modeling them as they go about their day-to-day activity, the Enterprise Immune System can establish a highly accurate understanding of normal behavior. It can therefore spot abnormal activity as it emerges, and even take precise, measured actions to automatically curb the threat.

Rules and signatures are not keeping pace with today’s rapidly evolving cyber attacks. The Enterprise Immune System represents a fundamental step-change in automated cyber defense, is relied upon by organizations around the world, and can cover up to millions of devices.

In this session, learn:
• How new machine learning and mathematics are automating advanced cyber defense
• Why 100% network visibility allows you to detect threats as they happen, or before they happen
• How smart prioritization and visualization of threats allows for better resource allocation and lower risk
• Real-world examples of unknown threats detected by ‘immune system’ technology

There are gaps in most security professionals knowledge of cryptography, and these lead to significant security issues. This presentation is about filling those gaps.

Big Data and the Internet of Things are revolutionizing virtually every industry. We’re told of pinpoint accurate medical records and diagnostics, all-encompassing analytics, mastery of industrial processes, effortless control of our static and moving environments and complete connectivity and communication with anything and everything we might ever imagine being useful. Wonderful!

But SecureWorld attendees and others who’ve been in IT Security for any appreciable time have an internal red flag that goes up upon hearing “It’s gonna be great!” Then those euphoria-deflating security questions start multiplying and running through our somewhat addled brains. Where is all this Big Data coming from? Where will it reside? Who controls it? Who grants access? On what basis? How do we know it’s accurate, relevant? Is it complete enough for life and death medical decisions? What about analytics system administration; data monitoring and correction procedures; incompatible security architectures? Oh yeah, and privacy?

What kind of security is built into all these Internet-connected devices? How easy is it to control access? Is the data they trade and store encrypted? Who’s liable if they fail or give erroneous signals?

Big Data and IoT are neither fads nor merely trends, they constitute a revolution. There’s no going back. Join us as we look from a security perspective at both the bright and dark sides.

The University of Massachusetts has developed a 6 hour SecureWorld Plus training class that instructs attendees on the best practices for designing, building, and maintaining a Cybersecurity Program based on the NIST Cybersecurity Framework. Organizations who currently use the Framework or are planning to use the Framework for their cybersecurity program will benefit from this course.

This innovative education and training program includes the following key elements:

• An introduction to the key components of the NIST Cybersecurity Framework
• How to use the Framework to support business strategy, technology strategy, and cyber-risk strategy
• An approach for adopting the framework to build and sustain secure and resilient infrastructure, secure and resilient networks, secure and resilient applications
• How to use the framework to protect critical information assets
• A Controls Factory Model that organizations use to create an Engineering Program, a Technical Program and a and Business / Management Program
• A methodology for developing a Cybersecurity Strategy, System Security Plan (SSP), Risk Assessment, Plan of Action and Milestones (POA&M) and Executive Report

The class will help individuals and organizations acquire knowledge, skills and abilities to:

• Develop a strategy to apply the NIST Cybersecurity Framework (NCSF) to their environment
• Create a comprehensive System Security Plan (SSP) based on the NIST Cybersecurity Framework
• Conduct a Risk Assessment to compare the current profile with the target profile and identify any gaps that need to be addressed
• Develop a Plan of Action and Milestones (POA&M) to mitigate the highest priority gaps
• Establish an Executive Report to measure and communicate current profile, target profile, POA&M and program plan / roles and responsibilities to remediate identified gaps
• Identify required workforce skills and develop career pathways for improving skills and experience

About the Instructor – Larry Wilson:

• Larry Wilson is the former CISO for UMass President’s Office from 2009 to 2017
• Prior to UMass, Larry developed and managed the Global Infrastructure Services (GIS) Security Program for State Street Corporation
• Larry has been teaching cybersecurity courses based on the NIST Cybersecurity Framework at SecureWorld events for the past 5 years
• Larry has conducted over 20 consulting engagements, helping organizations design and build cybersecurity programs based on the NIST Cybersecurity Framework

The program and its author have won the following industry awards:

• Security Magazine’s Most Influential People in Security, 2016
• SANS People Who Made a Difference in Cybersecurity Award, 2013
• Information Security Executive (ISE) North America Program Winner for Higher Education, 2013

Join your peers at 3:45 p.m. in the Exhibit Hall for beverages and snacks. Test your luck at Blackjack, Roulette, and Craps. Hand the voucher you receive at registration to one of the participating exhibitors to get started with $1,000 and win big for your chance at some cool prizes!
Thank You Sponsors:
Mimecast: Happy Hour Sponsor
Cobalt: Black Jack Table
ISSA North Texas: Poker Table
SpearTip: Craps Table
Corelight: Roulette Table

Come to the Registration desk in the lobby to check-in and get your badge. SecureWorld staff will be available throughout the day if you have any questions.

Big Data and the Internet of Things are revolutionizing virtually every industry. We’re told of pinpoint accurate medical records and diagnostics, all-encompassing analytics, mastery of industrial processes, effortless control of our static and moving environments and complete connectivity and communication with anything and everything we might ever imagine being useful. Wonderful!

But SecureWorld attendees and others who’ve been in IT Security for any appreciable time have an internal red flag that goes up upon hearing “It’s gonna be great!” Then those euphoria-deflating security questions start multiplying and running through our somewhat addled brains. Where is all this Big Data coming from? Where will it reside? Who controls it? Who grants access? On what basis? How do we know it’s accurate, relevant? Is it complete enough for life and death medical decisions? What about analytics system administration; data monitoring and correction procedures; incompatible security architectures? Oh yeah, and privacy?

What kind of security is built into all these Internet-connected devices? How easy is it to control access? Is the data they trade and store encrypted? Who’s liable if they fail or give erroneous signals?

Big Data and IoT are neither fads nor merely trends, they constitute a revolution. There’s no going back. Join us as we look from a security perspective at both the bright and dark sides.

The University of Massachusetts has developed a 6 hour SecureWorld Plus training class that instructs attendees on the best practices for designing, building, and maintaining a Cybersecurity Program based on the NIST Cybersecurity Framework. Organizations who currently use the Framework or are planning to use the Framework for their cybersecurity program will benefit from this course.

This innovative education and training program includes the following key elements:

• An introduction to the key components of the NIST Cybersecurity Framework
• How to use the Framework to support business strategy, technology strategy, and cyber-risk strategy
• An approach for adopting the framework to build and sustain secure and resilient infrastructure, secure and resilient networks, secure and resilient applications
• How to use the framework to protect critical information assets
• A Controls Factory Model that organizations use to create an Engineering Program, a Technical Program and a and Business / Management Program
• A methodology for developing a Cybersecurity Strategy, System Security Plan (SSP), Risk Assessment, Plan of Action and Milestones (POA&M) and Executive Report

The class will help individuals and organizations acquire knowledge, skills and abilities to:

• Develop a strategy to apply the NIST Cybersecurity Framework (NCSF) to their environment
• Create a comprehensive System Security Plan (SSP) based on the NIST Cybersecurity Framework
• Conduct a Risk Assessment to compare the current profile with the target profile and identify any gaps that need to be addressed
• Develop a Plan of Action and Milestones (POA&M) to mitigate the highest priority gaps
• Establish an Executive Report to measure and communicate current profile, target profile, POA&M and program plan / roles and responsibilities to remediate identified gaps
• Identify required workforce skills and develop career pathways for improving skills and experience

About the Instructor – Larry Wilson:

• Larry Wilson is the former CISO for UMass President’s Office from 2009 to 2017
• Prior to UMass, Larry developed and managed the Global Infrastructure Services (GIS) Security Program for State Street Corporation
• Larry has been teaching cybersecurity courses based on the NIST Cybersecurity Framework at SecureWorld events for the past 5 years
• Larry has conducted over 20 consulting engagements, helping organizations design and build cybersecurity programs based on the NIST Cybersecurity Framework

The program and its author have won the following industry awards:

• Security Magazine’s Most Influential People in Security, 2016
• SANS People Who Made a Difference in Cybersecurity Award, 2013
• Information Security Executive (ISE) North America Program Winner for Higher Education, 2013

Join InfraGard for their chapter meeting and guest presentation. This opportunity is open to all attendees.
Presentation:
Upon discovering that a data theft incident has occurred, a significant question arises: Is there an obligation to report the data theft incident, to victims and authorities, as a data breach? The “encryption exception” that is within the GDPR and many US laws indicates that if the data was encrypted when stolen, there has not been a breach and so reporting is not required. This presentation will provide an alternative view: for example, seven different ways that encrypted data may be compromised will be presented. Only by eliminating all seven as possibilities, should you rely on the “encryption exception.”
Presentation Level:
GENERAL (InfoSec best practices, trends, solutions, etc.)

Data breaches are inevitable. A company’s survival could depend on the way it reacts and responds to a data breach. Cybersecurity crisis management goes beyond the nuances of day to day incident response and addresses the very specific elements that a company needs to implement in order to effectively survive a breach.

Data breaches are complex affairs. Response activities are proportionately complex involving various stakeholders with slightly different perspective. This presentation covers the 2017 “Data Breach Digest – Perspective is Reality”; a compendium of data breach scenarios told from different stakeholder points of view covering their decisions, actions and crucial lessons learned.

Your opportunity to visit our solution vendor partners, whose sponsorship makes SecureWorld possible! Booths have staff ready to answer your questions. Look for participating Dash For Prizes sponsors to be entered to win prizes.

Reboot with coffee and infused water while visiting exhibitors on the exhibitor floor.

We are blinded and handcuffed to the truth of our current cyber war and how it affects us every day. As long as we are constantly reacting to threats both personally and for our business, we are like the man brow sweating and running mad to keep all of his plates spinning in the air without dropping one.
The only question you should ask yourself is…Not If, but when, you will prepare for your enemies? Where is your data?

Come hear and participate in discussion around new trends in security, threats, mitigations, and real
world approaches to addressing the operational and security needs of your organization.

The concept of cyber-resiliency and how it relates to the #1 attack vector for organizations.

The presentation examines the need for policies, objectives, controls, processes and procedures to help companies manage the risk, threats, and vulnerabilities that can cause loss as a result of a cyber breach or loss of confidential/proprietary information. It examines organizational responsibilities, key steps in forging and executing an Information Security Plan, and what you can do to better protect yourself from loss.

Phishing continues to be the #1 attack vector for the bad guys. Why? Simply put: it works. These attacks keep getting more realistic and sophisticated. In the future we should expect nothing less. Criminals will do more homework on their potential victims and possible pose as business leads or clients to gain our trust. What sales person doesn’t want email from a potential client who wants a new solution? Or they may just lay in wait until they’ve collected enough information to strike. Will they actually come to your business and drop thumb drives like pen testers do? Use drones to do their dirty work? Our experts will discuss the current state of affairs and brainstorm possible new scenarios.
Panelists:
Jason Robohm, Thales
Caspian Kilkelly, Rapid7
Luis Rodriguez, Mimecast
Brent Chapman, RoundPoint Mortgage
Duaine Styles, Torchmarkcorp
Moderator: Chris Mears

Reboot with coffee and infused water while visiting exhibitors on the exhibitor floor.

Be sure to have exhibitors scan your badge for a chance to win prizes. Past prizes have included Kindles, Bose headphones, gift cards, iPads, iPods and more! *Must be present to win

Just as we are getting IoT, cloud computing, SOX/HIPAA/FISMA etc. under our belts, Europe changed the rules. The General Data Protection Regulation (GDPR) may just change the way we look at “compliance” once and for all. This isn’t just another regulation. We’re going to need to make a fundamental change in the way we think about data to get past this newest challenge.

This presentation will be engaging for technical & not-so-technical audiences, as I explain career progressions from IT Analyst, to software consultant, to lead security architect, & my experience designing security solutions for businesses & governments. I’ll gladly answer questions & share my advice for upcoming security professionals.

The human factor – what are you doing to mitigate your most vulnerable cyber security risk?