Conference Program

10:00 am - 10:30 am - Refreshment Break

10:30 am-11:30 am
How to Monitor Vulnerabilities, Remediations and Threats
Daniel V. Hoffman, CISSP, CWNA, CEH, Senior Systems Engineer, Fiberlink Communications

A significant step of the Patch/Vulnerability Management Process focuses on the monitoring of security risks.

  In this session attendees will learn:

• The direct consequences of failing to patch devices in a timely manner
• The challenges of patching mobile devices
• How NAC solutions can assist with patching
• The importance of patch reporting to compliance regulations

11:30 am - 12:30 pm
Security Vulnerability Auditing and Assessment Using International Standards
John Karabaic, Systems Engineer, Kace

Vulnerability auditing and assessment has become a major thrust to ensure the end-point security on networks. It’s a step that needs to happen continuously and with enough coverage so that systems administrators can be confident about what patches need to be applied on specific machines in their specific environments.

There is an international standards organization called OVAL (Open Vulnerabilities Assessment Language) that is taking a key leadership role in helping companies and vendors make this a much simpler issue then it is today. The objective of this presentation will be to help IT and security managers learn how they can improve security by using OVAL and enhanced systems management. Topics that will be covered include:

• What is the OVAL standard
• How can organizations of all sizes use OVAL
• Why recommend and implement OVAL in your organization
• How does OVAL relate to CVE (Common Vulnerabilities and Exposures)
• What do OVAL vulnerability specifications look like?
• How to manage vulnerabilities across Microsoft, Linux and Macintosh nodes

12:30 pm - 1:30 pm - Luncheon

1:30 pm-2:30 pm

The ABC's of Penetration Testing

Alexander Horan, System Engineering Manager, Core Security Technologies

Penetration testing has become an essential part of assessing and improving the security of an enterprise or organization's network.  The goal of a penetration test is to assess the overall security of a network by attempting to compromise that system using an attacker's techniques.  Only performing a vulnerability scan is passive and does not address the implications of a successful intrusion.  It only lists what the potential vulnerabilities may be without probing deeper to reveal the true threats to assets.  Further, it identifies the problems which may have already occurred rather than evaluating against a real attack like penetration testing does.  A penetration test, on the other hand, is active, in that it is able to attack a system and measure its readiness.  Penetration testing delivers results that goes beyond the data yielded by a vulnerability assessment in that it's an authorized attempt to breach the architecture of a system using attacker techniques.  With a penetration test, you actually exploit vulnerabilities in your network and try to replicate the kinds of access a hacker could achieve.  During this session attendees will learn:

• The fundamentals of penetration testing and why it is becoming increasingly important
• The critical difference between vulnerability scanning and penetration testing
• How to determine if your current security investments are detecting and preventing attacks

2:30 pm - 3:00 pm Refreshment Break

3:00 pm-4:00 pm
How to Design & Implement Security Metrics for Patch & Vulnerability Management
Daniel M. Harris, Manager of Information Security Policy and Strategic Development / The Americas, The Aon Corporation

Implementing a security metrics program for patch and vulnerability management is essential for measuring the effectiveness of the patching and vulnerability effort. These types of metrics are necessary to help determine where to focus limited resources to ensure systems are adequately protected.

Metrics that will be discussed in terms of how they can help the IT/Security organization include the following:

• How to use metrics to justify a comprehensive patch and vulnerability management program by examining industry metrics and internally-generated metrics
• How susceptible the network is to attack
• Monitoring trends to help avoid potential pitfalls
• Examples that you can take back to the office and start using

Our speaker will cover the following:

• How companies need to change their processes due to the changing nature of threats
• What companies need to modify due to changes in IT budget
• How to keep up with IT regulatory compliance & risk management
• What does the vulnerability management roadmap look like

What You Will Learn

This one day conference will provide IT departments with an understanding of the following:

• How to develop an efficient and effective patch management process
• How to update your current patch management framework
• Creating a System Inventory
• How to align vulnerability management with incident resolution
• How to implement an effective patch management solution
• How to monitor  Vulnerabilities, Remediation and Threats
• Prioritizing, Deploying, & Testing Remediations
• Taking it to the next level: How to take your patch management process and build into effective vulnerability management
• How to develop and implement metrics
• How to convert volumes of IT vulnerabilities into business risk exposure analysis
• How to insure compliance with industry regulations
• How other IT departments have worked through their patch management challenges

Each attendee will receive a certificate awarding 7 CPE credits for CISSP continuing education,
 in addition to 0.7 CEUs and 7 PDUs.
CISSP is a registered certification mark of (ISC)², Inc.

Exhibits

As is always the case at CAMP IT Conferences events, the talks will not include product presentations. During the continental breakfast, coffee breaks, and the luncheon break you will have the opportunity to informally meet representatives from the following sponsoring companies, who have solutions in the area of the conference.