Archive for April 2013

2013 Spring Security Seminar!

Presentations from the Seminar:

Speaker:  Alex Hutton of Zions Bancorp.
pdf_iconTowards A Modern Approach to Risk Management 

Speaker:  Chris Bream, Director at MANDIANT
pdf_icon Did I Block That


Keynote:  Ira Winkler, CISSP

“Social Engineering – How to tell if your company really sucks at Security!

Ira Winkler, CISSP is Chief Security Strategist for Codenomicon. He is considered one of the world’s leading security professionals and named a Modern Day James Bond by the media. He did this by performing espionage simulations, compromising some of the largest companies in the World and investigating crimes against them, and telling them how to cost effectively protect their information.


Speaker:  Alex Hutton of Zions Bancorp.

(Director of Risk Management for Technology and Operations)

pdf_iconTowards A Modern Approach to Risk Management

“Towards A Modern Approach to Risk Management”

Information Risk Management, we’re doing it wrong. Data Science and Big Data stores can help, but in order to take advantage of actual data and evidence we’ll need to correct some fundamentally wrong things we now think of as “best practices.” In this presentation we will discuss our silly approaches to information risk, how data sciences can assist us, and what a modern or evidence-based risk management practice can do for security teams.


Speaker:  Chris Bream, Director at MANDIANT

pdf_icon Did I Block That

“Did I Block That? – Five (or so) Things Organizations Botch During a Compromise.

Everybody gets compromised. It can be a big compromise or a small one but regardless, someone will make their way into your network at some point. Where most organizations are painfully at fault is in their response to these compromises. Chris will focus on the common mistakes that organizations make when responding to security incidents and steps you can take to help improve your capabilities.


ISSA_May 2013 Seminar_Flyer

Registration is closed.

  • When:  Thursday, 16 May 2013; 9:00 am – 1:00 pm (check-in starts at 8:30 am)
  • Where:  SLCC Miller Conference Center (see map for directions)
  • Topic:  Data Loss Prevention
  • Food:  Continental Breakfast, Buffet lunch
  • 3 CPE Credits



To join the ISSA at General membership annual fee is $110;
student fee $45 per year.

Software Engineering Institute’s Virtual Event: “Constructing a Secure Cyber Future”

ISSA members are invited to the Software Engineering Institute’s virtual event entitled “Constructing a Secure Cyber Future.”

– Date/Time: Tuesday, April 30, 2013, 10am – 5pm.

In this free virtual event, you will learn about recent cyber security research and development in:

·         how the CERT Program is building a science-based understanding of cyber defense
·         analyzing malicious code and vulnerabilities
·         avoiding security incidents
·         a new platform for cyber workforce development
·         making your security practice good as it can be
·         protecting against attack
·         cyber security challenges to watch for in 2013 and beyond

Info/register at

IANS Webinar “Never Fight a Land War in Cyberspace” by Marcus Ranum

ISSA members are welcome to join in a IANS Webinar entitled “Never Fight a Land War in Cyberspace,” on Wednesday, Apr. 24, 2-3 PM EDT. with Marcus Ranum, IANS Faculty.

Military analogies and metaphors are plentiful when discussing cybersecurity. In fact, the speaker’s own first cybersecurity paper was larded with out-of-context quotes from Sun Tzu. Now that the “cyberwar” phenomenon is in full swing, we’re constantly hearing things like “active defense” and “the best defense is a strong offense.” But what do they even mean in cyberspace? In this presentation, Marcus Ranum will compare some real-world military theories with their cyberspace equivalents so that attendees can see how confused this topic has become.

Register at: