ISSA Portland

Security Essentials Bootcamp Style at OSU

12.05.08 - 10:49am

While we are all aware that the economy is having a major impact on our ability to train our staff, we feel that this course will allow you to maintain a level of quality training at a cost that hopefully can be supported by your budget.

SANS Institute training is coming to

Corvallis, Oregon in March 2009.

Registration is Now Open!

Again in 2009, SANS Institute training is coming to Oregon. This opportunity is brought to you by a consortium representing state government, local government, the Oregon University System, and community colleges.

SANS Institute training is recognized as the best in the world. This year the sponsored course is SANS “Security Essentials Bootcamp Style” (SEC 401 <http://www.sans.org/training/description.php?mid=61> ) and will be hosted on the Oregon State University campus March 16 – 21, 2009 (Monday through Saturday).

Registration is now open: http://tss.oregonstate.edu/sans2009 <http://tss.oregonstate.edu/sans2009> .

Maximize your training time and turbo-charge your career in security by learning the full SANS Security Essential curriculum. In this course you will learn the language and underlying theory of computer security. At the same time you will learn the essential, up-to-the-minute knowledge and skills required for effective performance if you are given the responsibility for securing systems and/or organizations. This course meets both of the key promises SANS makes to its students: (1) You will gain up-to-the-minute knowledge you can put into practice immediately upon returning to work; and, (2) You will be taught by the best security instructors in the industry.

Who should attend:

*   Security professionals who want to fill the gaps in their understanding of technical information security
*   Managers who want to understand information security beyond simple terminology and concepts
*   Anyone new to information security with some background in information systems and networking.

Registration Fees – Private Sector employees

* Early Bird Registration | By January 30, 2009 | $3595

* Regular Registration | By February 27, 2009 | $3800

* Late Registration | By March 6, 2009 | $4000

Government/Education Discount: You are eligible for the educational and government participant discount if you are a:

*   Faculty or staff member from an accredited educational institution, including colleges, universities, technical training institutes, K-12 schools or any institution with an .edu domain name
*   Law enforcement member at the state or local level
*   Employee of a state, county, or city entity

Registration fees:

*   Early Bird registration (by 1/30/2009) $ 1,200
*   Regular registration (by 2/27/2009)             $ 1,400
*   Late registration (by 3/6/09)           $ 1,700

Category: Events, Uncategorized | Tags: | Be the First to Comment »

New Training Opportunities

03.05.10 - 12:47pm

Check out the two new training opportunities on the Training Tab!

In Portland 5-9 April, 2010

CISSP “Immersion Method” Exam Prep

In Salem April 26-30, 2010

Cybersecurity: Prevention, Deterrence, and Recovery (PDR)

Cybersecurity: Incident Handling and Response (IHR)

Category: Uncategorized | Tags: | Be the First to Comment »

DHS Job Fair

12.14.09 - 08:19pm

Job Fair:

The Department of Homeland Security, National Cyber Security Division
has asked us to send out the below link to the DHS Cyber Security Job
Fair. Please feel free to distribute out as far as possible

http://www.dhs.gov/xabout/careers/cyberjobfair/

Category: Uncategorized | Tags: | Be the First to Comment »

Meeting – Thursday Sept. 17th, 2009 3:00 – 5:00 PM at Con Way (2055 NW Savier St. Portland)

08.13.09 - 02:37pm

Thursday Sept. 17th, 2009 3:00 – 5:00 PM at Con Way (2055 NW Savier St. Portland)

Bots PhD (Piled Higher and Deeper) – Detection

Craig Schiller, CISO, PSU

This session will dig deeper into the technology of bots and in particular
the technology used to protect the bots and the botherders. We will examine
fast flux DNS, dynamic DNS and other concealment and obfuscation techniques.
Attendees will examine botnet communication technology to improve their
ability to detect them in the field. Finally we will describe current
botnet detection technology.

What actions we can take to prevent infections, protect systems from bots,
collect intelligence about bots, and recover from their infestations? What
steps can I take to prevent some botnets from infecting my systems?

The nature of bots makes the profiles and signatures of many anti-malware
products less effective. Behavior is the key to detecting and reacting to
bots. Since behavior is dynamic we must gather information constantly to
recognize the signs of bot-like behavior. Similarly, user and
enterprise-level behavior can increase or decrease the susceptibility to bot
attacks. We will revisit the 5 reasons users believe they don’t have to
worry about bots. The session will cover enterprise-wide policies and
practices that will make your systems less attractive to botherders. Mr
Schiller will demonstrate the use of sandbox technology to analyze live
malware.

Category: Chapter Meetings, Events | Tags: | Be the First to Comment »

Check out the training tab for new opportunities

06.30.09 - 09:35am

See the Training tab for the Symantec Internet Threat briefing.

Craig

Category: Uncategorized | Tags: | Be the First to Comment »

May 21st, 2009 3:00 – 5:00 PM at Con Way (2055 NW Savier St. Portland)

05.05.09 - 06:49am

Thursday May 21st, 2009 3:00 – 5:00 PM at Con Way (2055 NW Savier St. Portland)

Elections, Elections, Elections and Preparing for the 09-10 Chapter Activites

After another year, elections were held for a new President, a new Vice President, Treasurer and Secretary. Elected chapter officals are:

President: Aaron Cronan

Vice President: David Stauffer

Treasurer: Doug Bristow

Secretary: Ben Trimbo

In addition to the elected officials, there are a couple of open board positions:

Program Chair

Vendor Outreach Chair

Mentoring Program Chair

Those interested on serving on the board, please contact Aaron Cronan (see http://www.issa-portland.org/contacts/).

After the elections, chapter members discussed the upcoming year and topics of interest.

Category: Chapter Meetings | Tags: | Be the First to Comment »

Thursday April 23rd, 2009 (Also See 2009 NW Conference Header Link)

03.25.09 - 07:38am

2009 NW ISSA SECURITY CONFERENCE – Registration is open
Hosted by ISSA – Portland Chapter
held at InnoTech Oregon Conference
Thursday, April 23
Oregon Convention Center

For information and registration visit http://www.innotechconference.com/pdx/Event/NW_ISSA_Security_Conference.php

Full day educational conference, lunch, InnoTech expo, reception & networking for:
$65 for non-members ISSA members
$50 for ISSA, ISACA Members and Institute of Internal Auditors Use Discount Code ISSA9MBR for discounted price

Travel budgets cut, but still want the professional development in 2009?
Want 7 CPE Credit Hours for less than $65?
Don’t miss this local, but quality conference for security

With a Business and Technical Track the NW ISSA Security Conference is part of a continued ambitious community outreach program for ISSA. The goal of our program is to provide decision makers, stakeholders, and professionals with the knowledge and understanding they need to more effectively secure their organization’s sensitive information and comply with emerging information privacy laws and regulations.

Topics for 2009 include:

- Future Security Implications of Cloud Computing & Social Media
- Botnets and the Army of Darkness
- Windows 7.0 Sneak Peek
- Implementing the SDL to Improve Organizations’ ROI
- Leveraging e-Discovery to Keep Security Funding
- Information Exchange: Understanding Information Assets
- Much more

Registration and information is available at http://www.innotechconference.com/pdx/Event/NW_ISSA_Security_Conference.php .

Your registration confirmation will contain parking and transit information.

We look forward to seeing you on April 23.

Category: Chapter Meetings | Tags: | Be the First to Comment »

Interface 2009 Conference March 18th at Oregon Convention Center

03.04.09 - 12:47pm

Because we value your involvement in the Oregon / SW Washington IT Community, F2F Events is pleased to extend this invitation for you and any of your associates at ISSA – Portland Chapter to attend the INTERFACE 2009 Conference.

With the guidance and enthusiastic support of the INTERFACE-Oregon Advisory Council, and our sponsors, INTERFACE has become the premiere IT conference in the Pacific Northwest. INTERFACE is dedicated to educating attendees on current innovations and future trends in the areas of:
* Information Security
* Business Continuance (Data Storage & Recovery)
* Enterprise Communications

INTERFACE returns to Portland for its sixth year on March 18th at the Oregon Convention Center.

Your invitation to INTERFACE 2009 includes:
* 20 Educational (Vendor-neutral) Seminars
* Keynote Presentation
(“Watching the Watchers” – Catching Thieves BEFORE They Break In!)
* Delicious Lunch Buffet (12:00pm – 1:30pm)
* 45 Vendor Exhibits
* Cocktail Reception (3:15pm)

Information Security and Disaster Recovery Planning are major pieces to a puzzle all IT professionals are tasked with solving. By taking advantage of your invitation to attend INTERFACE 2009, you will learn more about the technology innovations and make contacts with other IT professionals that can help bring together the components of your IT solutions.

Educational presentations are the cornerstone of the INTERFACE conference. The seminars scheduled for this year’s conference include…

* Current Threats and Countermeasures
* PCI Compliance for the Rest of Us
* Plaid Pantry – A Case Study on Simplifying Security
* Anatomy of a Web Attack: How Hackers Threaten Web Security
* Inside Today’s Threat Environment
* Infrastructure 2.0 – Virtualization and Beyond
* Storage DeDuplication
* Meeting the e-Discovery Requirement
* Data Center Transformation and Green IT
* Virtual Disaster Recovery
* SIP: You Can’t Afford Not to Look
* Be Green, Save Green – Today!

KEYNOTE PRESENTATION:
“Watching the Watchers” – Catching Thieves BEFORE They Break In!
Presenter: Chris Roberts, President, CCi5 Inc.

For more information, including the schedule and descriptions of the
aforementioned seminars and keynote, use the following link:
Schedules and Descriptions

INTERFACE brings together dozens of industry-leading solutions
providers demonstrating the most current product innovations and
providing in-depth discussion regarding your organization’s specific
IT challenges. For a list and descriptions of all sponsors and vendors
at INTERFACE 2009, use the following link:
sponsors and vendors

Registration is now open, and available via the INTERFACE website. For
your convenience, use the following link to the online registration
page: Online Registration

** NOTE: The deadline to register for INTERFACE 2009 is Monday, March 16th at 6:00pm.

INTERFACE is a private conference, for invited technology
professionals. It is not a job fair, and not open to students nor
anyone under 18 years of age. NO EXCEPTIONS. For more information,
contact F2F Events at 1-800-365-6402, or by email at:
info@f2fevents.com

We look forward to seeing you on March 18th at INTERFACE 2009 in Portland!

INTERFACE 2009… “Bringing the Pieces Together.”

F2F Events, Inc.
1225 NW Murray Blvd., Suite 107
Portland, OR 97229
800-365-6402

Category: Uncategorized | Tags: | Be the First to Comment »

Thursday March 19th, 2009 3:00 – 5:00 PM at Con Way (2055 NW Savier St. Portland)

02.23.09 - 11:09am

Thursday March 19^th, 2009 3:00 – 5:00 PM at Con Way (2055 NW Savier St. Portland)

Fundamentals of Web Application Penetration Testing

Part of building secure networks and applications is subjecting them to focused testing. In this presentation, security analysts from Anitian Enterprise Security will discuss methods, technologies and tactics in conducting Web Application Penetration testing. Topics covered include:

· Recon and analysis

· Authentication

· Session management

· Access Controls

· Injection Testing

· Data protection

· Error handling

· Application hosting

Biography

Adam Gaydosh, CISSP, CISA, GPEN, GIAC, QSA
Senior Security Analyst
Anitian Enterprise Security

Mr. Gaydosh is a Senior Security Analyst at Anitian where he oversees the IT Audit and Assessment division. Mr. Gaydosh specializes in application layer testing and IT compliance. Prior to working at Anitian, Mr. Gaydosh worked for a large national government contractor. Mr. Gaydosh provided security consulting services to numerous branches of the US Government, including the US Department of Defense. Mr. Gaydosh worked on site with the US Marines and Army securing classified networks, deploying PKI and identity management solutions and conducting rigorous security hardening of server systems. While working at Anitian, Mr. Gaydosh has conducted hundreds of security audits and assessments ranging from small regional financial institutions to large, global corporations. Mr. Gaydosh is currently involved in dozens of high-profile application tests, including conducting security tests on the next generation of elections systems. Mr. Gaydosh has numerous security certifications including the CISSP, CISA and the SANS certifications for security auditing and penetration testing. Mr. Gaydosh is also one of Anitian’s Qualified Security Assessors for PCI-DSS compliance.

Category: Chapter Meetings | Tags: | Be the First to Comment »