Novemeber 2017

November 2017

Sponsor: Carbon Black

Speaker: Jason Madey

Title: “Evolving your security to defend against modern attacks”

Abstract: We will discuss the impact of the changing threat landscape, issues Administrators are seeing, what is needed today to better defend, and what can be done to mature your response processes.

Lunch is $15 for non members, cash or check only.

Register

October 2017

Sponsor: McAfee

Speaker: Pete Hebner
Pete has over 23 years of expereience in the telecommunications, data communications and Security industry. He has been with McAfee/Intel since 2003 starting as a senior security engineer and moving into the sales engineer manger position over the Western Region.

Title: Security Automation

Abstract: Driving the shift from Protection-only to an Integrated Threat Defense Lifecycle reducing business, operational, & financial risks.

Register

Lunch is $15 cash or check if you are not a member

September 2017

Sponsor: ForeScout

Speaker: Tony Velada

Title:

The Internet of Things is not Coming. It is here!

Abstract:

Discover What Your Peers Think about the State of IoT Security.The Internet of Things (IoT) is rapidly expanding the attack surface on corporate networks. Every “agentless” IoT device presents serious risk to the network, as it can serve as a potential attack or reconnaissance point.  How common are IoT devices on enterprise networks? How many unknown IoT devices exist? What are IT staffs doing to secure them? IT professionals responsible for enterprise networks were surveyed regarding their view about the prevalence and security of the Internet of Things (IoT).

Register

 

Lunch is $15 for non members, cash or check only.

 

Professional Credit: 1.5 CPE

Hope to see you soon!

Vince Skinner, President

If you have any questions or need to cancel please email Rachel.

February 2017

February 2017

Sponsor: ASG

Speaker: Jeff Hooper, Systems Engineer at Gemalto (formerly SafeNet)

Topic: Digital Certificates and Key Management.  He will cover new laws requiring key management, give examples of specific breaches and how the solutions helped them recover or prevent the attacks.  

Register

 

Lunch is $15 for non members, cash or check only.

December 2016

December 2016

Sponsor: Boise ISSA

Moderator: Vince Skinner, VP of Security, D.A. Davidson & Boise ISSA President 

Topic: Round Table Discussion. Topics to include: malware protections, incident response, penetration testing, Senior Management Support, and other related topics.

Register

November 2016

Sponsor: Tanium

Topic: Know your environment better than your adversary

Presenter: Jesse Harris, Director of Technical Account Management

Summary: 

  • Assumption of breach. We are existing in a world where the adversary is significantly better equipped than most security teams. Most only know what is supposed to be in the environment, the winning party will know what is actually in the environment
  • Good Hygiene: 99% of breaches come from known vulnerabilities. Seek a source of truth for patching, privileged credentials, autoruns, processes with md5’s, etc.
  • Know the outliers: applications, new files, changed files, 50 writes per second to a drive, etc
  • Script well – VBScript, Python, Powershell, etc.
  • IR at Scale – Basic anatomy of a mimikatz memory credential dump, how’d we get here??
  • Building an IOC for scalability, MD5 (message digest algorithm 5)
  • Our widgets have to play nice, don’t architect in silos, try to have a built in vs bolt on security architecture/strategy
  • There is a light at the end of the tunnel, but we can’t reinvent the wheel. We need to focus on ways to reinvent the road.

Register

Lunch is $15 for non members, cash or check only.

 

 

Professional Credit: 1.5 CPE
Hope to see you soon!

Vince Skinner, President

If you have any questions or need to cancel please email Rachel.
PLEASE RSVP 48 HOURS BEFORE THE EVENT SO WE HAVE AN ACCURATE HEAD COUNT FOR FOOD!!!

If you are a maybe please respond with a yes.

October 2016

Sponsors: RSA & Datashield

Topic: Exposing the Terracotta VPN – Anatomy of an Advanced Campaign

Summary: In August 2015, RSA uncovered details of a massive malware-supported VPN network being used as a launch platform for APT activity, dubbed “Terracotta”.   This malicious service gave nation-state actors a way to obscure their true origin when acting on their objectives by tunneling their activities through VPN nodes silently installed on victim networks across the globe.  This session will explain what Terracotta VPN is, how it works, and how it was ultimately discovered.

Presenter: Sean Ennis, RSA

Sean Ennis is a Principal Systems Engineer at RSA with over 10 years of experience designing and building security solutions for organizations across North America.  With previous tenures at Bell Canada, Cisco (IronPort), and HP (TippingPoint), Sean has been at RSA for the last 5 years, focusing on consulting on the architecture, design, and operations of Security Operations and Critical Incident Response programs

Register