Next Page >>
Risk management
Conference Tracks (17 – 18 Nov, 2009)
You can submit your response for any the following three conference tracks
* CT 1 - Application, Database & Web Security
* CT 2 - Infrastructure Security (Network / Wireless/ Bluetooth / Malware / Forensics / Cyber- terrorism / Physical Security / Information warfare etc.)
* CT 3 - Risk Management / Compliance
Session will have to be delivered in any one of the following Session format for Conference talks:
* Coldfire Sessions (60 Minutes): These sessions are primarily core technical talks and will cover the following categories:
The vendor has confirmed the issue exists in all versions prior to
3.5.11.025.
Credits
Research and Advisory: Information Risk Management Plc.
About IRM:
Information Risk Management Plc (IRM) is a vendor independent
information risk consultancy, founded in 1998. IRM has become a leader
Alberto Revelli and Nico Leidecker
\__Playing with Heyoka: Spoofed Tunnels and Undetectable Data
Daniel Blander
\__Emerging Trends in Security and Risk Management
Andrea Barisani & Daniele Bianco, Inverse Path
\__Sniff keystrokes with lasers/voltmeters: Side Channel Attacks
Paul Craig
Workshop on Information Security Governance (WISG 2009)
http://ait.gmu.edu/~csis/wisg2009/
Information Security Governance is to establish a framework to drive
implementation of effective information security strategies in
organizations involving risk management, reporting, and
accountability. Recent changes in business environment such as
outsourcing, global supply chain, and cross organizational
collaborations is forcing users to access and retrieve business data
across organizational boundaries. This is making data governance in
enterprise intractable. These new disruptive trends will greatly
Toucan System is a French computer security company providing
cutting edge research and security consulting to Fortune 500
as well as smaller companies globally, thanks to a wide range
of expertise ranging from Reverse Engineering
and binary analysis to cryptography and Risk Management.
3. Can you tell how many flies are in your home by the number of dead
ones on your front doorstep? If not then you're using the wrong
metrics. Study from the masters- that's right, this new year more and
more people will learn metrics from anti-malware or intrusion
detection companies. As security metrics steps away from being the
little helper in Risk Management to become a booming industry in
itself it needs to wear its big-boy pants (the ones that can hold the
fat wallet). So its status as a threat to business management,
procurement, security decision-making, and the bottom line has never
be higher. That means they want your money. Badly. That makes them a
the same type of nasty threat you can expect from any aggressive yet
GameSec will fill an important void and serve as a distinguished forum of
highest standards for years to come.
Topics of interest include (but are not limited to):
* Security games
* Security and risk management
* Mechanism design and incentives
* Decentralized security algorithms
* Security of networked systems
* Security of Web-based services
* Security of social networks
GameSec will fill an important void and serve as a distinguished forum of
highest standards for years to come.
Topics of interest include (but are not limited to):
* Security games
* Security and risk management
* Mechanism design and incentives
* Decentralized security algorithms
* Security of networked systems
* Security of Web-based services
* Security of social networks
Research & Advisory: Varun Uppal and Andy Davis
About IRM:
Information Risk Management Plc (IRM) is a vendor independent
information risk consultancy, founded in 1998. IRM has become a leader
in client side risk assessment, technical level auditing and in the
research and development of security vulnerabilities and tools. IRM is
headquartered in London with Technical Centres in Europe and Asia as
well as Regional Offices in the Far East and North America. Please visit
Toucan System is a French computer security company providing
cutting edge
research and security consulting to Fortune 500 as well as smaller companies
globally, thanks to a wide range of expertise ranging from Reverse
Engineering
and binary analysis to cryptography and Risk Management.
Roelof Temmingh, CEO, Paterva
Evaluating the Credibility of a Cyber Threat
Amit Yoran, Chairman and CEO, NetWitness Corporation
Removing the Uncertainty and Doubt (but not the Fear) from Information
Risk Management
Billy Rios and Jeff Carr, Microsoft
Sun Tzu was a Hacker - A Examination of the Tactics and Operations
from a Real World Cyber Attack
to secure computing.
Topics include, but are not limited to:
-- Secure and Trusted Computing
-- Security and Risk Management
-- Metrics and Benchmarking
-- Identity Management and Theft
-- Egovernment, Ecommerce and Ebanking Security
-- Application Security
-- AOP and Security
Toucan System is a French computer security company providing
cutting edge research and security consulting to Fortune 500
as well as smaller companies globally, thanks to a wide range
of expertise ranging from Reverse Engineering and binary
analysis to cryptography and Risk Management.
GameSec will fill an important void and serve as a distinguished forum of
highest standards for years to come.
Topics of interest include (but are not limited to):
* Security games
* Security and risk management
* Mechanism design and incentives
* Decentralized security algorithms
* Security of networked systems
* Security of Web-based services
* Security of social networks
GameSec will fill an important void and serve as a distinguished forum of
highest standards for years to come.
Topics of interest include (but are not limited to):
* Security games
* Security and risk management
* Mechanism design and incentives
* Decentralized security algorithms
* Security of networked systems
* Security of Web-based services
* Security of social networks
Andy Davis | Chief Research Officer
Information Risk Management Plc
8th Floor | Kings Building | Smith Square | London SW1P 3JJ
Tel: +44 (0) 1242 225 205
Fax: +44 (0) 1242 225 215
www.irmplc.com
• Security Data Collection and Analysis
• Internet-based Terrorism and Espionage
• Reverse Engineering of Viruses and Worms
• Security Policy Implementation & Compliance
• Botnet Detection and Prevention
• Information Security Risk Management
• Economics of Information Security
• Computer & Network Forensics
• Network Security and Intrusion Detection
• Computer Crime and Digital Forensics
• Security in the Cloud / Distributed Systems
Brett Gervasoni from SOS Labs.
About us.
Sense of Security is a leading provider of information security and risk
management solutions. Our team has expert skills in assessment and
assurance, strategy and architecture, and deployment through to ongoing
management. We are Australia's premier application penetration testing firm
and trusted IT security advisor to many of the countries largest
organisations.
Discovered by.
Nathaniel Carew from Sense of Security Labs.
About us.
Sense of Security is a leading provider of information security and
risk management solutions. Our team has expert skills in assessment
and assurance, strategy and architecture, and deployment through to
ongoing management. We are Australia's premier application penetration
testing firm and trusted IT security advisor to many of the country's
largest organisations.
Discovered by.
Phil Taylor from Sense of Security Labs.
About us.
Sense of Security is a leading provider of information security and
risk management solutions. Our team has expert skills in assessment
and assurance, strategy and architecture, and deployment through to
ongoing management. We are Australia's premier application penetration
testing firm and trusted IT security advisor to many of the country's
largest organisations.
alliances
- Doctrine of using cyber power, deterrence
Cyber Battlefield Intelligence
- Tactical and Operational issues: target selection, validation and
prioritisation, collateral damage, risk management, traffic flow
analysis
- Attribution and anonymity
- Information gathering from the underground hacker community
- Situational awareness and management in cyberspace
- Heuristic and early warning notification, event identification, data
Discovered by.
Sense of Security Labs.
About us.
Sense of Security is a leading provider of information
security and risk management solutions. Our team has expert
skills in assessment and assurance, strategy and architecture,
and deployment through to ongoing management. We are
Australia's premier application penetration testing firm and
trusted IT security advisor to many of the country's largest
organisations.
* Computer security incident response teams (CSIRTs): creation,
management, experiences
* Security in corporate environments, compliance and auditing, return on
security investments
* Security management (procedures, operational logs, records, etc.)
* Risk management in Information Security
* Computer forensics
* Protection of privacy
* Legal aspects relating to computer security
Suggested topics include, but are not limited to:
- Secure architecture and design
- Security in agile software development
- Aspect-oriented software development for secure software
- Security requirements
- Risk management in software projects
- Secure implementation
- Secure deployment
- Testing for security
- Quantitative measurement of security properties
- Static and dynamic analysis for security
Discovered by.
Phil Taylor from Sense of Security Labs.
About us.
Sense of Security is a leading provider of information security and risk
management solutions. Our team has expert skills in assessment and
assurance,
strategy and architecture, and deployment through to ongoing management.
We are Australia's premier application penetration testing firm and trusted
IT security advisor to many of the country.s largest organisations.
Suggested topics include, but are not limited to:
- Secure architecture and design
- Security in agile software development
- Aspect-oriented software development for secure software
- Security requirements
- Risk management in software projects
- Secure implementation
- Secure deployment
- Testing for security
- Quantitative measurement of security properties
- Static and dynamic analysis for security
Discovered by.
David Klein, Sense of Security Labs.
About us.
Sense of Security is a leading provider of information
security and risk management solutions. Our team has expert
skills in assessment and assurance, strategy and architecture,
and deployment through to ongoing management. We are
Australia's premier application penetration testing firm and
trusted IT security advisor to many of the countries largest
organisations.
user education as others do. It works, but not nearly quite as well as
we wish it would.
I consider all client-side threats into my security defense
consideration. For example, if users begin installing unauthorized P2P
programs, it's part of my risk management strategy to reduce the risk
from this sort of threat, regardless of whether it is a true security
vulnerability...because it is a security threat to any environment.
Roger
==================================================
5. About Gotham Digital Science
==================================================
Gotham Digital Science (GDS) is an international security services company specializing in Application and Network Infrastructure security, and Information Security Risk Management. For more information on GDS, please contact labs (at) gdssecurity.com or visit http://www.gdssecurity.com.
Discovered by.
Sense of Security Labs.
About us.
Sense of Security is a leading provider of information
security and risk management solutions. Our team has expert
skills in assessment and assurance, strategy and architecture,
and deployment through to ongoing management. We are
Australia's premier application penetration testing firm and
trusted IT security advisor to many of the countries largest
organisations.
Next Page>>
|
