Monthly Meeting October 24, 2018 - ISSA Central MD › wp-content › uploads ›...

Monthly Meeting

October 24, 2018

Central Maryland Chapter Sponsors:

Cybrary, Inc., Zscaler, Clearswift, LogRhythm, Parsons Cyber,

Phoenix TS, Tenable Network Security

Agenda / Announcements

➢Welcome to UMBC Training Center

➢Any guests or new members in attendance?

➢(ISC)2 CPE Submissions – Individual Responsibility

➢CISSP Chapter Badges / Shirts and Jackets with ISSA-Central MD Logo

➢CISSP & Study Group

➢Future Meeting schedule




Please respect the speakers and other members,

Silence or turn off cell phones and electronic devices,

No video or audio recordings.

Questions are welcome; please keep them on-topic and brief. Further discussion should be taken off-line with the presenters so as to allow them the courtesy of being able to finish their presentations within the

allotted time without being rushed.

Sidebar discussions should be constrained. If you must discuss something, allow your fellow members (and the presenter) the courtesy

of doing so outside or on break.




Board of Directors❖ Bill Smith, Jr., CISSP, GSNA, CEH, GPEN, GCFA, GCFE -

President

❖ Sidney Spunt, CISSP - VP Operations

❖ Zac Lechner, CISSP, CEH, MBA – Secretary

❖ Carol Klessig, CISSP - VP Professional Development

❖ Chuck Dickert, CISSP, CISA, CISM, CAPM – VP Education

❖ Jack Holleran, CISSP, CAP, (ISC)2 Fellow– Treasurer

❖ Steve Chan, CISSP, PMP – VP Membership

❖ Rob Reintges,CISSP - VP Outreach




Central Maryland Chapter Sponsors

Platinum Sponsor




http://www.parsons.com/about-parsons/Pages/default.aspx

Zscaler services enable customers to move securely to a modern cloud architecture.

The Zscaler cloud connects users to applications, regardless of where users connect

or where the applications are hosted, while providing comprehensive security and a

fast user experience.

Zscaler offers two service suites that eliminate the cost and complexity of gateway

appliances. Zscaler Internet Access securely connects users to internet and SaaS

applications, scanning every byte of traffic to protect against cyber threats and data

leakage. Zscaler Private Access provides fast access to internal applications hosted in

the data center or public clouds—without the need for a VPN.




New Members Since September Meeting

Troy Gladhill

Christian Holleran

Andre Hudson

Michelle Lapuente

Johnathan Ryan

Delilah Yerby

Total Chapter Membership: 242




Officer Elections

November 2018

President

VP Education

VP Outreach

VP Membership

Election Committee:Renee Esposito: [email protected]




ISSA Member Benefitshttps://www.issa.org/page/SpecialOffers

ISSA Members May Join Peerlyst for Free*

Peerlyst is a unique product-centric social network for Enterprise Information Security pros making it easy to find

unbiased peer-based product reviews and information, and to benefit from their peers firsthand experience with

solutions.

Peerlyst uses state-of-the-art information extraction algorithms that scour the Web for product information and

generate comprehensive product pages called PeerPages™. InfoSec pros use PeerPages to discover and

compare products, rate or comment on product features, "Follow” a product to get ongoing updates, "Contact

Vendor” for more information, or "Peer” other InfoSec pros using the products to get their insights.

* Peerlyst offers different access based on employment and roles within an organization. Security products and

services vendors will need to contact Peerlyst at [email protected] to receive a different log on as they are

tagged as a vendor and are unable to review products or to directly contact Peerlyst members without the

member’s consent. Please contact Peerlyst for complete details and restrictions.

The discounts on this page have not been subjected to any testing by the Information System Security Association (ISSA). These offers are made by third parties and not endorsed by

ISSA. Members should thoroughly review the details, privacy policies, and information provided by these vendors prior to selection or implementation.




Spring 2019 CISSP Study Group

Start: January 8, 2019

End: April 16, 2019

Review and Practice Exam

14 Sessions Total




*** Virtual Capture The Flag for High School ***




This Photo by Unknown Author is licensed under CC BY-

NC-ND

November 28th Meeting Location

Westridge Corporate Center6996 Columbia Gateway Drive, Suite 100Columbia, MD 21046Phone: 443-692-6600




http://holisticfamilia.wordpress.com/2009/11/23/6-simple-ways-to-save-money-and-be-green-too/

https://creativecommons.org/licenses/by-nc-nd/3.0/

This Photo by Unknown Author is licensed under CC BY-

NC-ND

New Meeting Location

• Columbia/Ft. Meade Area

• Seat 75 people

• HVAC until 7:30

• AV Equipped

• Internet

• Kitchen




http://holisticfamilia.wordpress.com/2009/11/23/6-simple-ways-to-save-money-and-be-green-too/

https://creativecommons.org/licenses/by-nc-nd/3.0/

Update on Fees for Chapter Meetings

• Members will NOT be charged at this time. Board will revisit after the new year

• One possible option is refunding members who pre-register and attend or pre-register / cancel ahead of deadline

• Will begin charging guests at November meeting per structure outlined below

Fees:

$15 for guests until 5 pm the day before meeting

$20 for guests paying at the door (exact cash or credit card)

Rules

No charges for speakers and their guests

Sponsor benefits of the Chapter will be updated to provide TBD number of free passes

Refunds available up to 5pm the day before




ISSA 2017-2018 Meetings and Events

Date Speaker Organization Topic

October 24, 2018 Greg Schwartzkopf Fortinet The devil is in the details:

Nuanced conversations

about cybersecurity

November 28, 2018 Stan Lowe Zscaler, CISO




November 28, 2018 Speaker

Stan Lowe,

Global Chief Information Security Officer, ZscalerStan Lowe, a cybersecurity and technology executive, has successfully led transformational change in large,

complex environments, as well as small and mid-size cybersecurity and IT organizations. As Zscaler Global Chief

Information Security Officer, Stan oversees the security of the Zscaler enterprise and works with the product and

operations groups to ensure that Zscaler products and services are secure. Part of his focus is to work with

customers to help them fully utilize Zscaler services and realize the maximum return on their investment.

Prior to joining Zscaler, Stan served as the VP & Global Chief Information Security Officer for PerkinElmer, where

he was responsible for global enterprise security and privacy. He has also been a Cyber Security Principal at Booz

Allen Hamilton. Stan has extensive federal experience, serving as the U.S. Department of Veterans Affairs (VA)

Deputy Assistant Secretary for Information Security, Chief Information Security Officer, and Deputy Chief Privacy

Officer, as well as Deputy Director of the Department of Defense/VA Interagency Program Office. Before joining the

VA, Stan served as Chief Information Officer of the Federal Trade Commission. Stan’s public service record

extends to the U.S. Department of Interior in the Bureau, the U.S. Postal Service Inspector General, and the U.S.

Navy.




November 28, 2018

No Network Needed?!?!

It seems every day, we are bombarded with news of yet another breach and our

personal information being traded and sold on the dark web/Internet. We lose

sleep wondering if we have the right controls and policies in place to prevent our

companies and our names from appearing in the next morning’s headlines. Is it

time for a different approach? What if we could get rid of our network so we no

longer had to define complex boundaries and policies? Is it really possible to

architect a system that removes all the traditional ingress and egress points? If

we resign ourselves to the fact that it’s not IF but WHEN our network gets

breached….then why do we still have a network?




October 24, 2018 Speaker

Greg Schwartzkopf,

Fortinet

Greg Schwartzkopf is a Sr. Systems Engineering Director at Fortinet, Inc.

with 22 years active in cybersecurity. As a reformed hacker, serial tinkerer,

and technology lover, his insights on the cybersecurity world are anchored in

being a part of it since it’s inception. His vast experience on the ground

shows in his no-nonsense advice on practical ways security professionals

everywhere can increase their knowledge, understanding and security

posture in today’s complex business world.




October 24, 2018

The devil is in the details: Nuanced conversations about cybersecurity

As security professionals each day we get inundated with news,

buzzwords, product pitches, analyst summaries and a constant reminder

by everyone around us that the sky is falling. Most of what is repeated to

us over and over, however, is completely irrelevant to actually providing

security to our customers. Join me for an interactive conversation about

what’s pragmatic in this sensational world, how we can have more

nuanced conversations about security— and most important, why not to

be afraid of “I don’t know.”




Monthly Meeting October 24, 2018 - ISSA Central MD › wp-content › uploads ›...

Documents

Transcript of Monthly Meeting October 24, 2018 - ISSA Central MD › wp-content › uploads ›...