Session 1: Defending against the smartphone security threat:
The latest smartphones are now as powerful as a desktop PC of just five years ago and, perhaps more importantly, they have a variety of communications links, including cellular/mobile broadband, WiFi and Bluetooth.
As result, many users sync their smartphones with the home and/or office desktops, either on a wired or wireless basis.
This represents a potentially severe internal threat to the corporate IT environment, so how can staff and their IT managers take steps to defend against this problem?
Join us for an informative webcast in which we'll be looking at the issues that matter as we start a new decade of IT and communications.
Speakers:
Moderator: Steve Gold, Technology Editor, Infosecurity
Eugene Schultz, ISACA USA
Chandra Tekwani, VP of mobile security, Cloudmark
Session 2: Effective integration of end point security into legacy corporate IT security systems.
Whilst new IT systems are being installed faster than you can say`Microsoft Windows 7 please', many desktop systems are being interfaced with legacy IT systems centering on Unix and Linux environments.
Alongside this technical headache comes the additional problem of integrating effective end point security - with devices such as netbooks, laptops and smartphones coming to the fore - into a legacy, but still cost-effective, corporate IT security system.
So how do you start planning and deploying good end point security into a legacy corporate IT system? Surely it's better to pension off the old kit and start afresh?
Join us for a panel presentation from our team of experts, who will explain their approach to this increasing technology issue that affects organizations of all sizes.
Speakers:
Moderator: Steve Gold, Technology Editor, Infosecurity
John Pironti, ISACA USA
W. Hord Tipton, CISSP-ISSEP, CAP, CISA, Executive Director (ISC)2
Session 3: Integrating cost-effective biometrics into the modern IT security mix
After a relatively long technology gestation period, biometrics have now come of age, with a number of organizations adopting the technology for a variety of applications.
The next stage in the technology's development will be the integration of biometrics into the increasingly diverse IT security environment that larger companies are deploying.
The task, however, is likely to be lot harder than it sounds for many IT managers.
Join us for an informative and educational webcast in which our panel of experts will look at the issues facing the modern IT manager, and outline the optimum solutions and strategy that can be applied.
Speakers:
Moderator: Steve Gold, Technology Editor, Infosecurity Magazine
Ariel Freidenberg, PerSay
Dan Miller, Opus Research
Session 4: The Effective Use of Cloud Computing for Endpoint Security
As malware continues to increase, cloud computing becomes a critical evolution for endpoint protection, enabling faster access to threat intelligence and a smaller footprint on the endpoint. Join Trend Micro’s Chief Technical Officer, Raimund Genes, to hear how traditional endpoint security is unsustainable, and learn how cloud-computing provides an innovative, future-proof approach.
Speaker:
Raimund Genes, Trend Micro Chief Technical Officer
Session 5: Protecting and Managing Mobile Workforces
Today’s workforce is growing in both remote and mobile employees. This dynamic creates unique challenges to protect and manage the endpoints used by these workers. In this session, learn how administrators can gain visibility and control of endpoints regardless of location or network connectivity. Jim Smith, Trend Micro Product Marketing Manager, will discuss how administrators can remotely manage computers, while Ron Clarkson, Sr. Director of Core Technology, will discuss how protection can be extended to remote workers, even when they access the web while off the network.
Speakers:
Ron Clarkson, Sr. Director, Core Technology, Trend Micro
Jim Smith, Product Marketing Manager, Trend Micro
Session 6: Patch Management Best Practices For Application Security
Application exploits are on the rise. And yet industry experts are reporting that most organizations are still not adequately keeping up with security patches for their operating systems, much less their applications. One of the most effective ways to protect against application exploits is to implement security patches within 48 hours of release across your entire organization. Sound impossible? Join us for this discussion on patch management best practices, industry benchmarks, recent analyst reports, and ROI metrics to help ‘sell’ the project to upper management. We'll also explore some of the pitfalls that may be preventing you from achieving your patch management and application security goals.
Speaker:
Kimber Spradlin, CISA, CISSP, CPA, Sr. Product Marketing Manager, BigFix
Session 7: High Performance Incident Response: Achieve the Impossible
Despite increases in protective technologies, information security professionals are still struggling to keep up. Unique malware signatures are expected to hit over 200 million per year in the near future, zero day attacks are becoming commonplace, and cheap custom exploits are easily purchased on-line. An organization’s ability to respond is further crippled by the complexity and distribution of their assets. Clearly, IT security teams must develop new, more adaptable approaches to protecting critical assets.
One approach is to move anti-malware signatures from the desktop to the ‘cloud’ to benefit from reputation-based protections and ensure coverage for roaming and mobile endpoints.
While this is admittedly an improvement, is this enough? Moving to a high performance Incident Response program sets organizations up for success. But what does high performance entail? In this session we’ll define a High Performance Incident Response program, discuss common challenges and how to address them, as well as best practices, benchmarks, and case studies. Attendees will walk away with specific techniques to prepare for a new decade in information security.
Speaker:
Sandy Hawke, CISSP, Sr. Director Product Marketing, BigFix
Session 8: Patch Management lessons from Project Quant
Delivering patches in an effective and timely fashion is a significant challenge for many organizations. This session will present some of these challenges, how to overcome them and provide a high level framework for prioritizing which patches should be pushed first.
Speaker:
David Mortman, Contributing Analyst, Securosis
Session 9: Endpoint Security Evolution or Endgame?
Endpoint security has been under siege for years. Today's security agents have more stuff, but are less effective against today's application-centric and browser threats. In this session, Mike Rothman will discuss the ongoing relevance of anti-virus and present ideas on the next wave of endpoint security evolution, including cloud-based malware engines, whitelisting, and heuristics. This session will also cover new operating system anti-exploitation technologies and management capabilities that may change how we secure endpoints forever.
Speaker:
Mike Rothman, Analyst & President, Securosis
Session 10: Endpoint DLP - Information Protection Superhero or Destroyer of Workstations?
Depending on who you talk with, endpoint DLP will either solve all your data woes or bring all your workstations to a crashing halt. Endpoint DLP is the least mature component of the DLP suite, but can be one of the most useful data protection tools in your arsenal if used properly. This session will cut through the vendor hype and show you what works, what doesn't, and the very cool future that's just around the corner.
Speaker:
Rich Mogull, Analyst & CEO Securosis