Mailing Lists & Feeds
Agenda
Sunday, August 15 | Monday, August 16 | Tuesday, August 17 | Wednesday, August 18 | Thursday, August 19 | Friday, August 20
| Sunday, August 15, 2010 (Pre-Conference Training) | |
| 8:00 a.m. - 5:00 p.m. | Registration |
| 9:00 a.m. - 5:00 p.m. | Pre-Conference Training Sessions Part I |
| Training Session 1: | Zeus Overview (Part I) - SESSION FULL |
| Training Session 2: | Cyber Readiness Exercise (CRX) (Part I) - SESSION FULL |
| Training Session 3: | Introduction to Network Forensics - SESSION FULL |
| Training Session 4: | Introduction to Malware Analysis - SESSION FULL |
| Monday, August 16, 2010 (Pre-Conference Training) (top) | |
| 8:00 a.m. - 5:00 p.m. | Registration |
| 9:00 a.m. - 5:00 p.m. | Pre-Conference Training Sessions Part II |
| Training Session 1: | Zeus Overview (Part II) - SESSION FULL |
| Training Session 2: | Cyber Readiness Exercise (CRX) (Part II) - SESSION FULL |
| Training Session 3: | Advanced Network Forensics - SESSION FULL |
| Training Session 4: | Introduction to Control Systems Security for the IT Professional |
| 2:00 p.m. - 5:00 p.m. | GFIRST Online Chat Session |
| Tuesday, August 17, 2010 (top) | |||||
| 7:00 a.m. - 5:00 p.m. | Registration | ||||
| 8:00 - 10:00 a.m. | Opening/Plenary | ||||
| 10:00 - 10:30 a.m. | Break | ||||
| 10:30 a.m. - 5:00 p.m. | ISCE Demo – Now made with real collaboration and information sharing | ||||
| Policy/Government | Threat Landscape | Incident Management | Coordination | Policy/Government | |
10:30 - 11:30 a.m. |
Industry Government Operational Collaboration: Myth or Reality
Moderator: Scott Algeier, Executive Director, IT-ISAC |
Al Capone & The Olympians Presenter: Marita Fowler, Section Chief, Surface Analysis Group, US-CERT Jeff Brown, Lead Crimeware Analyst, US-CERT |
A Small Agency SOC Perspective NOTE: This will be a closed session; open to Government and contractors supporting Government agencies only |
Cyber Exercise - Achieving Value through Innovative Design Best-Practices Presenter: Chris Fogle, Principal, Delta Risk, LLC |
Software Assurance: Mitigating Risks to Improve Incident Management
Presenters: Joe Jarzombek, Director for Software Assurance, DHS NCSD Bob Martin, Principle Engineer, MITRE Corporation Sean Barnum, Software Assurance Principal, MITRE Corporation Thomas Millar, Deputy Operations Manager, US-CERT |
| 11:30 - 1:00 p.m. | Lunch | ||||
| Policy/Government | Threat Landscape | Incident Management | Coordination | Incident Management | |
| 1:00 - 2:00 p.m. | Building Better Security Management Programs within the United States Government
Presenter: Amit Yoran, CEO, NetWitness |
Monitoring Strategies for Detection of Insider Attacks Presenters: Dawn Cappelli, Technical Manager, CERT|SEI|CMU Michael Hanley, Member of the Technical Staff, CERT|SEI|CMU |
National Cyber Response Strategy: Bridging the dot-gov Domain
Presenter: John McCumber, Chief Strategist, Public Sector, Symantec Corporation |
Strategy for Securing Control Systems; Progress towards Improving Cybersecurity Presenter: Rick Lichtenfels, Deputy Program Director, DHS NCSD |
Software Assurance: Mitigating Risks to Improve Incident Management (continued)
Presenters: Joe Jarzombek, Director for Software Assurance, DHS NCSD Bob Martin, Principle Engineer, MITRE Corporation Sean Barnum, Software Assurance Principal, MITRE Corporation Thomas Millar, Deputy Operations Manager, US-CERT |
| 2:00 - 2:30 p.m. | Break | ||||
| Policy/Government | Threat Landscape | Incident Management | Coordination | Policy/Government | |
| 2:30 - 3:30 p.m. | Government-Industry Cyber Information Sharing
Presenter: Ryan Vela, Lead Cyber Forensic Examiner, General Dynamics Advanced Information Systems |
Loose Lips Sink Networks — Is Social Networking Making Your Network Insecure? Presenter: Frank Nagle, Senior Consultant, Mandiant, Inc. |
It’s All a Bunch of B.S. (Bots & Spam) Presenter: Tiffany Campbell, Exploit Team Lead, US-CERT |
Emerging Computing Infrastructures: Security Challenges for Cloud, Smart Grid and Mobile Infrastructures Moderator: Dr. Laurie Burnham, Associate Director for Outreach, I3P, Dartmouth College Panelists: Dr. Seymour Goodman, Professor, Georgia Tech Dr. David Nicol, Professor, University of Illinois Dr. Barry Horowitz, Professor of Systems and Information and Chairman of Systems and Information Engineering Department, University of Virginia |
Information Systems Security Line of Business (ISSLOB) Overview
Presenter: Doug Andre, Program Manager, Requirements and Acquisition Support Program, Federal Network Security, DHS NCSD |
| 3:30 - 3:45 p.m. | Break | ||||
| Policy/Government | Threat Landscape | Incident Management | Coordination | Legal/Law | |
| 3:45 - 5:00 p.m. | Poetry and Packets: The Role of Metaphors in Cybersecurity
Presenter: Dr. Jakub Pitha, Senior Analyst, Blue Glacier Management Group |
Black Hat SEO Exposed
Presenter: Mike Geide, Senior Security Researcher, Zscaler, Inc. |
Network Situational Awareness
Presenter: Dr. Timothy Shimeall, Senior Member Technical Staff, CERT/NetSA, SEI/CMU |
Towards a Consolidated Cyber Incident Handling Ontology and Process
Presenter: Thomas Millar, Deputy Operations Manager, US-CERT |
Law Enforcement Security Technology Risks, Opportunities and Challenges
Presenter: Chen Arbel, Director of Authentication Business Development, SafeNet, Inc. |
| Wednesday, August 18, 2010 (top) | |||||
| 7:00 a.m. - 5:00 p.m. | Registration | ||||
| 8:00 - 10:00 a.m. | Opening/Plenary | ||||
| 10:00 - 10:30 a.m. | Break | ||||
| 10:30 a.m. - 5:00 p.m. | ISCE Demo – Now made with real collaboration and information sharing | ||||
| Policy/Government | Threat Landscape | Incident Management | Coordination | Coordination | |
| 10:30 - 11:30 a.m. | Securing Sensitive Data Presenter: John Bordwine, Public Sector CTO, Symantec Corporation |
Understanding the Insider Threat
Presenters: Adam Cummings, Member of the Technical Staff, CERT|SEI|CMU Randall Trzeciak, Insider Threat Team Lead, CERT|SEI|CMU |
Malicious Code Analysis in Industrial Control Systems; Case Studies Presenter: Eric Cornelius, Senior Cybersecurity Researcher, Idaho National Laboratory |
Cyber Resilience Review Presenter: Bradford Willke, Technical Director, Cyber Security Evaluations, DHS NCSD Patrick Beggs, Director, Cyber Security Evaluations, DHS NCSD |
Information Sharing 2.0: Analysis
Moderator: Scott Algeier, Executive Director, IT-ISAC Panelists: Brian Willis, Executive Director, ICASI Dave Cullinane, VP/CISO, eBay and President, IT-ISAC Randy Vickers, Director, US-CERT Erik Winebrenner, Global Security Architecture Manager, CSC |
| 11:30 - 1:00 p.m. | Lunch | ||||
| Policy/Government | Threat Landscape | Incident Management | Coordination | Policy/Government | |
| 1:00 - 2:00 p.m. | Importance of an Agile Baseline when Establishing Cyber Alert Levels
Moderator: Kelly Masone, Deputy Director, Cyber Policy, Blue Glacier Management Group |
Don’t Believe the APT Hype: Incident Detection and Response That Works Presenter: Michael Graven, Director, MANDIANT
|
Minimizing Losses from Zero Days — A New Layer of Defense Presenter: Dr. Arun Sood, Professor Computer Science, George Mason University
|
The Challenges of Protecting our Nation's Critical Infrastructure Systems Moderator: Zach Tudor, Program Director, SRI International |
National Cybersecurity Protection System (Einstein) Program Overview
Presenter: Brendan Goode, Director, Network Security Deployment, DHS NCSD |
| 2:00 - 2:30 p.m. | Break | ||||
| Policy/Government | Threat Landscape | Incident Management | Coordination | Legal/Law | |
| 2:30 - 3:30 p.m. | Federal CIO Council ISIMC Guidelines for the Secure Use of Cloud Computing Presenter: Earl Crane, Director, Cybersecurity Strategy, DHS
|
(Ab)use of Dynamic DNS NOTE: This will be a closed session; open to Government and contractors supporting Government agencies only Presenters: William Leonard, Analyst, US-CERT Jonathan Taimanglo, Analyst, US-CERT |
What Went Wrong? A Study of Actual Industrial Cyber Security Incidents Presenters: Zach Tudor, Program Director, SRI International Mark Fabro, President and Chief Security Scientist, Lofty Perch, Inc. |
Libraries, Embedded Web Servers, and the Kitchen Sink: CRDb
Presenter: Art Manion, Vulnerability Analysis, CERT/CC
|
Media Interest v. Cyber Security
Presenters: Dr. Phyllis Schneck, Vice President and Director, Threat Intelligence, McAfee, Inc. Anthony Black, General Counsel, Arkansas Department of Information Systems Kym Patterson, State Chief Security Officer, Arkansas Department of Information Systems |
| 3:30 - 3:45 p.m. | Break | ||||
| Policy/Government | Threat Landscape | Incident Management | Coordination | Policy/Government | |
| 3:45 - 5:00 p.m. | A Process Approach to the Management of Operational Cyber Security Risks
Presenters: James Cebula, Member, Technical Staff, CERT|SEI|CMU Antione Manson, Program Manager, Security Management Program, DHS NCSD, Federal Network Security
|
A Look Inside the PDF Attack Vector
Presenter: Jeremy Conway, Product Manager, NitroSecurity |
Analyzing Metadata from Offline Phishing Scams NOTE: This will be a closed session; open to Government and contractors supporting Government agencies only Presenter: Mark Henderson, Analyst, Internal Revenue Service
|
A Shared Risk - Connecting Systems and Sharing Data
Presenter: Jim Reiner, Information Security Manager, County of Sacramento, California |
TIC, MTIPS and Cybersecurity Compliance
Presenters: Donald Benack, Program Manager, Compliance & Assurance, Federal Network Security, DHS NCSD Sean Donelan, Program Manager, Network & Infrastructure Security, Federal Network Security, DHS NCSD |
| Thursday, August 19, 2010 (top) | |||||
| 7:00 a.m. - 5:00 p.m. | Registration | ||||
| 8:00 - 10:00 a.m. | Opening/Plenary | ||||
| 10:00 - 10:30 a.m. | Break | ||||
| 10:30 a.m. - 5:00 p.m. | ISCE Demo — Now made with real collaboration and information sharing | ||||
| Policy/Government | Threat Landscape | Incident Management | Coordination | Policy/Government | |
| 10:30 - 11:30 a.m. | The Great Firewall of China Moderator: Scott Aken, Vice President, Cyber Security, SAIC Panelists: Tom Kellermann, Vice President, Core Security Robert Pate, Chief Security Officer, Renesys Peder Jungck, CloudShield |
Cyber Betrayal: Defending Your Network from Trusted Insider
Presenter: Michael Theis, Executive Director, Insider Threat Management, Raytheon |
Discovering Malicious Code Trends Using Bulk Analysis
Presenter: David French, Malware Researcher, CERT/SEI |
Attack Attribution: Bridging Privacy & Classification Concerns
Presenter: Jim Butterworth, Senior Director of Cyber Security, Guidance Software |
FNS Update: Assess, Influence, Drive, Measure + FISMA
Presenter: Matt Coose, Director, Federal Network Security, DHS NCSD |
| 11:30 - 1:00 p.m. | Lunch | ||||
| Policy/Government | Threat Landscape | Incident Management | Coordination | Incident Management | |
| 1:00 - 2:00 p.m. | Calling the Shots: Cutting Through the Noise to Set Security Objectives Presenter: James Strieber, Principal, Strieber Consulting |
Appreciating the Little Things
Presenter: Mike Bailey, Senior Security Researcher, Mad Security, Inc.
|
Social Networking and Protecting Critical Infrastructure Presenter: Robert Janusaitis, President, InfraGard Houston |
Who is Watching Your Ecosystem?
Moderator: Greg Virgin, CEO, RedJack Panelists: Jim Cowie, Chief Technology Officer, Renesys Dr. Phyllis Schneck, Vice President, Threat Intelligence, McAfee Dan Wood, Associate CISO, Department of Treasury |
Network Flow Visualization Tools Moderator: Kevin Thompson, Program Manager, DHS S&T Panelists: Dr. John McHugh, Senior Principal, Redjack, LLC Dr. William Pike, Research Lead, Pacific Northwest National Laboratory Brianne O’Brien, Project Manager, Secure Decisions |
| 2:00 - 2:30 p.m. | Break | ||||
| Policy/Government | Threat Landscape | Incident Management | Coordination | Threat Landscape | |
| 2:30 - 3:30 p.m. | A Framework for Continuous Information Security Controls Monitoring and Auditing Presenter: Dr. Jerald Dawkins, President, True Digital Security
|
Modern Malware "The New & Insider" Attack Vector
Presenter: Ashar Aziz, CEO and Founder, FireEye, Inc. |
Practical Host-based Malware Detection using Run-time Features Presenters: Ross Kinder, Malware Analyst, CERT/CC Jonathan Woytek, Malware Analyst, CERT/CC |
Past, Present and Future of Threats
Moderator: Dr. Kathleen Kiernan, CEO, Kiernan Group Panelists: Robert Schmidt, Subject Matter Expert, The National Center for the Study of Counter-Terrorism and Cyber Crime, Norwich University William Casey, Deputy Superintendent, Boston Police Department Robert Pate, Chief Security Officer, Renesys |
Emerging Trends in 2010
Presenter: Dr. Eric Cole, SVP, CTO of the Americas, McAfee |
| 3:30 - 3:45 p.m. | Break | ||||
| Policy/Government | Threat Landscape | Incident Management | Coordination | Incident Management | |
| 3:45 - 5:00 p.m. | Why the World Needs a New Open Source Security Engine
Presenter: Stuart Wilson, Chief Technical Officer, Endace |
Characteristics of Malicious Domain Names
Presenters: Ed Stoner, Member of Technical Staff, CERT/SEI |
Supertimelines for Incident Responders
Presenter: Hal Pomeranz, Faculty Fellow, SANS Institute and Founder/CEO, Deer Run Associates |
Cyber Storm III Panel
Presenters: Brett Lambo, Director of the Cyber Exercises Program, National Cyber Security Division, Department of Homeland Security Bridgette Walsh, Deputy Director of the Cyber Exercises Program, National Cyber Security Division, Department of Homeland Security |
Anatomy of a Security Operations Center Presenters: John Wang, IT Security Project Manager, NASA Kenneth Freeman, IT Security Project Manager, NASA |
| Friday, August 20, 2010 (top) | |||||
| 7:00 a.m. - 5:00 p.m. | Registration | ||||
| 8:00 - 10:00 a.m. | Opening/Plenary | ||||
| 10:00 - 10:30 a.m. | Break | ||||
| Policy/Government | Threat Landscape | Incident Management | Coordination | Incident Management | |
| 10:30 - 11:30 a.m. | LifeStyle Hacking: GenX/Yers Impact in the Federal WorkForce
Presenters: Dr. Anup Ghosh, CEO, Invincea Rick Gordon, Managing Director, Civitas Group, LLC |
2010 Cyber Security Trends
Presenter: Richard Howard, Intelligence Director, VeriSign |
The Prism Network Traffic Volume Display System Presenter: Dr. Paul Krystosek, Analyst, SEI |
Cybersecurity Workforce Panel
Moderator: Cheri Sigmon, Senior IA Officer, OSD-PA Defense Media Activity, Department of Defense Panelists: Brenda Oldfield, Director, Cybersecurity Education & Workforce Development National Cyber Security Division, Office of Cybersecurity & Communications, Department of Homeland Security Dr. Ernest McDuffie, Leader, National Initiative for Cybersecurity Education and Associate Director, National Coordination Office for Networking and Information Technology R&D Casey Coleman, CIO, General Services Administration (Invited) Gary McAlum, Colonel, Retired, U.S. Air Force, Chief Security Officer, USAA San Antonio, TX (Invited) Gary McAlum, Colonel, Retired, U.S. Air Force, Chief Security Officer, USAA San Antonio, TX (Invited) |
Event Detection via DNS and Route Monitoring
Presenters: Dr. Daniel Massey, Associate Professor, Colorado State University Dr. Alper Caglayan, Senior Scientist, Milcord LLC |