Los Angeles Tech-Security Conference

Peter Bybee, CISSP, CISA

7 Top Data Sources for Security Monitoring

This session given by Peter Bybee, CISSP, CISA will provide valuable insight to the top data sources for security monitoring and designing a security monitoring solution. He will discuss how to use the information being reported, or logged, to improve the security posture of the organization.

As part of this discussion the following areas will be covered:

• How to filter superfluous data before its processed and analyzed
• How to Optimize Monitoring Value
• Applying Context Monitoring Priorities to:
  • Network IDS/IPS Alerts
  • Firewall Alerts
  • Host & Client Based Alerts
  • Network Devices with ACLs
  • Server & Application Logs
  • Wireless Alert Data
  • Vulnerability Scan Data

   

Seven Steps to Delivering a Secure USB Drives Strategy and Policy!

Jim Shaeffer
President

Developing, Implementing and Enforcing an Internet Acceptable Use Policy (IAUP)

The Internet can be a wonderful source of information that can enhance employee productivity and increase the bottom line of your organization.

It can also provide access to a vast amount of purely entertainment-related materials that can threaten your organization.

Find out how you can easily develop an Internet Acceptable Use Policy, communicate that policy to your employees and monitor their use of the internet.

A baseline Network Quality Assurance Assessment is the first step to providing clear, empirical metrics that will allow you to develop a policy for your organization.

Productivity will increase with an IAUP in place, coupled with enforcement using PC and Internet activity Employee Monitoring Software.

With an IAUP backed by effective PC and Internet activity monitoring software, employees will be more focused and on task, arrive to work earlier and stay later, take fewer breaks during the day, and rarely - if ever - use PCs for frivolous or inappropriate nonwork-related activity.

Paul LaPorte
Global Solutions Marketing Manager

Lower Your TCO: Email Security in the Cloud

Learn how "in the cloud" email security solutions can greatly reduce up-front investments, minimize ongoing administration costs and minimize time-to-value. Advances in cloud computing and SaaS hold the key to achieving the lowest TCO and maximizing your ROI, while providing the anti-spam, anti-virus, DLP, archiving and encryption features you need to meet today's email security challenges.

In this session, we'll discuss:

• What features - beyond availability, effectiveness, and scalability -- you should consider when evaluating email security solutions
• How "in-the-cloud" and hybrid solutions can solve more unique business problems than on-premises solutions alone
• How the latest innovations in email security in the cloud, deliver more flexibility, control and security than ever before
• How Total Cost of Ownership for in-the-cloud and hybrid solutions stack up to traditional, on-premises email security solutions
• Why now might be the right time to switch to a next-generation, SaaS email security solution to minimize your TCO
  

>> click here for the presentation

Eddie Schwartz
Chief Security Officer

How to Stop Serious Threats from Evading Detection

>> click here for the presentation

Ken Pappas

How to Proactively Protect Against Next Generation Network Threats - Meet Security and Compliancy Requirements and Keep Your Network Safe in a Down Economy

This educational session will focus on:

• The next generation of network threats and increased risk in a depressed economy
• Automating strategies to defeat threats
• How to proactively protect your network from threats including malicious content, undesired access, and rate-based attacks using the latest network Intrusion Prevention System (IPS) and Network Access Control (NAC) technologies
• Addressing PCI, GLBA and HIPAA compliance requirements
  

10 Data Protection Myths Dispelled

Fact or Faction: Companies only need tape backup for optimal data protection. Not sure? When it comes to managing your company's storage environment, it's hard to make good decisions without the proper insight. This presentation will outline the top 10 data protection myths and provide the tools you need to make the best decisions for data protection optimization. We will discuss common storage myths like "Won't clustering protect my company in the event of a disaster?" and "Isn't replication too expensive and complex for our server system?" and explain why these ideas are unfounded. We will also outline alternatives to clustering and illustrate how companies can use technologies like asynchronous replication in their storage environments to effectively protect important data and information.

>> click here for the presentation

Sandy Hawke
Director of Product Marketing

Taking the Cost, Complexity, and Hassle Out of Endpoint Security Compliance

Preparing for an audit is time consuming and costly. The consequences for failing an audit are even worse. But, worst of all is the ongoing cost in time and money ensuring your systems stay in compliance AND you're still meeting existing IT security, availability, productivity, and cost reduction goals.

Unfortunately, shrinking IT budgets won't give organizations a free pass when it comes to compliance with information security regulations. Organizations must find ways to cut costs and still maintain compliance with configuration requirements - for a variety of regulatory requirements and corporate governance programs.

Attend this session to find out how to:

• Gain real-time visibility into endpoint configuration
• Achieve continuous compliance
• Perform assessment and remediation from a single point of control
• Do all the above - faster, and with less resources
  

BigFix®, Inc. is a leading provider of high-performance enterprise systems and security management solutions that revolutionizes the way IT organizations manage and secure their computing infrastructures. Based on a revolutionary architecture that distributes management intelligence directly to the computing devices themselves, BigFix is radically faster, scalable, more accurate and adaptive than legacy management software. Today, BigFix provides real-time visibility and control for over 8 million computing devices for 900 customers worldwide. The BigFix customer list counts many of the world's largest and most prestigious organizations in every industry including financial services, retail, education, manufacturing, and public sector agencies.

>> click here for the presentation

Dan Graney

Understanding Managed File Transfer - Insights & Best Practices

As IT departments continually adopt new technologies to improve the performance of their systems, productivity of their end users and relationships with trading partners, they are faced with numerous challenges. One such challenge companies face today is securing and automating large file transfers. Traditional file transfer systems and mediums no longer meet the needs of most organizations or their trading partners, especially when data exposure is a concern. Many organizations have developed in-house solutions that are difficult to manage, lack the ability to track and audit file transfers, and expose the organization to security breaches. A Managed File Transfer (MFT) solution should be secure, easy to manage, and have the flexibility to integrate with existing technologies.

In this presentation, you will:

• Gain a better understanding of the business challenges and drivers of file transfers.
• Identify the security concerns around traditional file transfer systems and mediums.
• Learn best practices to develop security architectures for file transfers.
• Understand how a MFT solution can meet the needs of your stakeholders