Can we ever catch up to all the chaos? How far behind are we?
When do we get to rest? Will it get worse before it gets better? Will there ever be a point in time where stability is a possibility?… These and many other questions alike have a familiar tone, uncertainty. And I can say with confidence that most, if not all of us, have had questions like that at some point in our lives, regardless of the reasons behind them. In this talk, we’ll be asking those same questions about information security, with the hopes of clearing the path to find the answers we need, whether that’s going back to the drawing board or evolving to adapt our current solutions in a new way.
Side note: There’s hope, but we need to act fast.
Senior Information Systems Security student at Southern Alberta Institute of Technology (SAIT). I developed a passion for hacking at just 14 years of age, at first, I wanted to become a pen tester but after pursuing post-secondary education in infosec, I found myself enjoying the educational, analytical, and research side of infosec more. My goal is to have a foundation that creates large-scale cooperation between different organizations and promotes new ways of thinking when it comes to finding long-term solutions to problems the industry faces.
Please note a portion of this meeting will be dedicated to the AGM.
When frustrated we may ask ourselves “where are we going and why are we in this handbasket?”, but we rarely have the time to really reflect on where we’re going as an industry and how we got here─and who led the way. The people and ideas which were the foundations of information security are not ancient history, yet few of us know much about them. We are too busy running to keep up and never have time to look back. In this talk we will meet some of the people who founded and advanced our field, and hear some of their stories.
Jack Daniel is the Community Advocate for Tenable, is a co-founder of Security BSides, a community builder, storyteller, technologist, historian, mentor, and security professional. He has over 20 years’ experience in network and system administration and security, and has worked in a variety of practitioner and management positions. Jack is a technology community activist, a podcaster, and a frequent speaker at technology and security events. Jack used to put letters after his name but he doesn’t anymore; some fell off, others were pushed.
Zoom Online meeting Please obtain passcode to enter meeting from email confirmation RSVP Required – register at Zoom
The business of measuring security
Although quantifying things is an essential part of rational management, measuring is particularly challenging in the arcane field of information risk and security. Gary will be sharing his Hinson tips on selecting security metrics that work, both for infosec pros like us and for the businesses we serve. Pull up a chair and put your brain in gear. Audience participation is not merely permitted: it’s encouraged.
Gary Hinson lives at the end of the world, not only down under in New Zealand, but so far off the beaten track that nobody can find him. (Talk about security by obscurity.) Despite this, he advises international companies on information risk and security matters, providing excellent policies, awareness materials and strategies. He is a long-time active member of the CISSPforum, a Certified Usual Suspect. He has a long-abiding interest in the ISO27k standards, running the ISO27k Forum supporting 4,000 fellow ISO addicts. He has written the book (well, a book, anyway) on security metrics which is very pragmatic. (All will become clear during the session.) (Well OK, maybe not all but he’ll do his best)