The best practices for mitigating this popular form of attack often are not being deployed
elcome to the ISSA Connecticut! The Connecticut ISSA chapteris a leading movement devoted to improving information security. Through its membership, ISSA CT helps security professionals learn of information security issues and trends, which promote education, dialog, and leadership. Network. Collaborate. Learn. Excel at the all new ISSA Connectportal. Join us at our own ISSA Connect-icut community (members only).
NYC Mayor Ed Koch was fond of asking, "How am I doing?" As professionals we must ask, "How
is security doing?" Compliance is driving security. Management is looking at Return On
Investment and security costs. The pundits recognize the need to integrate corporate IT
and security activities. Cobit offers a framework that can be used to accomplish this
task. ITIL also identifies what to do. Join us on September 21st to learn more about Cobit
and ITIL.
Speakers:
Mark Villinski
Manager, Field Marketing Kaspersky Lab
Mark will speak about current and future threats.He has given this presentation to the New York and Boston ISSA chapters were it was highly respected.His presentation will lay the foundation for the need to plan ahead, instead of reacting to security. Kasperskymonitors the threat horizon and brings insight to what is happening now and what is likely in the future.As we all know the security landscape is always changing.
Jim Brislin
Director of IT Security and Risk Management, Phoenix Life Insurance Company
“COBIT: A Tool for IT Security”The increasing complexity of managing an explosion of electronically available data in an always more efficient manner has led to an increasing pool of risks associated with not managing that data securely.Although each enterprise must develop its own set of policies, procedures and guidelines to prudently manage and secure its data, frameworks such as COBIT and ITIL provide direction for senior management as well as guidance for hands-on administrators. The presentation will provide an overview of the COBIT framework with an emphasis on how it can be applied to IT Security and how it relates to other frameworks such as ITIL.
Garth Hallett
Garth will be covering ISO 270001 from a compliance angle.He will look at the best practices represented by ISO 27001 as they apply to PCI DSS, SOX, HIPAA, and more.
Dennis Thrift
Compliance and Risk, Akibia
"Managing Multiple Compliance Requirements"
With too many compliance requirements, and not enough staff or resources to address every mandate, most organizations approach compliance in a piece meal fashion that addresses one regulation at a time. As a result, staff are overworked, over budget, and despite duplicated efforts, compliance remains an uncertainty. Gartner research suggests that companies that select individual solutions for each regulatory challenge spend 10 times more on the IT portion of compliance projects than companies that take a proactive and more integrated approach. This presentation will discuss the latest compliance challenges and offer insight into the best way to manage compliance with a more holistic approach
