“Information Security in 2020: an evening with Dr. Eugene Schultz”
The speaker to introduce this ISACA IT Security Open Forum: Mr. Marc Vael (ISACA Belgium)
Marc Vael is certification officer of the Belgian Chapter of ISACA and is involved in the promotion and education initiatives of the
ISACA certifications CISA, CISM, CGEIT and CRISC. Marc will lead the talk with the host.
The guest of this evening is Dr. Eugene Schultz, CISM, CISSP: Chief Technology Officer at Emagined Security Inc.,
an information security consultancy based in San Carlos, California, USA. He is the author/co-author of 5 books (Unix security, Internet security, Windows NT/2000 security, incident response, and the latest on intrusion detection and prevention). Eugene has written over 120 published papers. He was the Editor-in-Chief of Computers and Security from 2002-2007, Eugene is currently on the editorial board for this journal, and is an associate editor of Network Security. He is also a SANS instructor, member of the SANS NewsBites editorial board, co-author of the 2005 and 2006 Certified Information Security Manager (CISM) preparation materials, and is on the technical advisory board of 3 companies. He has previously managed an information security practice as well as a national incident response team.
He has also been professor of computer science at several universities and is retired from the University of California at Berkeley. Gene has also been named to the ISSA Hall of Fame and has received ISSA's Professional Achievement and
Honor Roll Awards. While at Lawrence Livermore National Laboratory he founded and managed of the U.S.
Department of Energy's Computer Incident Advisory Capability (CIAC). He is also a co-founder of FIRST, the Forum of Incident Response and Security Teams. Dr. Schultz has provided expert testimony before committees within the U.S. Senate and House of Representatives on various security-related issues, and has served as an expert witness in legal cases.
Schedule for the ISACA IT Security Evening:
17.00 – 17.30 Welcome coffee -
17.30 – 17.40 Introduction on the forum Marc Vael
17.40 – 18.15 Security in 2020 Dr. Eugene Schultz
18:15 – 18:30 Coffee Break
18.30 – 19.30 Security in 2020 Dr. Eugene Schultz
19.30 – 19.45 Conclusions Marc Vael
Miscellaneous: The ISACA IT Security Evening will be in English. Questions and/or suggestions are welcome beforehand in English.
There is no charge for this forum. CPE certifications will only be given to the persons who registered via e-mail prior to the event!
Important notification of attendance: Only registered people will be able to enter the Atos Worldline
For future events: See the ISACA Belgium home page at http://www.isaca.be
Last Updated ( Mar 09, 2010 at 10:23 PM )
Infosecurity2010
Written by Webmaster Rob
Feb 11, 2010 at 11:35 AM
Dear IT Security Professional,
ISSA-BE would like to inform you about the following events:
Infosecurity 2010
ISSA BE is Partner! TheTrade show Infosecurity.be, 24 & 25 March Brussels Expo, offers IT professionals an overview of the latest security technologies, products and services. With a wide range of exhibitors, keynote sessions, comprehensive seminar programme and other activities the show offers a great deal of inspiration for all your security issues.
Would you like to visit Infosecurity? Now the preregistration is open, just click on the banner below:
Dutch Registration:
French Registration:
Keynote speakers
The seminars are divided into management sessions and technical sessions. Seminars by keynote speakers are: ‘Data Security Breaches: An Unstoppable Epidemic?’ by Eugene Schultz (Emagined Security), ‘Data Leakage Prevention: When data goes up and out’ by Noël van den Driessche (KBC Group) and ‘Threat Landscape 2010: Evolution or Revolution?’ by Maksym Schipka (Kaspersky Lab).
Schipka is a widely-known security expert and one of the issues that he will highlight is the need for a common understanding that organisations have to focus a lot more on prevention when it comes to data security. Schipka: “When you approach data security in a proactive way then eventually money will be saved and data will be secured.”
Professional Development Café
One of the keynote activities is the Professional Development Café. Infosecurity.be and (ISC)2 invite visitors to round table discussions and small groups discussions on professional development. Each 40 minute session will offer practical insight and current research into changing demands on the profession and the skills required to meet them.
Infosecurity.be will also have some fascinating Case Studies, where exhibitors show their solutions to your security problems. The show takes place at the same time as the trade show Storage Expo BE (data storage and management). A unique one-stop shopping opportunity: with just one visit, you can kill two birds with one stone!
Data:
Wednesday 24th en Thursday 25th of March 2010
Opening Hours: From 10.00 A.M. to 5.00 P.M. Extra opening night on Wednesday till 7.00 P.M.
Location: BRUSSELS Expo, Heisel
Would you like to visit Infosecurity? Now the preregistration is open, just click on the banner below:
Dutch Registration:
French Registration:
Kind regards,
Tom Van den Eynde ISSA-BE Communications Officer
Last Updated ( Mar 09, 2010 at 11:26 PM )
Gary McGraw on Building Security In Maturity Model
Written by Webmaster Rob
Feb 01, 2010 at 10:44 AM
On Tuesday February 23rd at 6 PM, Gary McGraw will be holding a public lecture on the Building Security In Maturity Model (BSIMM - http://bsi-mm.com). The lecture is organized jointly by secappdev.org and the Leuven Center on Information and Communication Technology (LICT), a K.U. Leuven multi-disciplinary research center.
The lecture will describe the observation-based BSIMM maturity model, drawing examples from many real software security programs in leading companies. A maturity model is appropriate because improving software security almost always means changing the way an organization works. While not all organizations need to achieve the same security goals, all successful large scale software security initiatives share common ideas and approaches. BSIMM can be used as a yardstick to determine where one stands and what kind of software security strategy will work best in a specific case.
The lecture will be held in ESAT's auditorium A in Heverlee and is free of charge. However, registration is required by February 15th at http://www.esat.kuleuven.be/LICT/ - follow the link for upcoming new activities in the right margin. Sandwiches will be provided before the lecture. The lecture, including a Q&A session, will take approximately 90 minutes, but those who feel like continuing the discussion, are welcome to join the SecAppDev 2010 pub crawl afterwards.
Gary McGraw will go into more depth about his BSIMM work at SecAppDev 2010. In particular, he will highlight the results from the European study and how they compare to the North-American sample. He will also speak in more depth about the practices found to be most successful by the participants in the study.
Unfortunately, Richard Clayton had to drop out of this year's faculty. We believe his colleague Steven Murdoch will prove to be a worthy replacement. Steven has been grabbing headlines these last few days for his work on Visa's 3DS. I am sure that his lecture on banking security architectures will prove to be one of the highlights of this year's course.
In the meantime, the program for SecAppDev 2010 is being finalized (http://secappdev.org/pages/8). Check out the other exciting speakers who will be ensuring that SecAppDev remains at the vanguard of secure software engineering. There are still some places left at SecAppDev 2010, but do not delay registration. I am looking forward to your comments and hope to see you soon.
There is now a "Brussels European" community where we can: - announce our next events - post documents (presentations, forms, ...) - create and manage discussions - ...
On behalf of the board of ISSA-BE I wish you all a happy new year. In expectations for your security career I will not wish you anything specific. So much as the one security professional hopes his network will remain hacker free, so much another one wishes to have a successful hack to obtain a better budget.
2009 has been the year of the financial crisis. As a security association we also felt that. Thanks to you all we could maintain our membership pretty well in these times. The effect we see is on the time board members have spare to spent on the association. Indeed, the professional involvement was at the detriment of the time available for hobbies like ISSA-BE.
We are now early 2010 and your organisation is continuing with the organisation of new events which will address a variety of professional interests. And to be able to further expand we would like to get more board members, professionals who are willing to spare some time for their colleagues and their professional career. Yes, not only do you have the opportunity to organise interesting events; you also are able to do develop your personal competences. For those who have a CISSP certification, the board activities count for your CPEs!
ISSA-BE has its annual elections in March. Don’t wait till then to become a candidate for the board. Already start now: contact us and join a board meeting to get the feeling of it. Get in touch with one of the board members.
Howard Schmidt is the current president of ISSA.org.
Today the White House announced the President’s new White House Cybersecurity Coordinator, Howard Schmidt.
Howard Schmidt, is the information security expert who President Obama tapped Tuesday as his cybersecurity coordinator and who served as a senior cybersecurity adviser in the Bush administration. He is characterized as a no-nonsense leader who will take no guff from senior White House advisers in advancing the administration's cybersecurity initiatives.
SecAppDev 2010 is an intensive one-week course in secure application development. secappdev.org is a non-profit organization dedicated to improving security skills and awareness in the developer community. The course is a joint initiative with K.U. Leuven and Solvay Brussels School of Economics and Management.
SecAppDev 2010 is the 6th edition of our widely acclaimed course, attended by an international audience from a broad range of industries including financial services, telecom, consumer electronics and media and taught by leading software security experts including
- Dr. Gary McGraw, the Cigital CTO and prolific author. - Prof. dr. ir. Bart Preneel who heads COSIC, the renowned crypto lab. - Ken van Wyk, co-founder of the CERT® Coordination Center and widely acclaimed author and lecturer. - Dr. Richard Clayton of the University of Cambridge Computer Laboratory's security group, well known for his research on security economics. Replacement speaker under way.
The course takes place from February 22nd to 26th2010 in the Groot Begijnhof, Leuven, Belgium, a UNESCO World Heritage site.
For more information visit the web site: http://secappdev.org.
Places are limited, so do not delay registering to avoid disappointment. Registration is on a first-come, first-served basis. A 10% discount is available to paid-up ISSA members.
Flexible Education Solutions for IT Management professionals: Four executive seminars starting Mid-January 2010 at Solvay Brussels School-EM:
Basic principles for the development of Applications and e-Business systems. This module addresses security issues, implementation methodologies, and presentation of usual technical platforms.
ISSA-BE would like to inform you about the following training opportunities for which our members can receive discounts:
BCM Academy
Courses Summer / Fall 2009
Certified Business Continuity Manager : 12 modules spread over 4 months Start: September 17 2009 Price: € 5.988 excl. vat (excl. hotel and dinner)
Business Continuity Management Foundation: 5 consecutive days incl. lunch Dates : October 5-9 Price: € 2.495 excl. vat (excl. hotel and dinner)
Crisis Management & Communication: 2 consecutive days incl. lunch Dates : October 1-2, December 7-8 Price: € 1.395 excl. vat (excl. hotel and dinner)
Business Continuity Management Essentials: 2 consecutive days incl. lunch Dates: September 28-29, December14-15 Price: € 1.395 excl. vat (excl. hotel and dinner)
Workshops Summer School 2009 1 day incl. lunch Crisis management : July 8 or August 19 Business Impact Analysis : July 9 or August 20 BS25999 : Juli 10 juli or August 20 Price: € 395 excl. vat per workshop
ISSA members receive a 10% discount on all offerings.
BCM Academy is het toonaangevende Europese Kennis Management Instituut voor Business Continuity, Disaster Recovery & Crisis Management. Het instituut beschikt over een uniek en breed aanbod van opleidingen, bewustwording, trainingen, diensten en oefeningen met betrekking to Business Continuïteit, Disaster Recovery en Crisis Management. Ons doel is aantoonbaar en blijvend gericht op de duurzaamheid, continuïteit en stabiliteit van uw bedrijf of uw organisatie.
BCM Academy verzorgt eveneens de certificering van het individu en accreditering van uw organisatie.
Cursusaanbod zomer en najaar 2009
Certified Business Continuity Manager : 12 modules verspreid over 4 maanden. Startdatum : 17 september 2009 Prijs : € 5.988 excl. btw (excl. hotel en diner)
Business Continuity Management Foundation 5 opeenvolgende dagen incl. lunch Data : 5 t/m 9 oktober Prijs : € 2.495 excl. btw (excl. hotel & diner)
Data : 1-2 oktober, 7-8 december
Prijs : 1.395 excl. btw (excl. hotel & diner)
Business Continuity Management Essentials 2 opeenvolgende dagen incl. lunch Datum : 28-29 september, 14-15 december
Prijs : € 1.395 excl. Btw (excl. hotel en diner)
Disaster Recovery Essentials
3 opeenvolgende dagen incl. lunch
Datum : 29 juni t/m 1 juli
Prijs : € 1.695 excl. Btw (excl. hotel en diner)
Workshops Summer School 2009 1 dag incl. lunch
· Crisismanagement : 8 juli of 19 augustus · Business Impact Analyse : 9 juli of 20 augustus · BS25999 : 10 juli of 20 augustus
Prijs : 395 excl. btw per workshop
Alle opleidingen worden volledig ingericht op kleinere groepen van overeenkomstig kennis- en ervaringsniveau.
Contact & inschrijvingen Voor verdere informatie of gericht advies nodigen wij u graag uit contact op te nemen met
ISSA Leden hebben bij inschrijving recht op 10% korting.
Just as we hit the Infosecurity.be fair, and as a small reminder for all of you, check out a brief overview of current additional benefits you get when becoming a member of ISSA-BE.
Lancelot Insitute offers a 10% discount for ISSA members when registering for CISM and CISSP trainings.
The Lancelot Institute will be present at Infosecurity.be 2009 today and tomorrow at booth 08.A051. The Institute states that high quality trainings and resources should be available to all professionals and orgnaisations willing to develop themselvers. Their complete business model is built on that principle. Their trainers have experience in the most advanced security environments all over the world. Not just the 'what', yet also the "why and the how" are presented. Security measures are taken not just because they are possible, but because they add value. They do not avoid tough discussions with attendees, but, ont the contrary, stimulate them. Attendees are received in inspiring training locations, equipped with all modern facilities. All of this is said to be delivered agains investments that are considerably lower than elsewhere.
So, 10 % discount for ISSA members for these two training scheduled in Brussels..
Interested? Request information or enroll by using this
link:
