The Cyber Academy New Year Symposium
Introduction
The Xmas/New Year conference 2015 focused on sharing best practice in how companies can prepare, respond and cope with large-scale data breaches. It also presented innovative approaches to storing information in Cloud-based architectures.
With Sony, Talk Talk and many other companies being breached, it is data that is at the core of many attacks. This might include insider attacks or from targeted malware.
As with previous years it included speakers from a range of domains, and included examples of both data breaches and how they can be overcome using a range of controls. A key focus for the event was how to best prepare and manage incident response and how best to then respond, including how companies respond to media and customer attention.
Date: Monday, 11 January 2016.
Areas Covered
Areas included:
- Before, during and after the event.
- Innovative approaches to securing data in Cloud-based systems.
- SIEM and Data aggregation.
- Malware/Phishing Data Targeting.
- Intelligence gathering and sharing.
- Insider threats.
- Real-time monitoring.
- Host investigation.
- Law enforcement integration.
- Case studies.
- Data loss controls.
- Coping with the media and customers.
Booking
If you are interested in attending, book here:
Programme
09:30 - 10:00 |
Doors Open and Arrival Refreshments |
9:30- 10:00 |
Welcome and Refreshments |
10:00-10:30 |
Threat Briefing, Don Smith, Dell Secureworks |
10:30-11:00 |
Crystal Cyber Balls - cyber threat intelligence as a business enable, Scott Barnet, RBS |
11:00-11:30 |
Refreshments |
11:30-12:00 |
Surviving the media following an attack, Tim Anderson, NCC Group |
12:00-12:30 |
The Hunt for Patient Zero, Ian Rainsborough, Guidance Software |
12:30-13:00 |
Attacking the Modern Enterprise - lessons for incident response, David Stubley, 7elements |
13:00-13:45 |
Lunch Served in Room B32 |
13:45-14:15 |
“Insider threats & leaked data. The source of future leaks.” Vassilis Manoussos, Strathclyde Forensics |
14:15-14:45 |
Current Threat Landscape and Incident Response, Eamonn Keane, Police Scotland |
14:45-15.15 |
Be the Hunter: the road towards intelligence driven security, Azeem Aleem, Advanced Cyber Defense Practice Europe, Middle East and Africa at RSA, The Security Division of EMC |
Presenters
Tim Anderson
Associate Director - NCC Group. Cyber Defence Operations. Security Assurance.
Tim has worked for this country’s top security consultancies over the last 16 years and has helped a number of organisations strengthen their security wellbeing, either strategically or tactically in order to offer cyber security resilience. He has also guided each of these consultancies through the tricky road of strategic commercial growth, working closely with PR agencies to help promote the organisations he was working for. Having worked for the past 8 years on global strategies for dealing with high end sophisticated threat actors, together with some of the UK's government agencies tasked with solving this problem, Tim is currently responsible for the commercial creation and the associated commercial strategies for NCC Group’s advanced cyber defence capabilities. Tim started his security journey at the turn of the millennium when the most adequate security was thought to be anti-virus and perhaps a firewall thrown in for good measure. A lot of things have changed since this time, not least the public’s response to high profile attacks and the appetite for a “compelling event” from an every hungry media.”
Don Smith
Technology Director at Dell
Don Smith is a leading information security expert who is the technical lead for Dell’s EMEA information security practice. His close ties with Dell SecureWorks’ Counter Threat Unit give him unparalleled visibility into the threat landscape as well as effective countermeasures and protective security strategies. This insight is shared at government conferences and security gatherings around the world. Don has worked in the IT industry for 20 years, starting his IT career with the groundbreaking Edinburgh University spin-off, Vision Group. After a successful flotation Vision was acquired by STMicroelectronics where ultimately Don became responsible for security architecture and operations for this $8billion enterprise. During his time at ST in Geneva, Don also worked on successfully integrating 14 acquisitions across 26 sites on three continents. Don has been with Dell SecureWorks for over seven years. Originally joining dns in 2005, Don was instrumental in the development of its identity management and managed security services portfolio. With SecureWorks acquisition of dns in 2009 (six months after the acquisition of VeriSign’s MSS business) Don took responsibility for EMEA security strategy and now continues this role as part of Dell.
Azeem Aleem
Director -Advanced Cyber Defense Practice Europe, Middle East and Africa at RSA, The Security Division of EMC
An experienced information security executive with over 15 years of practitioner experience in cyber defence technologies, security operations, counter threat intelligence, data analytics and behavioural classification of cyber criminal. Within the domain of organisational operations Azeem has an extensive experience in managing P&L, driving operational excellence, change management and process reengineering. Azeem has been at the forefront of architecting cyber resilience capability against Advanced Persistent Threats (APT) for some of the best financial, government and public sector organisations across Europe, the US, Asia and the Middle East. He has worked extensively with the national and international law enforcement agencies around intelligence training, detection and investigation of cyber crime. As a subject matter expert, he has made frequent appearance on regional television and radio programmes as an expert on cyber threats. A published book author and academic criminologist, he has also authored several periodical on advanced security threats in peer reviewed journals and security magazines. He is an eminent plenary conference guest speaker both at the national and international level.
David Stubley
Director at 7elements
Founder of 7 Elements, David brings over 15 years of experience within the technical security market, where he has gained a wealth of knowledge and expertise through the delivery of security testing and in the provision of technical expertise to high profile incidents. He has performed key roles in security programmes, aligning a risk managed security approach and business risk appetites across multiple business functions in order to provide pragmatic security solutions for regulatory requirements. David has also devised bespoke risk assessment methodologies for a number of security projects, including technical and business risk assessments aimed at understanding the risk profile for a multinational organisation, and has developed a new thematic for resilient information security assurance. His specialist skill is bridging the gap between technical teams, senior management and C-level executives, to improve the understanding, use and development of security testing. As such, he has recently taken on the role of Strategic Cyber Security Advisor to the Scottish Government's Resiliency Advisory Board
Ian Rainsborough
Major Account Manager at Guidance Software
Ian has extensive experience in winning large scale projects and building successful strategic relationships with C-Class contacts. He is a major account manager at Guidance Software which is recognized worldwide as the industry leader in digital investigative solutions. Our EnCase® platform provides the foundation for government, corporate and law enforcement organizations to conduct thorough, network-enabled, and court-validated computer investigations.
Eamonn Keanne
Detective Inspector
Detective Inspector Eamonn Keane has worked with the Irish and Scottish Police for 31 years principally in the investigation of terrorism, serious crime, criminal investigation, public protection and community partnership policing. He has served and led on many high profile national cases and in all aspects of criminal enquiries particularly serious and sexual crime investigation, sex offender management and public protection.
Vassilis Manoussos
Director, Strathclyde Forensic
Vassilis is a Digital Forensics Consultant, owner of Strathclyde Forensics, and is working as an Expert Witness in civil, criminal, employment and family court cases. He has worked in high profile cases involving the NHS, the News of the World and criminal cases including fraud, murder and indecent images of children (child pornography). He has dealt with data theft and IT abuse in businesses and has provided CPD training to solicitors in Scotland. Vassilis has extensive work experience in the UK and Greece. He has worked for companies and organizations such as IBM, Abbey National,Steel City Data, and HM Civil Service. He has recently been appointed National Advisor for the Scottish Charity Roshni, and joined Edinburgh Napier University & The Cyber Academy as an Associate.
Questions
If you have any questions on this event, please complete the following:
Sponsorship
The event is sponsored by Guidance Software