Advanced Threats: Latest Attacker Techniques and Enterprise Strategies to Defeat Them
DATE: July 29, 2014 | TIME: 1pm ET / 10am PT | DURATION: 1 hour
Hosted by: Fred Donovan, Senior Editor of FierceMobileIT & FierceITSecurity
Advanced targeted attacks are the vector of choice for attackers bent on getting access to sensitive corporate data, particularly intellectual property, often without detection. The recent indictment of the Chinese military officers by the U.S. Department of Justice highlights the threat posed by well-funded attackers, often state sponsored. These attackers are often able to infiltrate the corporate security perimeter undetected and remain inside the network siphoning off valuable data for weeks if not months or years.
IT security has traditionally been good at protecting the perimeter to keep attackers out of the enterprise, but not so good at finding those that have already penetrated the perimeter and taken root in the corporate system.
This webinar will examine the latest advanced techniques attackers use to evade detection, infiltrate the network and extract valuable data. The speakers will also address best practices and strategies enterprises can use to detect and defeat these attacks.
John Pirc—Chief Technology Officer, NSS Labs
Chief Technology Officer John Pirc is a noted security intelligence and cybercrime expert, an author and a renowned speaker, with more than 15 years of experience across all areas of security. The co-author of two books, "Blackhatonomics: An Inside Look at the Economics of Cybercrime" (published in December 2012), and "Cyber Crime and Espionage" (published in February 2011), Pirc has been named a security thought leader from the SANS Institute and speaks at top tier security conferences worldwide.
Pirc's extensive expertise in the security field includes roles in cybersecurity research and development for the Central Intelligence Agency, Chief Technology Officer at CSG LTD, Product Manager at Cisco, Product Line Executive for Security Products at IBM Internet Security Systems, Director of McAfe's Network Defense Business Unit and, most recently, Director of Security Intelligence at HP Enterprise Security Products, where he led the strategy for next generation security products.
Phillip Mahan—Director of Risk Services, Williams & Garcia LLC
Phillip Mahan is the Director of Risk Services for Williams & Garcia in Atlanta Georgia. He has spent over two decades in the Information Technology field working for businesses in various business sectors including Finance, Healthcare, Retail, and Petrochemical. Phillip holds certifications in Security, Privacy, Audit, and Forensics and has been an active member of several professional organizations and has presented at international conferences on topics ranging from Governance & eDiscovery to the Privacy's role in Forensics.
John Pironti—President of IP Architects LLC and Risk Advisor with ISACA
John P. Pironti is the President of IP Architects, LLC. He has designed and implemented enterprise wide electronic business solutions, information security and risk management strategy and programs, enterprise resiliency capabilities, and threat and vulnerability management solutions for key customers in a range of industries, including financial services, insurance, energy, government, hospitality, aerospace, healthcare, pharmaceuticals, media and entertainment, and information technology on a global scale for over 20 years.
Mr. Pironti has a number of industry certifications including Certified in the Governance of Enterprise IT (CGEIT), Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), Certified Information Systems Security Professional (CISSP), Certified in Risk and Information System Control (CRISC), Information Systems Security Architecture Professional and (ISSAP) and Information Systems Security Management Professional (ISSMP). Mr. Pironti frequently provides briefings and acts as a trusted advisor to senior leaders of numerous organizations on information security and risk management and compliance topics and is also a member of a number of technical advisory boards for technology and services firms. He is also a published author and writer, highly quoted and often interviewed by global media, and an award winning frequent speaker on electronic business and information security and risk management topics at domestic and international industry conferences.
Sig Murphy—Regional Director , Incident Response at General Dynamics Fidelis Cybersecurity Solutions
In his role as the West Coast Regional Director for the General Dynamics Fidelis Cybersecurity NDF team, Sig is responsible for managing large-scale complex service offerings and serving as the main contact for our West Coast customers. He has over fourteen years of experience with General Dynamics as a technical specialist serving as the lead for incident response teams working some of the largest incidents, both public and private, ever reported. These clients include Fortune-50 corporations, major stock exchanges, as well as some of the largest law firms in the world.
While supporting government customers, Sig provided award winning support as the Section Chief for the DoD Cyber Crime Center's Intrusion Analysis and Counterintelligence sections. Sig was involved from the inception of the DC3 Intrusion team in the development of the DoD methods to evaluate and address Advanced Persistent Threat (APT) intrusions. During his tenure at DC3 (2000-2012), he worked on over 400 APT linked intrusions from a variety of different threat actors and served as the DoD liaison to Defense Industrial Base (DIB) clients as well as Federal Law Enforcement. Sig is a graduate of Georgetown University (B.A. Psychology/Computer Science) and Johns Hopkins University (M.S. Information Systems Engineering).