Insider Threats And Data Security

Date/Time: 29 Apr 2010
14:40-15:05
Location:Business Strategy Theatre

Speaker(s)
  		• Mr. Brian Contos, Chief Security Strategist, Imperva

    Seminar Details
    With trends in digitization and information sharing, risks associated with insider threats have increased, as have avenues to profit from selling sensitive information. Criminals, competitors, and nation-states have discovered that there’s no reason to hack from the outside when you can recruit from within. Understand the malicious insider profile. Witness a live demonstration of data hacking techniques, and learn through real-life cases how insider threats to data security can be mitigated.
    As a result of this presentation / hacking demonstration the audience will be able to:
    1. Assess their organizational data security posture.
    2. Recognize the warning signs of a malicious insider and provide assistance before a crisis arises.
    3. Explain and perhaps demonstrate specific web application and database attacks (that will be fully demonstrated) such as:
    a. SQL Injection
    b. Parameter Tampering
    c. Cookie Poisoning
    d. XSS Cross-site Scripting
    e. Session Hijacking
    4. Apply practical, real-life steps for securing databases; many of which require no additional technology investment.
    5. Apply practical, real-life steps for securing Web applications; many of which require no additional technology investment.
    For years organizations have worked diligently to lock down their perimeters only to find out that the most devastating enemy is already inside. Today most organizations would agree that their most valuable IT assets reside within applications and databases. Most would probably also agree that these are areas that have the weakest levels of security thus making them the prime target for malicious activity from system administrators, DBAs, contractors, consultants, partners, customer, temps, and the list goes on.
    This presentation will explore three disparate areas related to insiders:
    • First, what makes insiders tick
    • Second, how do application and database attacks work, what do they look like, what can they do
    • Third, how can an organization mitigate attacks by applying countermeasures aimed directly at their targets: applications and databases


    Search the website

    Register now
    Exhibitor Zone
    Product & Services Directory 
    Add dates to your diary
    If your organisation experienced a security breach today, is there a system in place to adequately deal with the incident including plan of action, third parties, etc.?
    Yes
    No
    >> (click here to view the results)

    Co-located with:

    Sevice Desk & IT Support Show

    Organised by:

    reed
    A division of Reed Business

    Infosecurity Euorpe - A targeted sponsorship opportunity

    Official Media Partner:

    infosecurity Magazine

    Just Help Haiti

    Just Help Haiti