*****Parking Validation Available*****
The time has come for our last event of the year! Please RSVP as seats are limited
TOPIC: Explaining the threat landscape - Twenty Observation in Twenty Minutes
The threat landscapes continue to change and evolve. Perhaps nothing has evolved more than Ransomware, a threat first seen in 2005 that has come to dominate the threat landscape. This presentation will make twenty observations on the current threat landscape. Mostly based on data collected by Symantec into its Internet Security Threat Report (ISTR), with a special emphasis on current research on Ransomware, a picture will emerge of the threats we face today and what to do about them.
Kevin Haley is Director of Product Management for Symantec Security Response where he is responsible for ensuring the security content gathered from Symantec’s Global Intelligence Network is actionable for its customers. This includes educating customers on security issues and incorporating the security content into Symantec’s enterprise and consumer product lines. The valuable security data provides the basis for protecting customers against complex Internet threats and other security risks.
TOPIC: Vendor as a Vector
In a significant number of reported breaches, attackers continually wage successful campaigns that target and then leverage suppliers or third parties as vectors. This talk will explore a few of these breaches in depth, as well as best practices and processes to mitigate the threats. Although many of the best practices will no doubt be familiar to a seasoned security practitioner, some elements involve teaming with other parts of the business. We will help you to identify these internal partners while discussing how to build a successful vendor cyber risk management program. The points explored in this talk should prove extremely valuable to businesses of all sizes and their service providers alike.
Harry Wan is the CTO and co-founder of Datum Security. Harry has successfully led engineering teams (large and small) as they built world-class security products at Symantec and Arbor Networks. Harry holds a CISSP and graduated with an Electrical Engineering degree from Cal Poly Pomona. Harry is also the current Secretary for the LA/SoCal Chapter of the Cloud Security Alliance.
Topic: DDoS at the Edge
-- Adventures in Defending 7% of the Internet
DDoS attacks and other security threats are not a matter of if, but a matter of when. Cyber extortion schemes like DDoS-for-Bitcoin ransoms are becoming increasingly popular, and leave businesses with the difficult decision of whether to give in to attackers’ demands or risk becoming inaccessible during peak shopping days. This talk will examine a real case in which a Fortune 500 client faced a massive Bitcoin extortion attack during their peak online shopping season and how their web properties were protected.
Tin Zaw is a director of security solutions at Verizon Digital Media where he leads a global practice to help Verizon customers secure web properties. He started his career programming network protocols at QUALCOMM, participated in early days of the web infrastructure at Inktomi, made security products for 100+ million LA users at Symantec, and led web and product security teams at AT&T and Intuit, until settling in at Verizon. He holds an MS degree in computer science and an MBA from University of Southern California, as well as an undergraduate degree in computer science from Pittsburg State University, Kansas. A long-time volunteer with OWASP, he is a former president of its Los Angeles chapter and currently co-leads the OWASP project on Automated Threats to Web Applications.