[Owasp-denver] ISACA September meeting - Advanced Persistent Threats

Ramadoss, Ram Ram.Ramadoss at qwest.com
Tue Sep 7 20:03:58 EDT 2010 

Hi David,

Could you please forward the following ISACA September meeting information to OWASP Denver Chapter members?

Thanks,

Ram
=================



September 2010 ISACA meeting -  "Advanced Persistent Threats" by PricewaterhouseCoopers and MANDIANT

September 30, 2010
Sheraton Denver West
360 Union Boulevard
Lakewood, Colorado 80228

ISACA Denver Chapter is pleased to make an announcement regarding our first chapter meeting on September 30, 2010. We have an exciting topic from PricewaterhouseCoopers and MANDIANT on Advanced Persistent Threats. Please make your reservation today to participate and take advantage of this technical session.

Registration web page: http://www.isaca-denver.org/Chapter-Meetings/September-Chapter-Meeting.shtml

Topic Summary
PricewaterhouseCoopers

Concerns over Advanced Persistent Threats are growing by day, and it has been well documented that certain organized groups and governments have taken an active approach to creating cyber attack capabilities.

Today's security solutions are falling short due to their approach and architecture. The rise of espionage groups, such as the Shadow Network, using sophisticated methodologies to hack military and civilian networks, as well as governments employing Cyber Warfare as part of military offensives, highlight the need for a refreshed approach to information security.

We have reached a point where a new threat landscape has been created through the weaponizing of malware and creation of networks for the distribution of these attacks, such as the Russian Business Network ("RBN"). As a result there is an urgent need for a paradigm shift to combat these highly sophisticated and targeted attacks.

MANDIANT

The Advanced Persistent Threat (APT) is very real and poses a major threat to corporations and government.  Mandiant has first-hand experience in combating the APT. Over the past several years, Mandiant has collected intelligence on APT tools, methods and environments that permit the APT to maintain persistence in the victim network.

Over the years, Mandiant has responded to many APT incidents involving heavily defended networks.  Reliance on technology to solve the problem of APT is only part of the solution.  Organizations must examine their culture, architecture, and defenses and understand how the APT exploits each area in order to harvest data and maintain persistence.

Weaknesses in any of the aforementioned areas will allow the APT attacker to establish a foothold in the network.  Once the foothold is established, removing their presence will be challenging unless you know what steps to take and which clues to look for.


Speakers Bio:



Ali Golshan, Advisory - Security Practice, PricewaterhouseCoopers

Ali Golshan is focused on the security of information technology, with a focus on technical assessments related to malware, targeted attacks, and cyber warfare, and has been involved in the professional security industry for over 10 years, with previous experience as an ethical hacker.

In the last 5 years Ali has been focusing and researching the failure of current security solutions, in the face of dynamic and sophisticated attacks, during which time he has be a consultant for numerous fortune 500 companies, as well as some government organizations, assisting to build "smarter" networks for attacks crafted towards them.

Ali has extensive experience researching new attack vectors, and botnet infrastructures & designs, used to launch highly targeted and organized attacks for purposes of Cyber Espionage. Over the past 3 years, his specific focus has been on state, or privately backed attacks, with a valued goal of extracting intellectual property, and sensitive data.

Ali is also the founder of Cyphort, a start-up dedicated to preventing advanced cyber threats using multi-dimensional methods. He designed and developed a new technology at Cyphort for combating targeted attacks which elude current security solutions.

Ali is a leading subject matter specialist in IT Security, consulting, development, and operational processes, with extensive experience in R&D towards mapping of dynamic threats. Ali has written white-papers describing the changing threat landscape, and the technological paradigm shift required from the security sector to catch-up to current attack methodologies.

Carlos Carrillo, Manager, MANDIANT

Carlos Carrillo is a Manager for MANDIANT. In this role he maintains oversight of all education and training services offered by MANDIANT.

Mr. Carrillo has more than 20 years of technological industry and network security experience.  He has designed, maintained and secured information systems for the United States Air Force and Department of Defense. In addition, Mr. Carrillo has performed application development, incident response, network surveillance and electronic evidence discovery for the Department of Defense, federal agencies and the commercial sector.

Prior to joining MANDIANT, Mr. Carrillo served as a network security application architect for e-fense. While at e-fense, Mr. Carrillo was responsible for designing and developing enterprise level incident response and forensic applications.

Who should attend?
Internal Auditors
Information Security Professionals
IT Governance Professionals
Security and Auditing Managers
CISOs
CIOs
IT Development Managers
IT Testing Managers
Developers and Testers
Database Administrators


Hurry and make your reservation now.
http://www.isaca-denver.org/Chapter-Meetings/September-Chapter-Meeting.shtml
CPE Credits: 1.5

Agenda
11:00 AM to 12:00 PM    Registration, Lunch and Networking
12:00 PM to 12:20 PM    ISACA Board Announcements
12:20 PM to 01:10 PM   Presentation by Ali Golshan, Advisory - Security Practice, PricewaterhouseCoopers
01:10 PM to 02:00 PM   Presentation by Carlos Carrillo, Manager, MANDIANT


Fees

ISACA Members: $25
Non-Members: $35
Walk-in members and non-members must pay by cash/check and will be charged an additional $10.00 fee above the normal member / non-member fee.
Walk-ins may be turned away if space is not available.

Location

Sheraton Denver West
360 Union Boulevard
Lakewood, Colorado 80228

Registration
For further details regarding the program and to make your reservation, please click the following URL: http://www.isaca-denver.org/Chapter-Meetings/September-Chapter-Meeting.shtml






  ________________________________
This communication is the property of Qwest and may contain confidential or
privileged information. Unauthorized use of this communication is strictly
prohibited and may be unlawful. If you have received this communication
in error, please immediately notify the sender by reply e-mail and destroy
all copies of the communication and any attachments.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.owasp.org/pipermail/owasp-denver/attachments/20100907/e39dfd5b/attachment-0001.html 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: Picture (Metafile) 1.jpg
Type: image/jpeg
Size: 13986 bytes
Desc: Picture (Metafile) 1.jpg
Url : https://lists.owasp.org/pipermail/owasp-denver/attachments/20100907/e39dfd5b/attachment-0002.jpg 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: Picture (Metafile) 2.jpg
Type: image/jpeg
Size: 3338 bytes
Desc: Picture (Metafile) 2.jpg
Url : https://lists.owasp.org/pipermail/owasp-denver/attachments/20100907/e39dfd5b/attachment-0003.jpg

More information about the OWASP-DENVER mailing list