News

• Association
• Events
• Surveys
• Press Room
• Award Honorees
• E-News

E-News Archive

• 2008-10-02
• 2008-09-18
• 2008-09-03
• 2008-08-21
• 2008-08-06
• 2008-07-23
• 2008-07-10
• 2008-06-26
• 2008-06-12
• 2008-05-29
• 2008-05-15
• 2008-05-01
• 2008-04-17
• 2008-04-03
• 2008-03-20
• 2008-03-20
• 2008-03-06
• 2008-02-20
• 2008-02-07
• 2008-01-24
• 2008-01-10
• 2007-12-31
• 2007-12-13
• 2007-11-30
• 2007-11-15
• 2007-11-01
• 2007-10-25
• 2007-10-11
• 2007-09-27
• 2007-09-13
• 2007-08-30
• 2007-08-16
• 2007-08-03
• 2007-07-19
• 2007-07-05
• Previous E-News Issues

ISSA E-News

A bi-weekly publication from the ISSA International Board

November 2, 2006

Sponsored By

Webinar: "2007 Data Protection Strategies: Is Encryption the Silver Bullet?"

Featuring guest speaker Richard Steinnon, Chief Research Analyst at IT Harvest

As organizations circle the wagon to defend against data breaches and information leaks, the magnitude of products and approaches available becomes overwhelming. Worse yet, organizations deploy one or two pieces of the protection puzzle, leaving data still at risk.

Join threat research expert, Richard Stiennon, Chief Research Analyst at IT Harvest as he connects the dots between the attacks against data and the defenses that constitute best practices for protecting that data.

Learn in-depth answers to:

• What current data protection challenges face enterprises?
• Can my Firewall/IPS/Content Filtering device do outbound content compliance?
• What industry solutions are available for data protection in 2007?
• Is encryption the silver bullet?
• What should be data protection priorities in 2007?
• Where to even start? Network, Desktop, Encryption, Storage?
• Where does Information Leak Prevention (ILP) fit into the priorities?
• What about data classification?

November 15, 2006
8:30am PST / 11:30am EST

Register now!

http:/www.portauthority-tech.com/data_protection.php?src=ISSA_eNews_Text

In this Issue

• Register Now: ISSA and Georgetown Law Center Collaborate on Major Conference Next Week! – Emerging Trends in Information Security and the Law
• ISAlliance Survey Helps Measure Value of Online Security Resources
• ISSA announces two new international chapters – France and Chile
• ISSA's Webcasts – Most recent: Outsource Labor, Not Sensitive Data: Best Practices for Securing Your Network while Offshoring and Outsourcing
• The 2006 SC Magazine reader survey is now online

Register Now: ISSA and Georgetown Law Center Collaborate on Major Conference Next Week!

Emerging Trends in Information Security and the Law

We are very excited to invite you to one of the most important and thought-provoking conferences we have ever organized. Please join us for the ISSA - Georgetown School of Law CLE Conference: Emerging Trends in Information Security and the Law: "Plausible Deniability is Dead", in Washington DC on November 9th and 10th. We have organized an unprecedented speaker roster of industry luminaries from the worlds of Law, Government and Information Security.

CEOs, CIOs, CISOs and legal professionals need to understand the developments in regulations and statutes that have led to convergence of issues between information security and inhouse and outside counsel. Business planning must consider the business drivers of both legal and security factors to be successful. This two-day conference is designed for CxOs and legal counsel, together with a combination of panels, presentations and interactive sessions to highlight key success strategies for the transparency required for business integrity, security and compliance. The issues covered are applicable to ISSA members in a wide variety of organizational roles.

For ISSA General Members, please click the following link for more conference information and registration:

https:/www.law.georgetown.edu/cle/showEventDetail.cfm?ID=145

For ISSA CISO Executive Members, please go here for more information and registration:

http:/ciso.issa.org/events/forum.html

ISAlliance Survey Helps Measure Value of Online Security Resources

The Internet Security Alliance (the “ISAlliance”), a non-profit association that promotes market-based alternatives to regulating Internet security, is evaluating the potential value to the information security community of developing a subscription-based online resource regarding the international laws, regulations and standards applicable to information security (essentially, a “cyberlaw” research service).

The ISAlliance invites information security professionals, compliance officers, auditors, lawyers and others interested in the national and international laws, regulations and standards applicable to information security to complete this questionnaire. Your answers are entirely confidential and no personal information is collected. The survey will take less than 10 minutes to complete.

Here is a link to the survey. http:/www.eiamultimedia.org/survey/isalliance_survey.html

ISSA Announces Two New International Chapters

ISSA is proud to announce the latest additions to the ISSA family. Official chapters have been certified in Chile and France. If you are based in these regions, please look into joining these chapters. There is plenty of room on the globe for more chapters, if you are interested in starting a chapter and making history, please click here.

ISSA Webcasts

Outsource Labor, Not Sensitive Data: Best Practices for Securing Your Network while Offshoring and Outsourcing
Sponsored By: Caymas Systems, Inc.

Several high profile incidents have called attention to the risk of opening your network to offshore workers or outsourced teams. Recently, in a "sting" operation conducted by a British television station, several agents were offered customer data by employees of outsourcing companies. Can an enterprise safely outsource IT, development, or business process projects without the risk of compromising critical data? While offshore companies offers highly efficient labor pools, the turnover and anonymity of outsourced and offshore teams can leave the parent company unsure of who is accessing what on their network. And in this age of increased enterprise collaboration, companies have a business need to open up their networks to suppliers, partners, and customers. This free webinar will explore the risks associated with extending access to outsourced/offshore teams and other 3rd parties, and the best practices for tightly controlling who can access sensitive corporate data.

Attendees will learn how real world enterprises are taking steps today to lock down critical assets while enjoying the economic benefits of a global labor marketPlace. Best practices covered include:

• How to use identity to define, enforce and monitor access policy
• How to protect critical assets from all unauthorized access
• How to check, quarantine, and remediate suspicious devices before they gain access
• How to control behavior of users once they are admitted to the corporate network
• How to log and audit the activity of each user, and the activity on each resource

This On Demand Webcast is available now by clicking the following link: http:/viavid.net/dce.aspx?sid=00003693

See more webcasts on our website! Click Here!

The 2006 SC Magazine Reader Survey is Now Online

What's the toughest part of your job? What threats do you think deserve more attention? Answer those and other questions in the 2006 SC Magazine reader survey, now online.

Here's your chance to influence SC Magazine with this series of questions that will allow us to gain insight into the areas of IT security that have been most worrisome to you, our readers, over the last year and the issues you foresee impacting you during 2007.

To take the survey, follow the link below.http:/www.zoomerang.com/survey.zgi?p=WEB225R2XDEFNT

Join | Association | Members | Chapters | News | Resources | Sponsorship

Copyright ©2008, Information Systems Security Association, All Rights Reserved.

Privacy Policy | Copyright Information