Home

2013 Key Themes

Why Attend

What the Market Says

Past Events

Photo Gallery

Congress History

Past Sponsors

How to Sponsor

Contact

2012 Agenda Preview

Strategies for managing information security risk: a financial services perspective

Paul Griffiths, Vice President, Technology Information Risk, Morgan Stanley 

  • The evolution of IT security strategy: the journey so far and factors that are shaping today’s focus and requirements
  • Addressing key risk areas in 2012: developing and building on existing capabilities to ‘manage and prevent’
  • Enabling organizations to harness new ways of working and new IT service delivery models: challenges and solutions
  • The impact of technological change for business and security stakeholders: considerations for the future

IT security + information security = cyber security: protecting against sophisticated, persistent adversaries

Graham Palmer, Director, Information Security, EMEA, Oracle

  • Reconciling ‘security mission’ with ‘business and legal issues’: challenges to expect, establishing a vocabulary of communication and finding workable solutions
  • Considerations for your security operations organisation: why you need more specialists whose area of expertise falls outside of normal security operations
  • The techie skills you need have changed: new school requirements to execute the deliverables of a cyber security capability
  • Revisiting IT architecture to support an ‘inside out’ approach to security: tying it all together to stop attackers gaining the advantage

Adapting to evolving cyber attack scenarios: a focus on online banking and e-commerce threats

Marco Morana, Leader, OWASP (Open Web Application Security Project)

  • New threats and attacks: how are the types and level of impact that businesses must prepare for changing, and what are the implications for security stakeholders?
  • How can existing measures designed to prevent and detect attacks be improved to mitigate loss and guard against potential business disruption?
  • Structuring application security controls to reduce risk and maximise the value of software security engineering, threat modelling and security testing
  • Preparing for what the future holds as the cyber threat landscape continues to change: tools and techniques that can support enterprise security strategy

Aligning information security strategy and controls with the business: are all the pieces of the puzzle in the right place?

Tracy Andrew, Information Security and Compliance Officer, Field Fisher Waterhouse LLC

  • Taking a step back to see the whole picture: looking through the lens of procurement to understand why holistic thinking is so critical and how information security can help the business make improved strategic decisions
  • Joining the dots between 'the operational stuff' and the goal of protecting reputation and revenue: asking the right questions of the right people to ensure compliance, risk assessment and info sec teams are working cohesively
  • Can you really justify the investment and demonstrate the return? How to communicate that security is not just closing doors of vulnerability but improving the resilience of the business and securing competitive advantage

Combating advanced threats: the role of security analytics

Chris Waynforth, District Manager - Enterprise, RSA, The Security Division of EMC

  • Exploring current approaches to security operations and their limitations
  • Delving into specific threats and ways to combat them
  • Examining the role of external threat intelligence providers and how to maximize their impact
  • Understanding data collection and analysis requirements for detecting and responding to today’s threats
  • Evaluating skill levels and the role service providers can play
  • Covering some real world examples of how advanced organisations are modifying their approach to security operations and incident response

Making your security ‘aware’ in a BYOD world

Graeme Nash, Director, Strategic Solutions, Fortinet

  • Why employees’ attitudes and behaviours in regards to their device expectations need to inform the deployment of a practical and ‘realistic to implement’ BYOD policy
  • How to bridge the gap between achieving the benefits of BYOD and the complexity of security challenges
  • Protecting your network and critical data from the threats these devices may introduce while still ensuring employee productivity
  • Getting maximum bang-for-you-buck when architecting and deploying BYOD security controls

USB Drives: How to prevent a low cost device from costing your company everything: reputation, money and customers

Jon Fielding, EMEA Director Mobile Security, Imation

  • The technologies needed to protect your organisation from an embarrassing data breach caused by a lost USB device
  • Best practices: policies to put in place to keep company data safe and ensure employees don’t put your company into the unwanted spotlight
  • How the future looks: a quick look at forthcoming product developments

Enabling Context Driven Risk Management in the Enterprise

Brad Hibbert, Executive Vice President, Product Engineering, BeyondTrust

  • The real and present danger of threat trends to the enterprise
  • How mobile and cloud are making us re-think our corporate security strategy
  • “Back to basics” security posture - simplified
  • Threat landscape analysis = positive risk based decision making

 

Smartphones and tablets in the enterprise: balancing usability and security

Patrick Michaelis, Senior Product Manager EMEA, Blackberry Security, Research in Motion

  • Creating an enterprise security control for smart devices: how does security strategy have to adapt and what are the core principles for reducing the risks created by ‘BYOD’
  • Achieving a balance between enforcing policy, mitigating threats and ensuring positive user experience: pros and cons of current technical solutions
  • Bring Your Own Device vs Choose Your Own Corporate Device: legal, privacy and data protection implications of current usage patterns
  • Enabling the organisation to take advantage of the opportunities presented by smart devices: critical questions to ask in regards to user experience, usability and security

Dealing with modern malware: preventing the problems instead of treating the symptoms

Brian Tokuyoshi, Senior Product Marketing Manager, Palo Alto Networks

  • What's really happening on the network? How employee behavior in terms of application usage is changing threat exposure
  • Where we are today in terms of 'prevent': approaches to date and assumptions that attackers have been exploiting to breach defences
  • Catching malware before it reaches the user: case study examples that show recent attacks, the gaps they exploit and the capabilities required to protect today's information and infrastructure
  • What it all means for defending against malware at the endpoint and across the network: current and future issues that need to be addressed

Hacking the human: detecting and protecting against non-technical social engineering techniques

Colin Greenlees, Head of Information Security, Eurostar 

  • Employees as attack vector: anonymised real life examples that demonstrate how gaps in people-focused security controls can lead to compromise of the crown jewels, using nothing more sophisticated than a telephone
  • Understanding the characteristics of social engineering campaigns to address the risks: how exploitation and manipulation during social interaction takes place, the path to achieving compromise of a target and challenges for detection
  • Measuring and ensuring the effectiveness of security education and awareness programmes: strategies and techniques for testing, proving and improving the value delivered by spend and reducing vulnerability in the 'human firewall'

Fraud prevention: protecting the email channel

Robert Holmes, Group Director of Products & Solutions, Melbourne IT

  • Today's challenges when combating phishing and malware delivered by the email channel
  • How new techniques can move fraud prevention 'upstream' to get ahead of the curve
  • Balancing fraud prevention and fraud mitigation for optimal impact
  • Building an ROI model for implementing new methods and innovative technology

 

Defending your data: security has evolved, the bad guys’ modus operandi has changed, and the enemy is in your blind spots seeking your valuable data

Neil Thacker, Security Strategist EMEA, Websense 

  • Where are CISO’s most vulnerable today? A look at the market trends that have disrupted the ability of IT security leaders to combat cybercrime
  • Understanding the seven stages of advanced threat, in order to best prepare your defences
  • Contextual security and strategies for successful data defence

More details on presentations at this conference will be announced soon!

2012 Principal Sponsor

2012 Strategic Sponsors










2012 Education Seminar Sponsors






 









2012 Networking Sponsors







2012 Networking Break Sponsor

2012 Event Guide Sponsor
designed and
created by
revenue+		   top of page | previous page | Home | 2013 Key Themes | Why Attend | What the Market Says | Past Events | Photo Gallery | Congress History | Past Sponsors | How to Sponsor | Contact

last updated 04 October 2012    © AKJ Associates