INFRAGARD KEYNOTE Dan Geer CISO In-Q-Tel. CyberSecurity and National Policy

Transcription

1 SecureWorld Inside Featured Keynotes Industry Expert Panels Conference Sessions Case Studies SecureWorld+ Training And More!... Security demands are rapidly growing while security training budgets are not. is your world secure? ATLANTA Cobb Galleria Centre April 27-28, 2010 SecureWorld delivers the most affordable, highest quality security education, training and networking right to your doorstep. Check us out on the web secureworldexpo.com Special Thanks to our Gold Sponsor April 27, 2010 April 28, 2010 OPENING KEYNOTE Kevin Richards ISSA International President The Current State of Cyber Security INFRAGARD KEYNOTE Dan Geer CISO In-Q-Tel CyberSecurity and National Policy This Event Hosted by: LUNCHEON KEYNOTE Patrick Gray Sr. Security Strategist Cisco Systems Security Threats & Trends in 2010 Sponsored by: LUNCHEON KEYNOTE Harish Agastya Director Trend Micro Think Tomorrow s Data Center Can Be Protected by Yesterday s Security? Think Again Sponsored by: TUALIZATION NT DATA LEAKAGE APPLICATION SECURITY COMPLIANCE SYSTEMS INTEGRATION ENCRYPTION BIOMETRICS WIRELESS FORENSICS ACCESS CONTROL BOTNETS VIRTUALIZATION APPLICATION SECUR DATA LEAKAGE COMPLIA RISK MANAGEMENT

2 HIGHLIGHTS April 27, :30 am OPENING KEYNOTE Kevin Richards ISSA International President The Current State of Cyber Security 10:15 am ISSA Atlanta Chapter Meeting 12:30 pm LUNCHEON KEYNOTE Patrick Gray Senior Security Strategist, Cisco Systems Security Threats & Trends in 2010 Sponsored by: Sponsored by: April 28, :30 am INFRAGARD KEYNOTE Dan Geer Hosted by: CISO, In-Q-Tel CyberSecurity and National Policy 12:00 pm ISACA Atlanta Chapter Meeting 12:15 pm LUNCHEON KEYNOTE Harish Agastya Director, Trend Micro Think Tomorrow s Datacenter can be Protected by Yesterday s Security? Think Again 1:00 pm ACP Atlanta Chapter Meeting SecureWorld+ Training Practical Application of Key Information Assurance Concepts The objective of the session is to provide attendees with the knowledge and tools need to implement three key risk management concepts. Real world examples of Business Impact Analysis methodology, Project Impact Analysis and Gap Analysis will be presented. (Earn 16 CPE CREDITS) Effective, Focused Awareness In this three-pronged session, we ll focus on improving the security awareness and behavior of all our users, including executive staff. We ll provide some practical ideas and techniques for delivering security training, customized according to your audience. We ll also cover how to plan and execute a program that s right for your specific organizational environment and budget. Includes SWE Conference Pass, Conference Sessions, Keynotes, Exhibits, Open Sessions and Lunch Each Day

3 TWO DAY CONFERENCE - $245 Conference Sessions, Conference Keynotes, Exhibits, Open Sessions, Lunch and 12 CPE Cert cate of Attendence. SECUREWORLD+ - $695 Extended Training Opportunities - Conference Sessions, Keynotes, Exhibits, Open Sessions, Lunch and a 16 CPE Certi cate of Attendence EXHIBITS/OPEN SESSIONS - FREE Exhibits, Keynotes and Open Sessions INVITATION ONLY 70 7:00am0am :00pm0pm Registration tion 8:00am - 9:00am Executive Steering Council Breakfast: Security and Modern Applications Ballroom D Dennis Hurst (Invitation Only) Sponsored by Voltage Security 8:00am - 9:30am SecureWorld+Practical Application of Key Information Assurance Concepts (Part 1) SecureWorld+ Effective, Focused Awareness (Part 1) :30am - 9:15am Applied Compliance Getting Out of the Trenches From Autopsy to Physical Exam: The Changing Face of Digital Forensics Soft Skills for Information Security Professionals Keyaan Williams Martin Fisher Richard Austin David Billeter 9:00am - 3:00pm Exhibit Floor Open Exhibit Hall 9:30am - 10:15am Opening Keynote:The Current State of Cyber Security Keynote Theater Kevin Richards 10:15am - 11:30am Conference Break/Product Demonstrations/Pub Crawl - Exhibit Floor Exhibit Hall 10:15am - 10:45am Atlanta ISSA Chapter Meeting Sponsored by Trend Micro Ballroom D Kevin Richards 11:15am - 12:15pm Executive Roundtable: Managing a Data Breach (Invitation Only) 115 Richard Mims 11:30am - 12:15pm The Trusted, Dynamic Enterprise, a Blueprint for Enterprise Security Presentation Alcatel-Lucent Theater 11:30am - 12:15pm Assessing Your IT Operational Security Processes Emerging Trends in Data Security and Privacy Regulations PCI Compliance - A Practical Approach Pete Chronis Getting Everyone on the Same Security Page Information Security for the Traveling Executive 116 David Keating Muzaffar Chaudhary Katherine Fithen Roy Wilkinson 12:15pm - 1:15pm Executive Roundtable: Security Metrics (Invitation Only) 115 Darryl Defendorf 12:15pm - 1:00pm Luncheon Keynote: Security Threats & Trends in 2010 Keynote Theater Patrick Gray 1:15pm - 2:00pm Industry Expert Panel: Data Protection- Walking the Thin Line Between Employee Productivity and Security Industry Expert Panel: Network Security-Finding the Right Management Program Industry Expert Panel: Effective Compliance Management in Today s Workplace Keynote Theater Presentation Theater Phil Agcaoili Muzaffar Chaudhary 2:00pm - 3:00pm Conference Dessert Break/Product Demonstration/ Pub Crawl - Exhibit Exhibit Hall Floor 3:00pm - 5:30pm SecureWorld Expo Conference Reception 3:00pm - 3:45pm 3:00pm - 4:30pm Day 1 - April 27, 2010 TIME CONFERENCE ROOM # SPEAKER(S) Disruptive Technologies Which Part of a Prickly Pear is the End Point? Cloud Security Alliance: Securing the Present and Future of Cloud Computing Networking - Key Element of Career Management Success SecureWorld+Practical Application of Key Information Assurance Concepts (Part 2) SecureWorld+ Effective, Focused Awareness (Part 2) Nanette Poulios Michael Rosenstock Dennis Hurst Kathy Booe-Kiser Check us out on the web: secureworldexpo.com

4 Day 1 - April 27, 2010 Conference Details 7:00am - Registration Opens 8:00am - 9:00am - Room Ballroom D Executive Steering Council Breakfast: Security and Modern Applications (Invitation Only) Sponsored by Voltage Security Dennis Hurst, Founding Member, Cloud Security Alliance 8:00am - 9:30am - Room 111 SecureWorld+ Training:Practical Application of Key Information Assurance Concepts (Part 1), Security Sage The objective of the session is to provide attendees with the knowledge and tools need to implement three key risk management concepts. Real world examples of Business Impact Analysis methodology, Project Impact Analysis and Gap Analysis will be presented. 8:00am - 9:30am - Room 115 SecureWorld+ Training: Effective, Focused Awareness (Part 1) John O Leary, President, O Leary Management Education In this three-pronged session, we ll focus on improving the security awareness and behavior of all our users, including executive staff. We ll provide some practical ideas and techniques for delivering security training, customized according to your audience. We ll also cover how to plan and execute a program that s right for your specifi c organizational environment and budget. 8:30am - 9:15am - Room Applied Compliance Keyaan Williams, Director of Association Relations, Metro Atlanta ISSA This presentation provides practical advice regarding the implementation of an effective compliance program, regardless of the regulation that applies to your organization. The presentation will examine the true meaning of compliance, the reasons that compliance matters, and the benefits of adopting an applied approach to solving the compliance problem. 8:30am - 9:15am - Room Getting Out of the Trenches Martin Fisher, Manager, CSIRT Team, Delta Air Lines Looking at history can provide insight to the present and the future. In this talk we compare the situation on the Western Front during World War One to the current state of information security and what that may mean for people, processes, and tools as infosec moves farther into the 21st Century. 8:30am - 9:15am - Room From Autopsy to Physical Exam: The Changing Face of Digital Forensics Richard Austin, Part-Time Instructor, Dept. of Computer Science and Information Systems, Kennesaw State University, Adj. Professor, Dept. of Information Technology, Southern Polytechnic State University The traditional practice of digital forensics has rather resembled an autopsy in that examination has focused on cold, dead disks but this is changing as practitioners begin to recognize the wealth of information that can be gleaned from the running system. This presentation will briefly review the practice and capabilities of live memory and registry analysis that are enhancing the practitioners toolbox to make a physical exam a more practicable part of forensic practice. 8:30am - 9:15am - Room Soft Skills for Information Security Professionals David Billeter, Vice President, Information Security, InterContinental Hotels Group How to say more than no. In this presentation we will look at some skills that information security professionals can use to work more effectively with business and technical peers, and build foundations that allow security to help teams succeed. 9:00am - 3:00pm Exhibit Hall Exhibit Floor Open 9:30am - 10:15am - Keynote Theater - Exhibit Floor Opening Keynote: The Current State of Cyber Security Kevin Richards, President, ISSA International 10:15am - 11:30am - Exhibit Hall Conference Break/Exhibitor Product Demonstrations/ Pub Crawl 10:15am - 10:45am - Room Ballroom D ISSA Chapter Meeting Sponsored by Trend Micro Kevin Richards, President, ISSA International 11:15am - 12:15pm - Room 115 (Invitation Only) Executive Roundtable: Managing a Data Breach Robert Mims, Director, Information Security, AGL Resources 11:30am - 12:15pm - Presentation Theater - Exhibit Floor The Trusted, Dynamic Enterprise, a Blueprint for Enterprise Security Dr. Cliff Grossner, Director Strategic Marketing, Enterprise Security, Alcatel-Lucent Securing communications for all voice and data applications as well as employee mobility is the key to supporting new business models and enabling a trusted dynamic enterprise that competes effectively in today s business environment. Rapid advances in communications technology have been accompanied by an equally rapid multiplication in security threats, the growth of cybercrime, and the introduction of new security regulations. To take advantage of the latest business models and ensure they are still protected enterprises must change how they view security. Security must become a positive enabler for driving business performance. Learn about how your network can be a security instrument delivering security to protect your corporation. 11:30am - 12:15pm - Room Assessing Your IT Operational Security Processes Peter Chronis, Senior Manager, Enterprise Information Security, EarthLink, Inc. The presentation is focused on identifying and assessing the effectiveness of an organization s IT security processes and programs, identifying gaps and developing effective mitigation strategies. 11:30am - 12:15pm - Room Emerging Trends in Data Security and Privacy Regulations David Keating, Attorney at Law, Partner, Alston & Bird LLP The presentation will focus on recent developments at the state and federal level in the area of data security and data privacy. The presentation will include a discussion of compliance strategies and approaches for managing data security requirements in customer and vendor agreements. 11:30am - 12:15pm - Room PCI Compliance - A Practical Approach Muzaffar Chaudhary, Information Security Officer, Hartsfield- Jackson Atlanta International AirportJoin Muzaffar Chaudhary for a discussion focusing on the current requirements and Compliance time line. Topics will include; PCI Stakeholder & Relationships, Creating a framework to achieve PCI compliance, Performing a Risk analysis and Identifying PCI data in your organization, Align your business processes to achieve compliance, are you prepared if you have a PCI breach? What you need to know.

5 TWO DAY CONFERENCE SECUREWORLD+ EXHIBITS/OPEN SESSIONS INVITATION ONLY 11:30am - 12:15pm - Room Information Security for the Traveling Executive Roy Wilkinson, President Emeritus, Atlanta ISSA 11:30am - 12:15pm - Room 116 Getting Everyone on the Same Security Page Katherine Fithen, Senior Manager, Information Security & Regulatory Compliance, Global IT, The Coca-Cola Company How do you get your business owners, your legal counsel, your HR department, your IT department, and all your employees on the same page when it comes to security requirements? Everyone agrees security is important until it impacts their normal processes, and then it is burdensome. 12:15pm - 1:15pm - Room 115 (Invitation Only) Executive Roundtable: Security Metrics Darryl Defendorf, Sr. Manager, IT Risk Management & Compliance, McKesson 12:30pm - 1:00pm - Keynote Theater - Exhibit Floor Luncheon Keynote: Security Threats & Trends in 2010 Patrick Gray, Senior Security Strategist, Cisco Systems 1:15pm - 2:00pm - Keynote Theater - Exhibit Floor Industry Expert Panel: Data Protection- Walking the Thin Line Between Employee Productivity and Security Managing and securing your data is becoming more complicated each day with the demands of today s fast-paced world. How can you adequately protect it and at the same time allow for your employees to access it for work related use? This panel will discuss possible data protection issues and steps to take to help you secure one of your most important company assets; your data. 1:15pm - 2:00pm - Room Industry Expert Panel:Network Security-Finding the Right Management Program With all of the recent threats and security breach scenarios, it is necessary to create a network that is secure and manageable. This panel discussion will examine the important steps and tools required for increased network security and manageability. 1:15pm - 2:00pm - Presentation Theater - Exhibit Floor Industry Expert Panel: Effective Compliance Management in Today s Workplace PCI, SOX, HIPAA, GLBA; these acronyms can cause a lot of stress for today s IT professional. Join this panel for a look at the recent developments in compliance regulations and what you should be doing to ensure you are meeting them and have effective plans in place 2:00pm - 3:00pm - Exhibit Hall Conference Dessert Break/Exhibitor Product Demonstrations/ Pub Crawl 3:00pm - 5:30pm SecureWorld Expo Conference Reception 3:00pm - 3:45pm - Room Disruptive Technologies Nanette Poulios, Director Information Assurance Center, Walsh College As technology rapidly advances, some view emerging technology as disruptive to normal business operations. Others welcome these new products as collaborative tools edging the business towards increased profi tability. Whether embraced by the organization or not, these emerging technologies penetrate our organizations and affect the security and privacy of our information and systems. This session will explore the implications and security of some of these collaborative tools and emerging technologies. As security and compliance practitioners, we will discuss how to secure collaborative tools such as wiki s, cloud computing, blogs, GPS, hand held devices and other disruptive technologies. 3:00pm - 3:45pm - Room Which Part of a Prickly Pear is the End Point? Michael Rosenstock, ESET For the It professional trying to secure the end point their job has become a game of catch with a prickly pear. The proper use of technology, policy, and education can be the defense you need to survive the game. 3:00pm - 3:45pm - Room Networking - Key Element of Career Management Success Kathy Booe-Kiser, Executive Coach, OI Partners Career Management is a continuous process, with interlinking elements key to your success. To succeed in today s dynamic work environment, you must take responsibility for managing your own career. In addition to developing technical and leadership skills, an important element of your career management is building relationships or by another name networking. It takes time and effort to establish a professional network that can have a significant impact on your career. In this discussion, we will look at ways of building an effective network and engaging that network in your career management success. 3:00pm - 3:45pm - Room Cloud Security Alliance: Securing the Present and Future of Cloud Computing Dennis Hurst, Founding Member, Cloud Security Alliance In this presentation, The Cloud Security Alliance will provide an overview of the key security considerations enterprises should consider when investigating adoption of cloud computing services. He will also provide a look ahead to how cloud computing may transform business and the nature of IT, and provide an update from the Cloud Security Alliance in its goal to establish a comprehensive set of best practices for securing these emerging technologies. 3:00pm - 4:30pm -Room 111 SecureWorld+ Training:Practical Application of Key Information Assurance Concepts (Part 2), Security Sage 3:00pm - 4:30pm - Room 115 SecureWorld+ Training: Effective, Focused Awareness (Part 2), President, O Leary Management Education Check us out on the web: secureworldexpo.com

6 Day 2 - April 28, 2010 TIME CONFERENCE ROOM # SPEAKER(S) 7:00am0am - 2:30pm Registration ion 8:00 am - 9:30am SecureWorld+Practical Application of Key Information Assurance Concepts (Part 3) SecureWorld+ Effective, Focused Awareness (Part 3) 8:30am - 9:15am Economic Crimes Using Electronic Means War Driving in 2010 and Beyond: Drive, Detect, and Defend for Wireless Networks Current Trends in Authentication Practices for Online Applications Information Classifi cation and Handling The First Step to an Phillip Hurd Alan Nutes Herb Mattord Chris Bullock Effective Information Security Framework 8:30am - 9:15am InfraGard Chapter Meeting: FBI Strategic Partnership Program & The Keynote Theater Gerald Becknell InfraGard - Research Technology Protection (RTP) 9:00am - 2:30pm Exhibit Floor Open Exhibit Hall 9:30am - 10:15am InfraGard Keynote: CyberSecurity and National Policy Keynote Theater Dan Geer 10:15am - 11:15am Conference Break/ Product Demonstrations-Exhibit Floor Exhibit Hall 10:45am - 11:45am Executive Roundtable:Cloud Computing and the Enterprise 115 Martin Fisher (Invitation Only) 11:15am - 12:00pm Integrating Records Retention and e-discovery Be The Bridge Knowledge + Malice = Chaos: When Awareness Doesn t Work The Well Rounded Security Professional: Security Professional Development from One Practitioner s Perspective Retrofi tting FISMA to an Existing System in Georgia 116 Janeine Charpiat Mick Williams Roger Dixon Mark Reardon 11:45am - 12:45pm Executive Roundtable: Effective Risk Management in Today s Risky 115 Scott Woodison World (Invitation Only) 12:00pm - 4:00pm ISACA Atlanta Chapter Meeting Ballroom D 12:00pm - 12:45pm Luncheon Keynote: Think Tomorrow s Datacenter Can Be Protected By Keynote Theater Harish Agastya Yesterday s Security? Think Again. 1:00pm - 3:00pm ACP Chapter Meeting 101 1:00pm - 1:45pm Industry Expert Panel: Directing Managed Services: Look Before you Leap Into the Cloud Industry Expert Panel: Protecting Your Endpoint Security Assets Industry Expert Panel: Data Privacy- Keeping Your Information Out of the Wrong Hands Presentation Theater Keynote Theater 1:45pm - 2:30pm Conference Dessert Break/Product Demonstration - Exhibits Floor Exhibit Hall 2:00pm - 2:30pm SecureWorld Expo: Dash for Prizes Exhibit Hall 2:30pm - 3:15pm United States Secret Service Cyber Crime Briefi ng Best Practices for Internet Domain Name Protection Threats to Information Security: Know your Enemy Resolving the Confl ict over Workplace Privacy and Employee Monitoring Roger Dixon James Baird Jonathan Jacobs Lynn Goodendorf Mike Whitman Conference Details 7:00am - Registration Opens 8:00am - 9:30am - Room 111 SecureWorld+ Training Practical Application of Key Information Assurance Concepts (Part 3), Security Sage 8:00am - 9:30am - Room 115 SecureWorld+ Training Effective, Focused Awareness (Part 3) John G. O Leary, President, O Leary Management Education 8:30am - 9:15am - Keynote Theater InfraGard Chapter Meeting: FBI Strategic Partnership Program & The InfraGard - Research Technology Protection (RTP) Gerald Becknell 8:30am - 9:15am - Room Economic Crimes Using Electronic Means Phillip Hurd, Chief Audit Executive, Director of Internal Auditing, Georgia Institute of Technology The session will focus on global crime statistics and how economic fraud is perpetrated through electronic means. Four real world fraud cases will be used to illustrate several modern economic crime schemes and how to identify them. The key fraud scheme will be a simple crime scheme that anyone can do that appears proper. 8:30am - 9:15am - Room Current Trends in Authentication Practices for Online Applications Herbert J. Mattord, Operations Manager, KSU Center for Information Security Education and Awareness, Kennesaw State University Online applications have become ubiquitous and userid/password access control remains firmly in the forefront. This session will take a high-level look at the authentication practices used by some of the online applications encountered by typical users to illustrate the good, the bad and the ugly among current practices. The technical controls used to control access will be identified and discussed. Tradeoff issues that govern which controls are used in various circumstances will also be explored.

7 8:30am - 9:15am - Room War Driving in 2010 and Beyond: Drive, Detect, and Defend for Wireless Networks Alan Nutes, Security Manager, Department of Watershed Management This presentation is designed to provide participants an understanding of the techniques used by individuals to locate and hack into an organizations wireless network and to provide safeguards. With the increasing use of wireless access points for computer networks accessed by numerous types of devices, the possibility of exploiting the exposures and vulnerabilities of these systems is becoming more prevalent. Learn the basics of wireless networks, the controls that exist, the techniques used by perpetrators and further enhancements to providing a more secure environment. 8:30am - 9:15am - Room Information Classifi cation and Handling The First Step to an Effective Information Security Framework Chris Bullock, Dir. of Information Technology and Software Security,Georgia Lottery Corporation Information Classifi cation and Handling is the key fi rst step and building block in the design and implementation of an effective information security program. This presentation will discuss why information classifi cation and handling is vital to ensuring an organization s information assets are properly protected, how to deploy effective information classifi cation and handling program and will analyze some major case studies of sensitive information breaches. 9:00am - 2:30pm - Exhibit Hall Exhibit Floor Open 9:30am - 10:15am - Keynote Theater InfraGard Keynote: CyberSecurity and National Policy Dan Geer, CISO, In-Q-Tel 10:15am - 11:15am - Exhibit Hall Conference Break/Exhibitor Product Demonstrations 10:45am - 11:45am - Room 115 Executive Roundtable:Cloud Computing and the Enterprise (Invitation Only) Martin Fisher, Manager, Computer Security Incident Response Team, Delta Air Lines 11:15am - 12:00pm - Room Integrating Records Retention and e-discovery Janeine Charpiat, Incident Response Manager, Information Security, McKesson This presentation is designed to help organizations better understand the synergies between records management and e-discovery. It is important that organizations look beyond the baseline objectives of developing retention policies and schedules and rather recalibrate toward focusing on the effective management of records that both prepares them for e-discovery and supports their overall informationrelated business goals. 11:15am - 12:00pm - Room Retrofitting FISMA to an Existing System in Georgia Mark Reardon, CISO, Georgia Technology Authority In 2008, the state of Georgia adopted the federal information security management act s (FISMA s) risk management framework for use with all of its information systems. This appears to be straightforward for new systems, but how does a security organization retrofi t an existing system? Retrofitting at fi rst appears daunting but in fact is very similar to supporting a new system with FISMA.This presentation will recommend how to approach the retrofit situation, who needs to be involved, and how to prioritize appropriate actions. 11:15am - 12:00pm - Room 116 Be The Bridge Mick Williams, Information Security Officer, Person s Banking Company, Inc The gap between IT and Management in relation to spending and needs must be bridged for a successful existence. We, as IT professionals, must use tools and common language to mesh IT and business management into one accord. We will go over common failures of IT professionals when discussing needs with management and also delve into what really works to get them and us crossing the bridge, together. 11:15am - 12:00pm - Room Knowledge + Malice = Chaos: When Awareness Doesn t Work John G. O Leary, President, O Leary Management Education On Nov. 5, 2008, two Los Angeles traffic engineers pled guilty to illegally accessing a city computer. On Aug 21, 2006, they hacked a traffic computer to disconnect four signal control boxes at critical intersections. It took 4 days for LA traffic to recover its usual semi-controlled, semi-chaotic state. The plea bargain delivered minimal penalties, but possible consequences of similar exploits in the future are mind-boggling. We ll analyze this internal incident, ask questions, and pose some what if scenarios. 11:15am - 12:00pm - Room The Well Rounded Security Professional: Security Professional Development from One Practitioner s Perspective Roger S. Dixon, Head of Information Security - North America, Invesco Ltd. In these challenging economic times companies are looking to get the best possible value out of every dollar spent, with cost saving sometimes unfortunately coming from personnel cuts. Drawing on his observations of the security industry and numerous years of experience, this discussion will take a look at some professional development activities from the presenter s perspective that can lead to a more rounded security professional, improve the value package from a company s perspective, and enhance individual careers. 11:45am - 12:45pm - Room 115 Executive Roundtable:Effective Risk Management in Today s Risky World (Invitation Only) Scott C. Woodison, Director, IT Audit, Board of Regents, University Systems of Georgia 12:00pm - 4:00pm - Ballroom D ISACA Atlanta Chapter Meeting 12:00pm - 12:45pm - Keynote Theater Luncheon Keynote: Think Tomorrow s Datacenter Can Be Protected By Yesterday s Security? Think Again. Harish Agastya, Director, Trend Micro 1:00pm - 3:00pm - Room 101 ACP Chapter Meeting 1:00pm - 1:45pm - Presentation Theater Industry Expert Panel: Directing Managed Services: Look Before you Leap Into the Cloud This panel will take a look at the components of managed services programs such as cloud computing, SaaS and Virtualization and highlight what you should be looking for and how to sift through and determine the best program for your needs. 1:00pm - 1:45pm - Industry Expert Panel: Data Privacy- Keeping Your Information Out of the Wrong Hands Your customers and clients need to know their private data is safe with you and won t be shared. How do you ensure that this is the case? What recent legislation must you be aware of related to your data privacy plans? This panel will take a look at some of the elements needed to successfully keep your data private and in compliance with new regulations mandated. 1:00pm - 1:45pm - Keynote Theater Industry Expert Panel: Protecting Your Endpoint Security Assets The equipment that your employees rely on can be one of the most vulnerable points of attack and intrusion. What can you do to help protect them? What requirements and systems should you put in place to prevent a security disruption? This panel will take a look at some elements that should be implemented to create and maintain endpoint security. 1:45pm - 2:30pm - Exhibit Hall Conference Dessert Break/Exhibitor Product Demonstrations 2:00pm - 2:30pm - Exhibit Hall SecureWorld Expo: Dash for Prizes 2:30pm - 3:15pm - Room United States Secret Service Briefi ng Jonathan Jacobs, Special Agent, United States Secret Service 2:30pm - 3:15pm - Room Best Practices for Internet Domain Name Protection Lynn Goodendorf, Good Security Consulting This session will cover the 10 best practices for protecting brand names on the Internet by effective management of a domain name portfolio. 2:30pm - 3:15pm - Room Threats to Information Security: Know your Enemy Michael E. Whitman, Director- Center for Information Security Education, Kennesaw State University In this presentation, Dr. Mike Whitman will discuss the results of a recent study which asked industry top computing executives to identify and rank the threats to their information security. Dr. Whitman will compare these results to those of a previous study in The presentation will also include discussions of industry efforts in selecting information security standards, risk management practices and security metrics. 2:30pm - 3:15pm - Room Resolving the Confl ict over Workplace Privacy and Employee Monitoring, Security Sage Employers want to be sure their employees are doing a good job, but employees don t want their every move or message logged. That s the essential confl ict of workplace monitoring. New technologies make it possible for employers to monitor many aspects of their employees jobs. Such monitoring is virtually unregulated. Therefore, unless company policy specifi cally states otherwise employers may listen, watch and read most of employees workplace communications. In this session we will examine what an employer can do and what they should do to make the workplace safe and the employees secure in the knowledge that there is really little expectation of privacy. Check us out on the web: secureworldexpo.com

8 Our business is to secure your business. Fast, Effective, Proactive, Antivirus and Antispyware Our award-winning proactive threat-detection technology delivers the most effective protection from viruses, spyware, and other Internet threats. ESET software blocks most threats the moment they are released, avoiding detection latency common to competing products. And with super-fast, super-easy operation, we keep your users productive, and your help-desk load down. Experience the difference for your business; request a Free Business Edition Trial ESET, LLC. All rights reserved. Trademarks used herein are trademarks or registered trademarks of ESET, LLC. All other names and brands are registered trademarks of their respective companies. Thanks to Our Sponsors