|
|
|
|
|
| Exhibitor Set-Up | 2:00 - 4:00 |
|
|
|
|
|
|
|
| Registration & Continental Breakfast | 7:00 - 8:00 |
|
|
|
|
|
| Welcome & Introduction | 8:00 - 8:15 |
|
|
|
|
|
|
|
|
| Track A: Certification & Accreditation Process Update | |
|
|
|
|
|
| Track B: Identity Management | |
|
|
|
|
|
|
|
|
| Keynote Speaker | 10:00 - 10:45 |
|
|
|
|
|
| Exhibit Hall Open | 10:30 - 3:00 |
|
|
|
|
|
|
|
|
| Track A: Risk Management | |
| Kelley Dempsey, CISSP, Senior Information Security Specialist, National Institute of Standards and Technology, Information Technology Lab/Computer Security Division |
|
|
|
|
|
|
| Track B: Enterprise Messaging | |
| Developing the DoD Cybersecurity Workforce |
| George Bieber, Deputy, IA Human Resources and Training, DoD Chief Information Officer (CIO), Defense-wide Information Assurance Program (DIAP) |
| This session will provide an overview of DoD's approach to developing the Cybersecurity workforce of today and tomorrow. Participants will learn more about the Department's strategy for addressing workforce management, training and personnel certification, including the latest enhancements to the IA Workforce Improvement Program, DoD 8570. Key activities and initiatives to Expand Cyber Education under the Comprehensive National Cyber Initiative will be addressed, including specifics on how attendees can directly contribute to enhancing the pipeline of cyber security personnel for the future. |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| Track B: Mobile Security Threats | |
|
|
|
|
|
|
|
|
| Track A: Intrusion Prevention & Detection | |
|
|
|
|
|
|
|
|
|
|
|
|
|
| Registration & Continental Breakfast | 7:00 - 8:00 |
|
|
|
|
|
| Administrative Announcements | 8:00 - 8:15 |
|
|
|
|
|
| Exhibit Hall Open | 8:00 - 1:45 |
|
|
|
|
|
|
|
|
| Track A: Cloud Computing | |
| Cloud Computing - Overview of Information Assurance Concerns and Opportunities
|
| Trent Pitsenbarger, National Security Agency |
Cloud computing is an emerging trend which has progressed to the point of serious adoption in public and private sector organizations, yet it remains a relatively immature paradigm, one which dictates a revision to the traditional characterization of risk in information technology environments. As a means of an introduction to those changes, this presentation offers an overview of the information assurance aspects of cloud computing with a focus on potential security advantages and pitfalls. While many of the security concerns associated with cloud computing are shared with traditional computing models, the presentation will focus on those issues unique to cloud computing or that are
exacerbated by it, and offer some real-world examples of issues that have arisen. The intended audience is anyone considering the adoption of cloud computing and who needs to understand the security risks and potential opportunities cloud computing provides as part of a risk management process. |
|
|
|
|
|
|
|
|
|
| Exhibit Viewing | 9:45 - 10:30 |
|
|
|
|
|
| Track A: Security & Privacy Policies | |
| What your "Net Searches" really say about you! |
| Derek Isaacs, Computer Security/Information Assurance professional, Boecore (MDA) |
| In our "Wild Webbed World" of Cyberspace - privacy has come under increasing scrutiny and risk based upon operational needs and situational issues. This presentation will examine newly introduced technologies and their effect on privacy - (that's yours and my PII information) - that have long been held sacrosanct in a non-technology-based environment. This presentation will attempt to describe and discuss the impacts and effects these new efforts premises will have in regards to our personal and professional interactions on the Internet. |
|
|
|
|
|
|
| Track B: Access Management | |
|
|
|
|
|
|
|
|
|
|
|
| Track B: Application Security | |
| Using Software Security Assurance to Secure Mission Critical Applications |
| Rob Roy, Federal CTO, Fortify Software |
Security today isn't just about firewalls and encryption. Applications are woefully vulnerable to attack and breached daily, regardless of where they reside and how secure the network might be. There is much talk today of the benefits of cloud computing and while those are legit, there are many security concerns that cannot be ignored.
Government agencies can only really be rest assured that their mission critical applications are secure in the cloud if their service provider makes it a priority to apply application security best practices: ongoing vulnerability testing, remediation and management. Application security is the "new frontier", as important now as network security, identity management and other forms of security were 10 years ago. Hackers have resorted to applications as their new way "in", and as a result, businesses - and the cloud infrastructure providers that support them - must proactively identify and resolve security vulnerabilities that reside in applications.
This presentation will discuss the importance of Software Security Assurance (SSA) for applications in the cloud. It will be presented by Rob Roy, Federal CTO of Fortify Software (www.fortify.com). |
|
|
|
|
|
|
|
|
|
|
|
|
| Track B: Data Recovery Software | |
|
|
|
|
|