The Changing World Of SCADA & How To Secure IT
Daniel Lakier, CTO & President at SeeGee Technologies
This workshop session will take you through major questions like What is SCADA/PCD* and why is it so insecure ? Why should we care and what are the risks of not securing it ? What are the operational challenges and why is it so hard to secure ? What are some strategies to mitigate operations vs IT conflict? How to decide the best course of action( Logic its always the same ) i.e. if you have a proprietary 15 year old operating system (obviously you can't put Anti virus on it even if it would void the manufacturers guarantee/warranty.) ? The forgotten pieces and how best to manage associated risk ? Traditional PCD security and why the changing world has rendered most of the existing answers mute ? The next best thing to a solution ?
Defeating Machine Learning: Malware Detection Deep Dive
Bob (Robert H) Klein, Black Hat 2015 Speaker
Machine learning addresses many problems with earlier, more brittle security tools. Though it is often touted as the ultimate defensive technology, machine learning is not a magic bullet, and it has shortcomings of its own. These shortcomings are rarely discussed, yet they are very important to understand when applying machine learning as part of a larger security suite. In this deep dive, we examine problems associated with some existing machine learning technologies, with a focus on malware detection, and propose several solutions that we hope to see deployed in the near future.
Implementing SAP security in 5 steps case-study
Alexander Polyakov
This workshop session will help you to learn: How to start SAP Security Project from scratch, Practical steps for securing SAP against top 9 EAS-SEC risks, Optimal approach to start SOD project with minimum costs, Main issues in ABAP code and first steps to analyze them Practical steps for forensic investigation and log analysis of SAP Platform.
Security Governance for the Cloud
Paul Raines - CISO, UNDP
This talk will explore what types of due diligence governance actions an organisation should take when managing one or multiple cloud service providers. Topics to be covered include contractual provisions, security policies, audits, security service level agreements and security authentication/authorisation.
Key Learning on What standards should be used in evaluating cloud providers? What contractual clauses should you insist on with cloud providers? If your organisation uses several cloud providers, how do you ensure standard levels of service? Once the contract is signed, what due diligence should you undertake to ensure continued compliance?
Security Governance for the Cloud
Paul Raines - CISO, UNDP
This talk will explore what types of due diligence governance actions an organisation should take when managing one or multiple cloud service providers. Topics to be covered include contractual provisions, security policies, audits, security service level agreements and security authentication/authorisation.
Key Learning on What standards should be used in evaluating cloud providers? What contractual clauses should you insist on with cloud providers? If your organisation uses several cloud providers, how do you ensure standard levels of service? Once the contract is signed, what due diligence should you undertake to ensure continued compliance?
Security Governance for the Cloud
Paul Raines - CISO, UNDP
This talk will explore what types of due diligence governance actions an organisation should take when managing one or multiple cloud service providers. Topics to be covered include contractual provisions, security policies, audits, security service level agreements and security authentication/authorisation.
Key Learning on What standards should be used in evaluating cloud providers? What contractual clauses should you insist on with cloud providers? If your organisation uses several cloud providers, how do you ensure standard levels of service? Once the contract is signed, what due diligence should you undertake to ensure continued compliance?
Security Governance for the Cloud
Paul Raines - CISO, UNDP
This talk will explore what types of due diligence governance actions an organisation should take when managing one or multiple cloud service providers. Topics to be covered include contractual provisions, security policies, audits, security service level agreements and security authentication/authorisation.
Key Learning on What standards should be used in evaluating cloud providers? What contractual clauses should you insist on with cloud providers? If your organisation uses several cloud providers, how do you ensure standard levels of service? Once the contract is signed, what due diligence should you undertake to ensure continued compliance?
Security Governance for the Cloud
Paul Raines - CISO, UNDP
This talk will explore what types of due diligence governance actions an organisation should take when managing one or multiple cloud service providers. Topics to be covered include contractual provisions, security policies, audits, security service level agreements and security authentication/authorisation.
Key Learning on What standards should be used in evaluating cloud providers? What contractual clauses should you insist on with cloud providers? If your organisation uses several cloud providers, how do you ensure standard levels of service? Once the contract is signed, what due diligence should you undertake to ensure continued compliance?
Earlier CISO Platform Talks
These talks will give a fair idea on the quality of talks at CISO Platform. We encourage and appreciate quality content, also one that contributes to the information security community.
Best of the World Talks:
- A Sprint To Protect POS by Nir Valtman - click here for talk
- How the Heartbleed bug was found by Antti Karjalainen - click here for talk
- Cyber Safety in Cars and Medical Devices - click here for talk
- Can your SMART TV get hacked? - click here for talk
How to Register?
Please register before the last date as post that no submissions will be accepted. Registration for Senior Security Executives only (Not Applicable for suppliers/vendors, sales/marketing or others)
- Online: Click Here to Pre-Register & we will send you the details of next steps to confirm your passes.
PS: This is a closed door event. Only registered Participants of CISO Platform Annual Summit 2015, can attend this Event.*Seats are limited.
Partnership Opportunities
CISO Platform Annual Summit offers Opportunities both online and offline across 2 days of Conference. CISO Platform Annual Summit is a closed door event restricted to the CISO's, VP - IT, Head IT.... Decision Makers and the partners, facilitating peer -to- peer and leading IT partner networking.
About CISO Platform
CISO Platform is a online social network exclusively for Chief Security Officers to Network, Share and Learn . Our goal is to provide highest quality information to CISOs to help them excel in their role.
- 2000 + Global CISOs as member .. Online Social Network for CISOs to Network, Share and Learn
- CISO Platform Taxonomy .. Defines the security vendor landscape
- CISO Platform Index .. First framework to evaluate products based solely on CISO recommendation
- CISO Platform 100 .. CISO Platform 100 or Top 100 CISO Awards is the 1st Awards in India that recognizes the contribution of the Top Information Security Executives.
CISO Platform Past Partners
For more information on partnership please send a mail to: priyanka@cisoplatform.com
Comments