[Owasp-rochester-announce] ISSA Meeting that may be interesting to OWASP members

Duane Peifer duane.peifer at uberguard.com
Tue Mar 22 08:50:17 EDT 2011


The Rochester Chapter of the Information Systems Security Association (ISSA)
invites you at the next chapter meeting.

When: April 5th, 2011, 5:30-7:00pm



Location: Iberdrola USA, 89 East Avenue, Rochester, NY (complimentary
parking in the gated lot located on Lawn St, behind the building. Mention
the ISSA meeting at the guard to enter)



Please RSVP at info at rochissa.org by Friday, April 1st



Title: SCAP - The Security Content Automation Protocol



Speaker: Robert Hayden, CISSP, GIAC, Xerox Corporation



Abstract: SCAP is a suite of specifications for organizing, expressing, and
measuring security-related information in standardized ways, as well as
related reference data such as unique identifiers for vulnerabilities.



SCAP is currently comprised of six specifications—eXtensible Configuration
Checklist Description Format (XCCDF), Open Vulnerability and Assessment
Language, Common Platform Enumeration (CPE), Common Configuration
Enumeration (CCE), Common Vulnerabilities and Exposures (CVE), and Common
Vulnerability Scoring System (CVSS)—and their interrelationships.



Defining security checklist questions and vulnerability checks in a standard
format has obvious benefits for InfoSec professionals and facilitates easier
integration with (or migration to) other toolsets. Although SCAP adoption is
a significant undertaking, anyone looking to create or improve upon a
security compliance framework should investigate the potential benefits that
partial or total SCAP adoption can provide.





Speaker's bio: Bob is a 30 year veteran of the IT world, having spent the
last 13 years with Xerox Corporation doing information security work.  In
addition to being a Java evangelist, Bob likes discussing politics and
pretending to be a car and motorcycle mechanic.



Bob holds a BA degree in Computer Science from State University of New York
at Potsdam.



_______________________________________________

RochISSA_members mailing list

RochISSA_members at lists.rd1.net

https://ssl.durkee.us/mail-man/listinfo/rochissa_members
-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.owasp.org/pipermail/owasp-rochester-announce/attachments/20110322/fbf9791d/attachment.html 


More information about the Owasp-rochester-announce mailing list