RSA Conference Brochure 2008

EntErprisE dEfEnsE tuEsday, april 8 1:30 p.m. – 2:40 p.m. DEF-105 WEdnEsday, april 9 8:00 a.m. – 8:50 a.m. DEF-201 (T) The Seven Most Dangerous New Attack Techniques, and What’s Coming Next MODERATOR: Alan Paller | Director of Research, The SANS Institute PANELISTS: Rohit Dhamankar | Senior Manager of Security Research, TippingPoint Ed Skoudis | Partner, IntelGuardians Johannes Ullrich | Chief Technology Officer, SANS Technology Institute (S) Electronic Discovery and Digital Forensics in the Corporate Environment Dennis Seibert | Lead Forensic Analyst and Incident Handler, Fifth Third Bank Intense competition among attackers has led to unprecedented increases in sophistication, virulence and effectiveness of their attack tools and techniques. In this session, three people in unique positions to see the newest attack patterns will share what they believe are the seven most dangerous of the new attack vectors. They will also discuss how attack tools and patterns will evolve over the coming year. 3:00 p.m. – 3:50 p.m. DEF-106 This session will discuss the importance of digital forensics in the corporate environment, especially now that corporate data is primarily stored in a digital fashion. While digital forensic services can be outsourced, it is expensive and could possibly expose an internal situation to an outside entity. Corporate leaders need to understand the value and abilities of an internal forensics department. 9:10 a.m. – 10:20 a.m. DEF-202 Connecting the Dots – An integrated Approach to Enterprise risk and Compliance Management Jon Darbyshire | Founder and CEO, Archer Technologies (P2) The Competing Priorities of law MODERATOR: Amit Yoran | CEO, NetWitness PANELISTS: Jerry Dixon | Director, US-CERT, DHS Mike Gibbons | Principle, Deloitte & Touche LLP Andy Purdy | CEO, DRA Enterprises Enforcement, Defense and intelligence During this session, Jon Darbyshire will discuss how Fortune 1000 companies are implementing effective threat management programs to capture and consolidate threat data, filter and prioritize threats that could affect their critical technologies, notify responsible personnel who can respond proactively and report on current state and remediation. The ultimate result of such programs is the preservation of business continuity. 4:10 p.m. – 5:20 p.m. DEF-107 This panel will discuss its experiences in dealing with cyber attacks, incident response and situational awareness. They will discuss specific case studies of compromises and attacks, and the competing pressures that occur among the various agencies and actors involved. 10:40 a.m. – 11:50 a.m. DEF-203 (S) Data leakage CTO Panel: Valuable New Product or Check the Box Feature? MODERATOR: Andrew Nash | Senior Director of Information Security, PayPal PANELISTS: Ratinder Ahuja | CTO/Founder, Reconnex Shu Huang | CTO, Vice President of Products, Provilla/Trend Micro Amrit Williams | Chief Technology Officer, BigFix (S) risk Mitigation Strategies: lessons learned from Actual insider Attacks Dawn Cappelli | Senior Member of the Technical Staff, Software Engineering Institute Andrew Moore | Senior Member of the Technical Staff, Software Engineering Institute Insider threats, data leakage prevention and breaches of confidential information are all hot topics today, with many new products and technologies being offered. The panelists will discuss what problems data leak prevention solutions are designed to solve and how these solutions relate to other similar ones like encryption, DRM, antivirus/malware and email security. 5:40 p.m. – 6:30 p.m. DEF-108 CERT has examined over 200 actual insider threat cases with the U.S. Secret Service and the DoD, and interviewed victim organizations as well as convicted insiders. This presentation will describe compelling real-world case examples; distinct patterns and examples of behavioral and technical indicators in the cases and risk mitigation strategies for insider fraud, information theft and IT sabotage. (S) Cross-Channel Fraud: Emerging Attacks and Challenges Paul Henninger | Director of Fraud Solutions, Actimize Amir Orad | EVP & CMO, Actimize The number of ways financial institutions interact with customers and transfer information and funds is constantly growing, and so is the complexity of fraud attacks. Companies must correlate activities across channels to efficiently detect suspicious transactions. This session will detail how top banks and brokerages use sophisticated analytics to detect and prevent fraud attacks. 26 sEssion classification (P2) Manager Professional Development (S) Strategic (T) Technical Futures (T2) Intermediate Technical See page 5 for complete level descriptions.

Table of Contents Feed for the Digital Edition of RSA Conference Brochure 2008

Table of Contents Who Should Attend & Why Keynote Speakers Agenda At-A-Glance Session Classification Special Events & Activities Connect & Network Highlights 1-Day Pre-Conference Tutorials 2-Day Pre-Conference Tutorials Tracks & Sessions Authentication Consumer Protection Business Trends & Impact Case Studies Cryptographers Deployment Strategies Developing with Security Enterprise Defense Hackers & Threats 1 Hackers & Threats 2 Identity & Access Management Industry Experts Law & Liability Policy & Government Professional Development Security-Oriented Architecture Standards Wireless Sponsor Sessions List of Exhibitors Registration Information Sponsors

For optimal viewing of this digital publication, please enable JavaScript and then refresh the page. If you would like to try to load the digital publication without using Flash Player detection, please click here.