Boston Tech-Security Conference

Executing a Strategy to Manage Identity, Access and Privilege

>> click here for the presentation

Andrew Plato, CISSP, CISM, QSA
President / Principal Consultant

PCI Compliance - Live Long and Prosper

PCI compliance is one of the most important security issues facing business today. However, misinformation and outright lies can lead your compliance efforts astray. This presentation provides the guidance on the reality of PCI complance and how to leverage this effort to improve overall information security. Among the topics covered in this presentation:

Topics Include:

• Dispelling some common PCI compliance myths
• Understanding the PCI "levels"
• The building blocks of compliance

>>click here for the presentation

Dave Butcher

Understanding Managed File Transfer - Insights & Best Practices

As IT departments continually adopt new technologies to improve the performance of their systems, productivity of their end users and relationships with trading partners, they are faced with numerous challenges. One such challenge companies face today is securing and automating large file transfers. Traditional file transfer systems and mediums no longer meet the needs of most organizations or their trading partners, especially when data exposure is a concern. Many organizations have developed in-house solutions that are difficult to manage, lack the ability to track and audit file transfers, and expose the organization to security breaches. A Managed File Transfer (MFT) solution should be secure, easy to manage, and have the flexibility to integrate with existing technologies.

In this presentation, you will:

• Gain a better understanding of the business challenges and drivers of file transfers.
• Identify the security concerns around traditional file transfer systems and mediums.
• Learn best practices to develop security architectures for file transfers.
• Understand how a MFT solution can meet the needs of your stakeholders

Jim Shaeffer, CEO

10 Simple Rules for Implementing an Encryption Strategy

Organizations are becoming more and more proactive about data security, with data encryption viewed as a core element to their defensive measures.

Encryption of data is being adopted at a rapid rate to comply with industry regulations, protect intellectual property, obtain safe harbor from data breachdisclosure laws, and effectively manage risk. As encryption proliferates, IT professionals are making critical decisions that directly contribute to, or detract from, an organization's ability to effectively manage encryption keys and data security.

Data is an organization's most valuable asset and it must be protected.

Designing and implementing an encryption strategy is not complicated if you understand the needs of your organization and establish the right decision-making criteria for encryption solutions. Simplicity, breadth, manageability and efficiency are the primary requirements security-minded organizations must build into their encryption strategy. A solution that has the least complexity will make the jobs of IT professionals easier, be more cost-effective and time-efficient, while at the same time protecting data and meeting compliance standards.

>>click here for the presentation