• July and August meetings

• Upcoming Events

Central Ohio ISSA will not be holding meetings in July and August. We will resume business in September.

Upcoming Events:

We are pleased to offer ISSA members a special conference package that includes full, complimentary access to CSO’s The Security Standard conference, taking place on September 13-14, 2010 at the Marriott Brooklyn Bridge hotel in New York, NY.  This complimentary offer includes two days of Keynote Speaker Presentations, Digital ID World, Panel Discussions and an exclusive presentation of the results from The Global State of Information Security Survey, conducted by CSO magazine and PricewaterhouseCoopers.

You must register by Friday, July 23, 2010 at http://www.thesecuritystandard.net/assocreg and enter promo code TSSNP to take advantage of this special offer!

Check us out on Linkedin and Facebook

Central Ohio ISSA June, 16th 2010 Chapter Meeting

June Central Ohio ISSA Chapter Meeting

The Central Ohio ISSA June chapter meeting will be held at J. Liu Restaurant, 6880 N. High St., Worthington 2^nd floor banquet room, Wednesday June 16th, 2010. Registration will begin at 7:45 AM, with refreshments and breakfast. ISSA Members no cost and Non-ISSA Attendees $20.00. We are not setup to take credit cards at the door, so please use the paypal link, check or cash. To register, click here. If you have issues email brent.bigelow@cetoc.net for assistance. The meeting will kickoff at 8:00 AM and presentations to begin at 8:15.

We are proud to announce the following distinguished speakers:
Bob West – Founder and CEO, Echelon One
Speaker topic: The Current State of The Fraud Landscape. Check, ACH and Online Fraud.

Bob is responsible for creating and executing Echelon One’s corporate strategy.  He has over 25 years of experience in corporate and startup environments.

Bob is a frequent speaker on the subject of information security and risk, and on global policy issues such as payment fraud and critical infrastructure.  He is on the board of management for the Jericho Forum, advisory boards for Agilance, the Hispanic Information Technology Executive Council, Security Growth Partners, Trusteer, the University of Detroit Mercy’s College of Liberal Arts and Education, the University of Cincinnati’s College of Information Technology Advisory Board, and has also been on Securent’s advisory board (acquired by Cisco), TriCipher’s advisory board, a member of RSA Security’s Customer Advisory Council, and the ISS Customer Advisory Council.  He is quoted frequently in the press including the BusinessWeek, Forbes and The Wall Street Journal.

Previously, Bob was Chief Information Security Officer (CISO) at Fifth Third Bank in Cincinnati where he was responsible for the enterprise information security strategy.  Prior to joining Fifth Third, Bob worked for Bank One in Columbus where he held several key leadership roles, including Information Security Officer for Bank One’s Retail Group. Prior to joining Bank One, Bob was a manager with Ernst & Young’s Information Security Services practice in Chicago, and a Senior Systems Officer with Citicorp International in New York and Chicago.

Bob received the 2004 Digital ID World Conference award for Balancing Innovation and Reality, and a 2004 InfoWorld 100 Award for implementing cross-company authentication using SAML.  Bob graduated from Michigan State University with a Bachelor of Arts in German and then received his Master of Science in Management Information Systems from North Central College.

Brent Huston –  CEO of Microsolved Inc.
Speaker topic: More Security, Less Hassle

Brent has 20+ years experience in technical information security, risk management and executive consulting. He is an expert in PCI, GLBA, HIPAA/HITECH and other regulatory scope management/reduction, effective security and compliance program creation and enterprise risk management. Author of the 80/20 Rule for InfoSec which details creating security and compliance programs based on leverage and scope management. Developer of HoneyPoint technology and several other software products over the last two decades.
This talk will cover the essentials of developing an information security initiative in your organization that is focused on threat metrics, real world risk and information security, rather than arbitrary compliance. A few key areas of focus and projects will be discussed that can lead organizations to a security solution set based on the Pareto Principle, or 80/20 rule. If you’re tired of being overworked, overwhelmed and in attention poverty, this talk will give you a way to escape these all too common security team afflictions.

Check us out on Linkedin and Facebook

• Central Ohio ISSA April, 21st 2010 Chapter Meeting
• 3^rd Annual Infosec Summit – May 6^th and 7^th
• ISACA Security Event (16 CPE’s)

April Central Ohio ISSA Chapter Meeting

The Central Ohio ISSA April chapter meeting will be held at J. Liu Restaurant, 6880 N. High St., Worthington 2^nd floor banquet room, Wednesday April 21st, 2010.  Registration will begin at 7:45 AM, with refreshments and breakfast.  ISSA Members no cost and Non-ISSA Attendees $20.00.  To register, click here. We are not setup to take credit cards at the door, so please use the paypal link, check or cash.  If you have issues email brent.bigelow@cetoc.net for assistance.  The meeting will kickoff at 8:00 AM and presentations to begin at 8:15.

We are proud to announce the following distinguished speakers:

Mick Douglas – CISSP, GCIH, GSNA
Speaker topic: Infosec on a Dime.

Mick is the Consulting Systems Engineer for Information Security at OCLC – an international library cooperative. He is a mentor instructor for the SANS institute and has taught SANS 504 “Hacker Techniques, Exploits and Incident Handling” and SANS 507 “Auditing Networks, Perimeters & Systems”. He is a senior contributor to the PaulDotCom weekly security podcast. While Mick enjoys and actively participates in penetration testing, his true passion is defense — tweaking existing networks, systems, and applications to keep the bad guys out. In addition to his technical work, Mick jumps at every chance to participate in a social engineering engagement. Mick has a bachelor’s degree from The Ohio State University in Communications.

Steve Lassig –  VP/COO – Applied Security
Speaker topic: Protecting the Data at the Data Level

Data Security is becoming more complex and mission critical to business survival.  State and Federal Government regulations are pressing privacy, security, and e-discovery issues to hold firms accountable.  Outside threats are getting more creative and frequent.  Persistent, seamless and transparent data level protection is at the heart of these issues so that only those authorized have access, ensure authenticity while at the same time let people do their jobs?  Traditional data perimeter security methods are no longer enough.  Protecting data no matter where it travels within and outside your control?  How will these issues impact application development, storage, databases and retention?

This presentation will look at historically what has been done and provide thought provoking questions and answers as to what we will need to do in the future.

3^rd Annual Infosec Summit

May 6^th and 7^th , Registration is now open

The goal of this event is to educate regional Information Security professionals and support collaboration by bringing leading speakers in the information security field together to educate the community on the latest industry trends and issues.

This Information Security Conference will provide information security professionals with the most up-to-date information, tools, trends, legislative information, products, services, and strategies for addressing information security issues. The conference will focus on key topics related to information security with presentations provided by recognized experts and exhibits by some of the nation’s leading organizations.

Fees to attend this conference are as follows: (membership will be validated), if you wish to join ISSA, follow this link or email boardmembers@centralohioissa.org for additional information.

• $50 – Before April 30th – ISSA, ISACA, (ISC)^2, or InfraGard Members
• $65 – After April 30th – ISSA, ISACA, (ISC)^2, or InfraGard Members
• $150 – Non-members

Contact information:

Sponsorship opportunities – Nate Ungerott
Volunteering – Brent Bigelow
Registration – Jeff Sweet and Connie Mathews

ISACA Security Event

Combating Computer Fraud from MIS (16 CPEs) Thursday, April 29 – Friday, April 30, 2010

Any fraud committed with the aid of, or directly involving a computer or network is considered computer fraud. In this two-day seminar you will examine the key risks surrounding computer-based fraud and explore the “who, what, and how” of this pervasive crime. You will investigate specific IT controls that must be in place to reduce the risk of computer fraud, including logical access controls, reduced privileged access, application change management, network controls, encryption, and application system controls, and benefit from real-life examples of their effectiveness. For more information

Check us out on Linkedin and Facebook

• Central Ohio ISSA March, 17th 2010 Chapter Meeting

• CISSP Prep Course – Kick off March 2^nd

• 3^rd Annual Infosec Summit – May 6^th and 7^th, Registration is now open

• ISACA Security Event (16 CPE’s)

March Central Ohio ISSA Chapter Meeting

The Central Ohio ISSA March chapter meeting will be held at J. Liu Restaurant, 6880 N. High St., Worthington 2^nd floor banquet room, Wednesday March 17th, 2010.  Registration will begin at 7:45 AM, with refreshments and breakfast. ISSA Members no cost and Non-ISSA Attendees $20.00.  We are not setup to take credit cards at the door, so please use the paypal link, check or cash.  To register, click here.  If you have issues email brent.bigelow@cetoc.net for assistance.  The meeting will kickoff at 8:00 AM and presentations to begin at 8:15.

We are proud to announce the following distinguished speakers:

Kevin Flanagan – RSA Security
Speaker topic: Security Implications of Cloud Computing

Although cloud computing seems to be a new technology, it has been with us for well over a decade in the form of Application Service Providers and Software As A Service vendors.  These shared computing models can provide significant cost savings and resiliency, but do they put your organization at risk?  This discussion will explore the current trend towards cloud computing and share different approaches that many organizations have leveraged to reduce their exposure while taking advantage of this technology.

Click here for the presentation
Evan Tegethoff – CISSP, QSA – Solutions Architect – Risk and Compliance Management
Speaker topic: The State of Compliance and Data Privacy

Evan will discuss the different aspects of Compliance Risk and Controls for the following topics:

• Data Privacy Updates – State Breach Laws, HIPAA, PCI, BITS
• Data Scope for Privacy
• Privacy and Security Controls
• Risk and Compliance Management

3^rd Annual Infosec Summit

May 6^th and 7^th , Registration is now open

The goal of this event is to educate regional Information Security professionals and support collaboration by bringing leading speakers in the information security field together to educate the community on the latest industry trends and issues.

This Information Security Conference will provide information security professionals with the most up-to-date information, tools, trends, legislative information, products, services, and strategies for addressing information security issues. The conference will focus on key topics related to information security with presentations provided by recognized experts and exhibits by some of the nation’s leading organizations.

Fees to attend this conference are as follows: (membership will be validated), if you wish to join ISSA, follow this link or email boardmembers@centralohioissa.org for additional information.

• $50 – Before April 30th – ISSA, ISACA, (ISC)^2, or InfraGard Members
• $65 – After April 30th – ISSA, ISACA, (ISC)^2, or InfraGard Members
• $150 – Non-members

Contact information:

Sponsorship opportunities – Nate Ungerott
Volunteering – Brent Bigelow
Registration – Jeff Sweet and Connie Mathews

ISACA Security Event – Combating Computer Fraud from MIS (16 CPEs)

Any fraud committed with the aid of, or directly involving a computer or network is considered computer fraud. In this two-day seminar you will examine the key risks surrounding computer-based fraud and explore the “who, what, and how” of this pervasive crime. You will investigate specific IT controls that must be in place to reduce the risk of computer fraud, including logical access controls, reduced privileged access, application change management, network controls, encryption, and application system controls, and benefit from real-life examples of their effectiveness. For more information

Check us out on Linkedin and Facebook

• Central Ohio ISSA March, 17th 2010 Chapter Meeting
• CISSP Prep Course – Kick off March 2^nd
• 3^rd Annual Infosec Summit – May 6^th and 7^th

March Central Ohio ISSA Chapter Meeting

The Central Ohio ISSA March chapter meeting will be held at J. Liu Restaurant, 6880 N. High St., Worthington 2^nd floor banquet room, Wednesday March 17th, 2010.  Registration will begin at 7:45 AM, with refreshments and breakfast. ISSA Members no cost and Non-ISSA Attendees $20.00.  We are not setup to take credit cards at the door, so please use the paypal link, check or cash.   To register, click here.  If you have issues email brent.bigelow@cetoc.net for assistance.  The meeting will kickoff at 8:00 AM and presentations to begin at 8:15.

We are proud to announce the following distinguished speakers:

Kevin Flanagan – RSA Security
Speaker topic: Security Implications of Cloud Computing

Although cloud computing seems to be a new technology, it has been with us for well over a decade in the form of Application Service Providers and Software As A Service vendors.  These shared computing models can provide significant cost savings and resiliency, but do they put your organization at risk?  This discussion will explore the current trend towards cloud computing and share different approaches that many organizations have leveraged to reduce their exposure while taking advantage of this technology.

Evan Tegethoff – Accuvant
Speaker topic: To be announced

CISSP Prep Course

We will be kicking off our renowned CISSP Prep Class on March 2^nd and follow every Tuesday for the next 12 weeks. This course has helped dozens of people in the Columbus area prepare for and earn their CISSP designation. This course can also be used to earn CPEs for other certifications or learn more about information security. This course is run similar to a graduate-school course, and offers what we feel is an unparalleled opportunity to study the CISSP Body of Knowledge. Contact Rick Blanch for more information, also check the Central Ohio ISSA website on the Education tab.

Annual Infosec Summit

May 6^th and 7^th – Save the date

The goal of this event is to educate regional Information Security professionals and support collaboration by bringing leading speakers in the information security field together to educate the community on the latest industry trends and issues.

This Information Security Conference will provide information security professionals with the most up-to-date information, tools, trends, legislative information, products, services, and strategies for addressing information security issues. The conference will focus on key topics related to information security with presentations provided by recognized experts and exhibits by some of the nation’s leading organizations.

Contact information:
Sponsorship opportunities – Nate Ungerott
Volunteering – Brent Bigelow
Registration – Jeff Sweet and Connie Mathews

Check us out on Linkedin and Facebook