[Owasp-belgium] FW: ISSA-BE event on Social Engineering (20-09-2007)
seba at deleersnyder.eu
Sat Sep 15 10:57:38 EDT 2007
Date: 5 sep. 2007 22:50
Subject: ISSA-BE event on Social Engineering (20-09-2007)
To: members at be.issa.org , contacts at be.issa.org
You receive this e-mail because your e-mail address is included in the ISSA
Brussels-European Members&Contacts mailing list.
The ISSA Brussels-European Chapter is proud to announce its September 2007
Information Security Event:
"Welcome to the The Weakest Link!"
Contrary to what this title suggests, ISSA will NOT be hosting this famous
television quiz show. So there is no need to be afraid of being sent away
due to a lack of knowledge concerning trivia. However, there are some
similarities with the topic of this event, Social Engineering. Eg., things
you don't know about, might hurt you badly. And the Weakest Link in
Information Security is very often located " Between Keyboard And Chair". A
50.000 EUR security device may protect your information assets as perfectly
as possible, but if an employee provides his login credentials in exchange
for a candybar, you might have to walk "The Walk of Shame" anyway... This
ISSA event will be more interactive than usual. But you'll go home better
informed and less vulnerable, as usual.
This evening event will be held on: Thursday, September 20th, 2007
Place : Getronics Executive Briefing Center, Leopold Tower, Rue de
Genèvestraat 10, 1140 Brussels (Evere)
* 1800h : Welcome with drinks and sandwiches (PLEASE FOLLOW ACCESS
PROCEDURE MENTIONED BELOW ! NO ACCESS AFTER 1900HRS !)
* 1830h : Part 1 - Presentation
Social engineering- definition
What's the motive behind social engineering
The human element
Approaches to protecting your company against social engineering
* 1930h : short break
* 1945h : Part 2 - Workshop - Steal the flag
The target - "Secrus Traders Inc." (A fictional company) financial results
Group A - will represent the social engineering attackers
Group B - will represent the security department of "Secrus Traders Inc"
Members of Group A will need to define a timely driven attack scenario
against "Secrus Traders Inc." corporation in an attempt to steal the next
quarterly financial results.
Members of Group B will need to define timely driven measures to try to
increase the awareness of the organization, managing management, employees,
End of part 2 - Presentation of Group A and Group B strategies, comments
from the participants.
* 2045h : closing drink
PRACTICAL INFO :
This event is sponsored by Getronics and will be held in the Getronics
Executive Briefing Center, Leopold Tower, Rue de Genèvestraat 10, 1140
Brussels (Evere) - PLEASE NOTE : no entrance possible after 1900hrs!!
A detailed roadmap and driving instructions can be found via
Parking spaces are to be found around the building and on the street, the
underground parking garage is NOT to be used (you might social engineer your
way in, but don't expect to talk your car out of it before the next
MANDATORY ACCESS PROCEDURE :
After 1800hrs the main door of the tower is closed, but you can always ring
the bell, on the left side of the door. With the up and down arrow, choose
the "Executive Briefing Centre" and push the bell button (Visiophone n°22).
We will open the door.
AFTER 1900HRS, ACCESS TO THE VENUE IS IMPOSSIBLE!!
Registration for the event is free but mandatory. In case there would be
more registrations than available seats, ISSA members in good standing and
trial members will be favoured over other people in a ratio of 70%
(trial-)members to 30% non-members. Early registrants will have precedence
over late registrants. Registration starts as of September 5th. Members as
well as non-members register by e-mailing their contact details to
register at issa-be.org mentioning "ISSA Social Engineering Event Registration"
in the subject line.
Free trial memberships can be set up through http://www.issa.org/join.html -
don't forget to choose "Brussels European" as Chapter Affiliation!
About Uri Biber, Global Security Coordinator at Getronics ICTO (Information
and Communication Technology Organization):
With over 18 years of IT experience and 12 years involvement in multiple
security domains, Uri's work involved projects in diverse range of
organizations like pharmaceutical, banking, educational, software and
military working closely with the research and development, manufacturing,
sales and marketing, support and audit groups.
Uri had been involved in large-scale international projects, collaborating
activities in multi-national subsidiaries, anti-virus design &
implementation, Computer Incident Response Team (CIRT), engineering
e-business strategies, PKI deployment, auditing security of sensitive
systems, working with the business to develop security policies, global user
awareness programs as well as regulatory compliance related activities.
We hope to welcome you on this very interesting security event!
2007 Vice President + Education & General Events Officer of the ISSA
If you no longer wish to receive e-mails from us, just let us know and we
will remove your e-mail address from the list.
Everybody can subscribe to this list via the issa-be website.
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Owasp-belgium