ISSA E-News: September 2, 2010

In this Issue

Annual Membership Meeting September 8
The ISSA Journal - Cybersecurity Engineering: The Requirements Tool Advantage
The 2010 ISSA International Conference Guide
Conference Presenters Ask for Your Input
Register Today for the ISSA International Conference!
ISSA: 149 Chapters Strong with the addition of the Mountaineer Chapter
International Awards to Be Presented September 16
ISSA Connect - Airplane Downed by USB Malware Installed in Military Computers!
September ISSA Web Conference - Criteria for Establishing a Risk Management Lifecycle Program
Recent Industry Webinars – Database Attacks, Access Governance, and Social Networking Forensics
2010 ISSA Web Conference Series
Events – New ISSA & Industry Events Added!

Sponsors

Websense® TRITON™ is the first and only solution to combine industry-leading Web security, email security, and data loss prevention technologies into one unified architecture. Learn More!

Banner Hyperlink: http://www.websense.com/content/Products.aspx?cmpid=ISSAeBannerMar10

Annual Membership Meeting September 8

Register today for the Annual Membership Meeting. This year’s meeting will be online on September 8 at 8:00 a.m. US Pacific Daylight Time (4:00 p.m. London Time).

Your International Board of Directors will report on their ongoing work, the successes of the past year, goals for the year to come and answer your questions. Meet the newly-elected President and Directors as they take office.

Kevin L. Richards, International President

Directors:

Debbie Christofferson
Mary Ann Davidson
Steve Hunt
Nils Puhlmann
Stefano Zanero

The ISSA Journal: Cybersecurity Engineering: The Requirements Tool Advantage

This article by Jeff Fenton, of the Silicon Valley Chapter, and Richard Tychansky shows how an organization can benefit from making security requirements accessible through a custom web application to Information Assurance Engineers, System Engineers, Application Developers, and Internal Auditors. To read more… Click here.

You can also read this article on Connect, email a question to Jeff, and leave your insights and perspective for your fellow ISSA members.

View the September issue, (and back issues as well) on your PC, laptop, smartphone, Kindle, iPad, etc., and take it with you on the go!

Some members have found the Good Reader (Lite) a pretty reliable and easy to use application for reading the ISSA Journal on their iPhones. The following directions have been written using Good Reader-Lite, however ISSA does not endorse any particular application and only offers this as an example.

Access your iPhone email to read your Journal delivery message (sent yesterday, September 1)
Tap to download the .pdf file from your mail server (it will take a moment due to the file size and your connectivity)
Tap to open the Journal .pdf file from the email message. It will be displayed on your screen.
On the message bar located on the top of your screen is an option to “Open In GoodReader”, tap on this option
GoodReader will load, placing this month’s Journal in the “GoodReader” library and then display the Journal.
Double tap the screen of your iPhone to increase the size
Tap once to display the GoodReader options such as:

Turn page forward/back
Change the orientation
Zoom
And most importantly – read the file using “PDF ReFlow” , which essentially extracts it into pure text. This allows you to view it as a simple txt file without left/right scrolling and with the font size of your choice. Unlike with TXT files, you don’t have to choose the txt encoding to view. It makes reading the Journal easy! This option also has an “automatic scroll” so that you can read without flicking from page to page.

Once you have the Journal in your GoodReader library, you can read it at any time and any where! Simply open the GoodReader application on your iPhone and select the Journal from the list in your library.

The 2010 ISSA International Conference Guide

Make plans to join us as we CONNECT & COLLABORATE at the International Conference next month. Click here to download the full conference guide and view all the great program tracks scheduled.

Continue reading more about the ISSA International Conference as it is featured in the September issue of the ISSA Journal.

Conference Presenters Ask for Your Input

Russ McRee, Puget Sound Chapter and ISSA Journal columnist, and Rob Harvey, Metro Atlanta Chapter, will be leading discussions on “Incidence Response in Increasingly Complex Environments” and “PCI Panel: Cloud, Token, E2EE, Reasonable Security or YOU CHOOSE!”

Russ has posted a discussion on Connect and would like your feedback on the following:

Does your organization employ egress filtering?
Do you monitor and retain your DNS records?
Has security visualization served you as part of incident response?
How do you manage huge logging data footprints?

Short retention cycle?
Ensure good "rules" that capture only real events of interest?

How do you capture memory, and drive/volume images when virtualization is in play?

Asked a different way, are you able to snapshot VMs and their resources successfully for forensic review?

Let Rob know which questions on PCI would be the most valuable to you to have addressed by panelists Steve Levinson, Branden Williams and James Delucca. Help tailor the discussion to your needs by joining the pre-conference dialogue.

Register today for the ISSA International Conference!

Use your ISSA ID number and register today to receive the $95 member price.

Presentations include:

Keynote Panel: Threat Updates from the Front Lines

Panelists to include:

Bret Arsenault: Chief Information Security Officer, Microsoft
Thomas P. Madden: Chief Information Security Officer, US Centers for Disease Control and Prevention (CDC)
Tony Spinelli: Senior Vice President, Chief Security Officer - Corporate Security and Compliance, Equifax, Inc.

Emerging Threats in the Area of Cyber Crime, Data Breach Response and Digital Forensics.

Presented By: John Reed Stark – Managing Director, Stroz Friedberg

Cloud Security Alliance Update: Cloud Controls Matrix

Presented By: Phil Agcaoili – Chief Information Security Officer - Cox Communications, Inc.

Security in a CONNECTed World: Social Networking, Privacy & the Law – Panel

Click Here for a complete agenda

Registration for the ISSA International Conference includes:

The September 15th Peer COLLABORATION Opening Reception
All sessions on September 16 including - keynotes, breakout sessions, lunch and breaks.
September 16 ISSA International Awards Reception
A certificate of attendance for continuing education (to be used to submit CPE credit in accordance with the policies for your certifying body).

September ISSA Web Conference – Register Now!

Criteria for Establishing a Risk Management Lifecycle Program

Live Event: September 28, 2010
Start Time: 9:00 a.m. US Pacific/ 12:00 p.m. US Eastern/ 5:00 p.m. London
Sponsored by:

CLICK HERE to register for this ISSA Web Conference

Web Conference Overview:
Risk Management is still very much an area fraught with challenges for the Infosec professional. Addressing risk is a central part of any Information Security Management System (ISMS), and the better we can manage risk the more effective, efficient and aligned to the business our ISMS is likely to be. Just as ISMS review is an iterative process, risk management review should be too. Our speakers discuss how we can best formalize the Risk Management Lifecycle to help us improve security and the quality of our Infosec decision making.

Welcome ISSA Mountaineer Chapter

Please help ISSA congratulate President Michael Mackrill and his board of directors on their hard work developing the chapter. The Mountaineer Chapter is located in Fairmont, WV, USA. Use the chapter directory tool to locate this or any of the 149 chapters worldwide!

International Awards to Be Presented September 16

The Awards Reception will be held at the ISSA International Conference on Thursday, September 16 at 5:00 p.m. at the Georgia International Convention Center. The Awards Reception is included in your conference registration. RSVP today to celebrate these outstanding individuals, chapters and organization selected for their exceptional contributions to ISSA and the information security profession.

Hall of Fame

Steven B. Lipner
Stephen Northcutt

Honor Roll

Marc H. Noble, Northern Virginia Chapter
Kevin L. Richards, Chicago Chapter
Roger Younglove, Motor City Chapter
Ernest E. Zernial, Jr., Alamo Chapter

Security Professional of the Year

Howard “Skip” Chapman, Northern Virginia Chapter

Organization of the Year

ITT Technical Institute

President’s Award for Public Service

George Proeller, Colorado Springs Chapter

Chapters of the Year

Central Alabama, Fewer Than 100 Members
Phoenix, 100-200 Members
Northern Virginia, More Than 200 Members

Chapter Communications Program of the Year

Poland
UK

ISSA Connect: Airplane Downed by USB Malware Installed in Military Computers!

Does this title sound like it should be on Snopes? Or perhaps coming from your favorite vendor, [insert vendor here]? Well, it wasn’t exactly made up, but there is plenty of reason for skepticism. We had two big “revelations” last week: first, that malware downed a Spanish Air flight, killing 154 people (http://www.theregister.co.uk/2010/08/20/spanair_malware/), and second, that a USB flash drive installed malware on a PC in the Middle East created “the most significant breach of U.S. military computers ever.” (http://www.nytimes.com/2010/08/26/technology/26cyber.html?_r=4). These sound like two very important events, but as often happen, within days there were more details that call the entire story into question.

Both of these events will be filed away for our “Most Significant” or “Most Overhyped” contests at the end of the year, but they are worth discussing now. Connect on Connect for a summary of the must-read articles about both incidents, both supporting the facts laid out and then others are skewering them. And more importantly, voice your opinion.

Industry Webinars

Be sure to check out the recent and upcoming Industry Webinars. Learn from the expert speakers from the vendor community on topics that include:

Applicaton Intelligence and Control
Forensics
Access Governance
Data Loss Prevention
Preventing Database Attacks
Social Networks
Compliance & Risk Management

2010 ISSA Web Conference Series

All ISSA Web Conferences will be made available on-demand following the live event. CPE Credit Available: ISSA Members will be eligible for a certificate of attendance, after successful completion of a post event quiz, to submit CPE credits for various certifications.

Criteria for Establishing a Risk Management Lifecycle Program

Live Event: September 28, 2010
Start Time: 9:00 am US Pacific/ Noon US Eastern/ 5:00 pm London

Sponsored by:

Botnets

Live Event: October 26, 2010
Start Time: 9:00 am US Pacific/ Noon US Eastern/ 5:00 pm London

Sponsored by:

Information Security Standards: How have they evolved throughout 2010

Live Event: November 16, 2010
Start Time: 9:00 am US Pacific/ Noon US Eastern/ 5:00 pm London

Sponsored by:

Events

ISSA Events
Industry Events

ISSA Events

Annual Membership Meeting

September 8, 2010
8:00 a.m. US Pacific Daylight Time / 4:00 p.m. London Time

You are cordially invited to join the ISSA International Board of Directors for the Annual Membership Meeting and Installation. The Board will report on their ongoing work, the successes of the past year and goals for the year to come. You will have the opportunity to meet and interact with the International President, officers and Directors.

Click here and register today

TN InfoSec 2010 – The Changing Security Landscape

September 14, 2010
Time: 8:00a.m. – 5:00p.m. (CST)
Nashville Convention Center (Click for map)
601 Commerce St., Nashville, TN 37203

Cost (includes continental breakfast and lunch):

Before 8/15/2010, government/education - $50, member (ISSA/ISACA/Infragard/ISC2) $75, non-member $120

After 8/15/2010, member (ISSA/ISACA/Infragard/ISC2) $90, non-member $135

Discount to ISSA Members: please include member organization name and your member number.
Link to Event Website/Registration

The Nashville Technology Council (NTC) and Middle Tennessee Chapter of Information Systems Security Association host over 400 attendees and two-dozen locally and nationally recognized speakers. This 10th annual InfoSec conference features insightful keynotes from Greg Akers, SVP Research & Advanced Development, Cisco and Robert Carr, CEO and Chairman, Heartland Payment Systems, engaging panel discussions and multiple technical and managerial breakout sessions focusing on important information security issues at the Nashville Convention Center. 6.5 hours eligible CPE credit is available for this all-day event. Lunch and continental breakfast provided.

Chapter Leaders Congress

September 15, 2010
Atlanta, GA, USA

You are invited to join your peers to gain leadership tactics to help you support, strengthen and further develop your chapters. Participate in workshops and collaborative sessions specifically designed to provide you with the tools to enhance member value.

The Chapter Leaders Congress will be held as part of the ISSA International Conference. At this 1-day event for ISSA Chapter officers and Board members, participants will address current chapter management and leadership topics through best practices, experience and case studies. The goal is to provide training and access to the ideas, tools and resources for successful chapters.

Click here to register for the event.

The Congress is open to all chapter officers and board members of record at the time of registration. If you have questions regarding your eligibility, please contact Dana Paulino, dpaulino@issa.org, 866 349 5818 (toll free within the US) or + 206 388 4584 (international).

2010 ISSA International Conference

Connect & Collaborate

September 15 – 17, 2010
Atlanta, GA, USA

Mark your calendar to connect and collaborate at the 2010 ISSA International Conference

For event details CLICK HERE

ISSA CISO Executive Forum

Atlanta, GA	September 16 - 17, 2010
Phoenix, AZ	November 4 - 5, 2010
San Francisco, CA	February 12 - 13, 2011
St. Paul, MN	May 11 - 12, 2011

For details on the CISO Forum click here.

*CISO Executive Memberships are subject to approval. Applicants and guests must be executive level information security professionals; reporting directly to the CEO, CFO, CIO, and be responsible for internal security for their organization. Click here for complete membership criteria.

Consec '10 - A New Decade of Information Security

September 27-29, 2010
Norris Conference Center
Austin, TX, USA

In the 2000s, “cyber threats” grew up. Social networks emerged as the second home of millions. They attracted both legitimate new business models and new ways to defraud. Identity theft became a household term. From the network-crippling Code Red and Nimda worms of 2001, through financially-motivated rogue security software, SQL injection compromises, the rise of bot-nets, and in 2009 the theft of 130 million credit card numbers, the threats have trended away from “hacking,” for notoriety sake, toward cybercrime, for profit.

Early Bird Registration through September 9, 2010.
Conference plus workshop $295 (Members) / $335 (non-Member)
Conference Only $255 (Members) / $290 (non-Members)
Executive Edge One Day $195 (Member and non-Member rate)
Workshop Only $110 (Members) / $125 (non-Members)

For complete registration information please Click Here.

Co-Sponsored by the ISSA Capitol of Texas Chapter

2010 Louisville Metro InfoSec Conference

ISSA Kentuckiana Chapter

October 7, 2010
7:30 a.m. - 5:00 p.m.
Churchill Downs
Louisville, Kentucky, USA
Cost: $99.00

The mission of the Louisville Metro InfoSec Conference is to provide an informative and entertaining day of speakers, demos, technical challenges, peer networking and industry vendor displays. We are in our 8th year, and this year is shaping up to be the BEST EVER!

We have a very exciting conference planned for this year! The theme of the conference is "The Castle Walls Are Gone!" The presentations at the conference will deal with the expanding/disappearing network perimeter, cloud computing, Web 2.0, etc.!

For event details and registration CLICK HERE
Interested in Sponsorship - Conference Sponsorship Page
Click Here to download the Sponsorship Form

Sixth Annual Triangle InfoSeCon

Raleigh, NC Chapter

October 21, 2010
8:00 a.m. - 4:30 p.m.
The McKimmon Center, NC State University
Raleigh, NC, USA

From now until October 9th: ISSA Members at $30; Sister Org. Members (ISACA, InfraGuard, OWASP) at $40; Government at $40; Other attendees - $65
After Early Bird Close - October 10th - 20th: Registration for ALL is $85 for any online registrations or for on-site registration (cash or check only)
For event details and registration CLICK HERE
Interested in Sponsorship - Conference Sponsorships; Chapter/Conference Sponsor

The 25th Annual 2010 ISSA SoCal Security Symposium

Orange County, CA Chapter

October 21, 2010
8:00 a.m. – 6:00 p.m.
Hyatt Regency, Long Beach

Cost: ISSA members’ admission fee is $75 until October 1, $95 afterwards.
Non-members admission fee is $95 until October 1, $115 afterwards.
Student Discount fee is $50 (must display current student ID at the door)

Please join us for the SoCal Information Security event of the year! Don’t miss this opportunity to hear from an EXCEPTIONAL group of speakers.
Speakers include:

Jackie Speier – California Congresswoman, 12th District
Stephen Northcutt – President of the SANS Technology Institute
Eran Feigenbaum, Director of Security, Google Apps
Vinny Gullotto – GM of the Malware Protection Center at Microsoft Corp
Panel— Moderated by Gene Schultz

You'll also be treated to a first class vendor exhibit, continental breakfast and buffet luncheon, plenty of door prizes, and a happy hour reception immediately following the symposium.

Click Here to learn more about this event and register today!

Industry Events

SecureWorld Expo

September 22 - 23, 2010

Bay Area SecureWorld Expo
Santa Clara Convention Center
Santa Clara, CA, USA

October 6 - 7, 2010

Detroit SecureWorld Expo
Ford Conference and Event Center
Dearborn, MI, USA

October 27 - 28, 2010

Seattle SecureWorld Expo
Meydenbauer Convention Center
Bellevue, WA, USA

November 3 - 4, 2010

Dallas SecureWorld Expo
Plano Convention Centre
Plano, TX, USA

December 7 - 8, 2010

Phoenix SecureWorld Expo
Phoenix Convention Center
Phoenix, AZ, USA

SecureWorld regional conferences deliver the most affordable, highest quality security education, training and networking right to your community. SecureWorld Expo provides security education and training with nearly 60 sessions including: Cloud Computing, End Point Security, Data Privacy, Risk Management, PCI Compliance, Cybercrime and much more. SecureWorld also offers an exhibit floor featuring nearly 50 exhibitors with the latest products and services available to effectively secure your enterprise. Plus, you could earn 12-16 CPE credits toward your CISSP certifications.

ISSA MEMBERS are offered a $100 discount off the $265 conference pass which includes access to the Conference Sessions, Conference Breakfast Keynote, Exhibits & Open Sessions (Includes Lunch) and 12 CPE credits. Register on-line using code ISSNWS10.

SecureWorld+ Extended Training 2010 includes 4+ hours of intense training worth 16 CPE credits and full access to the complete SecureWorld conference program. SecureWorld+ Pass is only $495 with special ISSA member discount, register using code ISSNWS10.

For event details and registration go to: http://www.secureworldexpo.com/

OWASP AppSec US 2010

September 7 - September 10, 2010
UC Irvine Conference Center
Irvine, California

Cost: $325 before 7/31 ~ $395 after 8/1
Discount Code: ISSAUS2010
Click here for registration and event details.

Come join the best in web application security in Irvine, CA September 7-10, 2010!

AppSec US, 2010 will provide two days of world class training on topics like Web Security Testing, Application Security Leadership Essentials, and Building Secure Applications, followed by two days of presentations.

Speakers will include subject matter experts and leaders from public and private sectors in six tracks across two days, with keynotes from leading names in application security, an Industry SDLC panel, and more.

Homeland Security for Networked Industries (HSNI) 2010 Conference and Expo

September 20 - 21, 2010
Park Hyatt
Washington, DC, USA

cost: Discount to ISSA Members 10%
Click here for event details and registration

Cyber Security 2010

September 22 – 23, 2010
Le Plaza, Brussels Belgium

Cost: Military and Government from €599 + VAT; Industry from € 1499 + VAT
Discount to ISSA Members: 15%
Discount Code: ISSA_DISC
Registration link email: - quote the discount code of 15%
For event details and registration click here.

Online & Social Network Risks, Threats & Compliance

October 7, 2010
The Ibis Hotel, Earls Court, London

Cost: £50
Discount to ISSA Members (to match or exceed the maximum discount offered): £199 off full rate (for In-House IT Security professionals only)
Discount Code: ISSA
Click here for event details and registration

Hacker Halted USA 2010

October 9 - 15, 2010
Intercontinental Hotel
Miami, FL, USA

Discount to ISSA Members: $200 off the prevailing rate at time of registration (2 day conference pass only) and/or free exhibits admission
Discount Code: HHST2X
For event details and registration, click here

Data Privacy Protection for Life Sciences

October 18 - 19, 2010
The Union League - Philadelphia, PA, USA

Discount to ISSA Members: $400 off the normal registration rate of $2,195. ISSA Members pay $1,795
Discount Code: ISSA - 1795
Further events details and registration coming soon.

GRC Meeting

October 28 – 29, 2010
Centro de Convenções da FIL
Lisbon, Portugal

Cost: 500€ to 1500€
Discount to ISSA Members (20%)
Discount Code: DISSA10BER
Click here for event details and registration

PFIC – Paraben’s Forensic Innovation Conference

November 7 – November 10, 2010
Park City, UT - The Canyons Grand Summit Hotel

Cost: $299 (includes 2 meals per day)
Discount to ISSA Members: 10%
Discount Code: ISSA@PFIC
Click here for event details and registration

Paraben’s Forensic Innovations Conference 2010 will take place at The Canyons Grand Summit Hotel in Park City, Utah. The focus of PFIC is on the digital forensic community, current innovations, future advancements, and educational opportunities. PFIC 2010 will offer five different lab tracks; two lecture tracks – Forensics and Innovations. Plus three hands-on tracks – Paraben Labs, Forensic Labs, and First Responders Labs, along with a Vendor Showcase hall for live product demonstrations. The conference cost includes 2 meals per day, 3 social events, and all of the conference content. Please join us for the third annual Paraben’s Forensic Innovation Conference.

SC Congress

November 10 – November 11, 2010
New York Sheraton Hotel & Towers

Cost: $895/$1095 – Free Exhibit Hall Admission
Discount to ISSA Members: Two day pass $695
Discount Code: ISSA
Click here for event details and registration

The Third Annual SC World Congress will bring together security practitioners to discuss the emerging risks they face and the solutions to help solve those threats. Attendees will walk away with technical tips and practical documents and templates that they can immediately apply to their organization. The expo floor provides access to a diversity of products and services that will help you protect your organization from hackers, disgruntled employees and other security risks.

SC Congress Canada

November 16 – November 17, 2010
Metro Toronto Convention Center, Toronto, Canada

Cost: Two day pass $826/$1062 (Canadian dollars includes the HST tax) – Free Exhibit Hall Admission
Discount to ISSA Members: Two day pass $526
Discount Code: ISSA
Click here for event details and registration

SC Congress Canada is a unique conference and expo experience for the information security industry that offers up practical solutions, advice and suggestions to help both private and public sector chief information security officers thwart cyberattackers, safeguard critical corporate and customer assets, come into compliance with countless regulatory mandates, and, ultimately, contribute to the overall profitability of their organizations. Information security leaders will be on hand to share their insight, experiences and vast knowledge so that attendees will leave the event armed with plenty of actionable information they immediately can put to use once they return to their offices.

Cloud Computing Australasia 2010

November 30 - December 2
Sydney, Australia

Cost: $3,199
Discount to ISSA Members (10%)
Discount Code: 19151.001ISSA
Click here for event details and registration

Cloud Computing Australasia 2010 will focus on meaningful discussions about practical plans for implementation and preparedness for migration to the cloud. Drawing on the lessons learned by early adopters, the event will enable delegates to fully investigate the strategies to harness this transformational business concept.

Intelligence Analysis & Processing Summit

December 6 - December 9, 2010
Washington, DC metro area

Cost: Click Here for cost breakdown.
Discount to ISSA Members: 20%
Discount Code: ISSA2
Click here for event details and registration

IDGA’s 6th Annual Intelligence Analysis & Processing conference will deliver a comprehensive overview of these focus areas: requirements, emerging policies, programs, methods and technologies involved in processing and analyzing intelligence data to produce reports that are accurate and responsive to mission managers’ and commanders’ needs.

ISSA E-News: August 19, 2010

In this Issue

The 2010 ISSA International Conference Guide
Conference Presenters Ask for Your Input
Register Today for the ISSA International Conference!
August ISSA Web Conference - Biometrics: State of the Union
Annual Membership Meeting September 8
International Awards to Be Presented September 16
The ISSA Journal: Does Using External Security Resourcing Make Business Sense?
Recent Industry Webinars – Database Attacks, Social Networking Forensics, Application Intelligence and Control
2010 ISSA Web Conference Series
Events – New ISSA & Industry Events Added!

Sponsors

THE UNWITTING ACCOMPLICE: When preventing data breaches, employees can be the best defense or the worst enemy. Thought Leadership from Fischer.

Join McAfee for the FOCUS 10 Security Conference, three full days of concentrated learning and networking. October 12-14, 2010

The 2010 ISSA International Conference Guide

Make plans to join us as we CONNECT & COLLABORATE at the International Conference next month. Click here to download the full conference guide and view all the great program tracks scheduled.

Continue reading more about the ISSA International Conference as it is featured in the August issue of the ISSA Journal.

Conference Presenters Ask for Your Input

Russ McRee, Puget Sound Chapter and ISSA Journal columnist, and Rob Harvey, Metro Atlanta Chapter, will be leading discussions on “Incidence Response in Increasingly Complex Environments” and “PCI Panel: Cloud, Token, E2EE, Reasonable Security or YOU CHOOSE!”

Russ has posted a discussion on Connect and would like your feedback on the following:

Does your organization employ egress filtering?
Do you monitor and retain your DNS records?
Has security visualization served you as part of incident response?
How do you manage huge logging data footprints?

Short retention cycle?
Ensure good "rules" that capture only real events of interest?

How do you capture memory, and drive/volume images when virtualization is in play?

Asked a different way, are you able to snapshot VMs and their resources successfully for forensic review?

Let Rob know which questions on PCI would be the most valuable to you to have addressed by panelists Steve Levinson, Branden Williams and James Delucca. Help tailor the discussion to your needs by joining the pre-conference dialogue.

Register today for the ISSA International Conference!

Use your ISSA ID number and register today to receive the $95 member price.

Presentations include:

Keynote Panel: Threat Updates from the Front Lines

Panelists to include:

Bret Arsenault: Chief Information Security Officer, Microsoft
Thomas P. Madden: Chief Information Security Officer, US Centers for Disease Control and Prevention (CDC)
Tony Spinelli: Senior Vice President, Chief Security Officer - Corporate Security and Compliance, Equifax, Inc.

Emerging Threats in the Area of Cyber Crime, Data Breach Response and Digital Forensics.

Presented By: John Reed Stark – Managing Director, Stroz Friedberg

Cloud Security Alliance Update: Cloud Controls Matrix

Presented By: Phil Agcaoili – Chief Information Security Officer - Cox Communications, Inc.

Security in a CONNECTed World: Social Networking, Privacy & the Law – Panel

Click Here for a complete agenda

Registration for the ISSA International Conference includes:

The September 15th Peer COLLABORATION Opening Reception
All sessions on September 16 including - keynotes, breakout sessions, lunch and breaks.
September 16 ISSA International Awards Reception
A certificate of attendance for continuing education (to be used to submit CPE credit in accordance with the policies for your certifying body).

August ISSA Web Conference – Register Now!

Biometrics: State of the Union
Live Event: August 31, 2010
Start Time: 9:00 a.m. US Pacific/ 12:00 p.m. US Eastern/ 5:00 p.m. London

CLICK HERE to register for this ISSA Web Conference

Web Conference Overview:

Increasing legal and regulatory requirements are driving the need for biometric information security in support of audit and compliance. Repeated data loss and theft events have highlighted the impacts caused by unencrypted data, and the threats to unprotected biometric data. The need for consumer confidence is driving requirements for tighter security and strong, reliable authentication.

How do we protect biometric information without affecting the systems that process biometric data? How do we ensure that access control decisions based on biometrics are based on our organization’s security policies and not simply on vendor algorithms and device settings? Can we build interoperable networks of trust using biometric policies and practices? What are the strengths and weaknesses of the six most commonly used biometric technologies? How does an implementer defeat common spoofing attacks and usability challenges? All of this and more will be discussed in the upcoming ISSA Web Conference.

CLICK HERE to register for this ISSA Web Conference

Annual Membership Meeting September 8

Register today for the Annual Membership Meeting. This year’s meeting will be online on September 8 at 8:00 a.m. US Pacific Daylight Time (4:00 p.m. London Time).

Your International Board of Directors will report on their ongoing work, the successes of the past year, goals for the year to come and answer your questions. Meet the newly-elected President and Directors as they take office.

Kevin L. Richards, International President

Directors:

Debbie Christofferson
Mary Ann Davidson
Steve Hunt
Nils Puhlmann
Stefano Zanero

International Awards to Be Presented September 16

The Awards Reception will be held at the ISSA International Conference on Thursday, September 16 at 5:00 p.m. at the Georgia International Convention Center. The Awards Reception is included in your conference registration. RSVP today to celebrate these outstanding individuals, chapters and organization selected for their exceptional contributions to ISSA and the information security profession.

Hall of Fame

Steven B. Lipner
Stephen Northcutt

Honor Roll

Marc H. Noble, Northern Virginia Chapter
Kevin L. Richards, Chicago Chapter
Roger Younglove, Motor City Chapter
Ernest E. Zernial, Jr., Alamo Chapter

Security Professional of the Year

Howard “Skip” Chapman, Northern Virginia Chapter

Organization of the Year

ITT Technical Institute

President’s Award for Public Service

George Proeller, Colorado Springs Chapter

Chapters of the Year

Central Alabama, Fewer Than 100 Members
Phoenix, 100-200 Members
Northern Virginia, More Than 200 Members

Chapter Communications Program of the Year

Poland
UK

The ISSA Journal: Does Using External Security Resourcing Make Business Sense?

This article by Jim Kates, of the South Texas Chapter, explores whether it makes business sense to use less costly externally managed services to perform routine IT or IT security tasks; or do the security concerns outweigh the business decision? To read more…

Read the article in Connect, ask Jim Kates a question and leave your insights and perspective for your fellow ISSA members.

View the August issue (and back issues as well) on your PC, laptop, smartphone, Kindle, iPad, etc., and take it with you on the go!

Industry Webinars

Be sure to check out the recent and upcoming Industry Webinars. Learn from the expert speakers from the vendor community on topics that include:

Applicaton Intelligence and Control
Forensics
Data Loss Prevention
Preventing Database Attacks
Social Networks
Compliance & Risk Management

2010 ISSA Web Conference Series

All ISSA Web Conferences will be made available on-demand following the live event. CPE Credit Available: ISSA Members will be eligible for a certificate of attendance, after successful completion of a post event quiz, to submit CPE credits for various certifications.

Biometrics: State of the Union

Live Event: August 31, 2010
Start Time: 9:00 am US Pacific/ Noon US Eastern/ 5:00 pm London