Access Control and Audit High Risk Users

Webinar: Access Control & Audit for High-Risk Users

30th July 2009

10:00 AM - 11:30 AM Singapore

11:00 AM - 12:30 PM Thailand

Register at:https://www2.gotomeeting.com/register/725301130

Learn how to granularly control access and audit high-risk users to maintain security and compliance while increasing operational efficiency. At this Quantiq sponsored webinar, hosted by leading security analyst and holder of Gartner’s Thought Leadership award Richard Stiennon, you will hear real-world advice on how organizations are controlling, containing and tracking their high-risk users including IT administrators, DBAs, outsourced employees, vendors and partners. You also will see an informative walk through of the Xceedium GateKeeper solution and how it can save you time, effort and money by increasing your operational efficiency while bolstering your security.

At this webinar you will see how the Xceedium GateKeeper:

• Saves you valuable time, reduces complexity and cuts costs by consolidating in a single appliance the functions of what were disjointed point solutions;

• Improves operational efficiency while protecting your information assets by guaranteeing users are restricted to authorized areas;

• Ensure compliance with internal corporate and external regulations, including the "Never Alone Principle;"

• Provides an unprecedented level of granular access control to safeguard your key assets while boosting productivity.

System RequirementsPC-based attendeesRequired: Windows® 2000, XP Home, XP Pro, 2003 Server, Vista
Macintosh®-based attendeesRequired: Mac OS® X 10.4 (Tiger®) or newer

TechStrategies 2009

When: 8th September 2009
Where: Pan Pacific Hotel, Singapore

SUMMIT OVERVIEW

The current economic downturn is the worst since the broad adoption of Information Technology into business. This means that CIOs have to show the true business value of their work more than in their entire careers – and hopefully more than they will ever have to. The balancing act of delivering business value and optimizing resources through Information and Communication Technologies (ICT) will be a major challenge for all CIOs in the next 12-18 months. The CIO is being faced by the need to make businesses more agile, productive and customer-centric whilst also cutting back wherever possible. While all this is happening, technology continues to develop. CIOs are still faced with the issues of learning and understanding all the potential value of emerging technologies like Web 2.0 and beyond, cloud computing, virtualization and the continuing consumerisation of IT.

Frost & Sullivan’s TechStrategies 2009 Summit is designed to assist CIOs and IT Directors on cost optimization strategies and to make sense of the emerging technologies and how they can translate into business value. The summit would focus on business issues such as:-
• Maximizing Your ICT Dollar – Cost-Cutting Strategies, Building Competitive Advantage with IT
• Enterprise 2.0 – New business models, emerging technologies, risk management, Cloud computing
and “Green” initiatives
• Gazing at the Crystal Ball – Insights into evolving Technology Trends and “Hot” Companies of the Future
The summit will also feature Track Sessions focused on key technologies such as:
• Information Security
• Sustainable IT
• Unifi ed Communications

PROGRAM HIGHLIGHTS

• Keynotes from Thought Leaders including Frost & Sullivan Analysts
• Industry Updates from Frost & Sullivan’s Analysts
• Choice of ‘Concurrent’ Sessions, organized under 3 Tracks – Information Security, Sustainable IT
& Unifi ed Communications
• Case Studies from leading Organizations in Asia Pacifi c
• ‘C-Level Dialogue’ Panel Discussion - C-Level Executives share their knowledge & experience
• ‘Ask the Experts’ Panel Discussions with Q & A - Functional Experts & Delegates engage in various
discussions on topical issues
• “By Invitation Only” Special Feature on ‘HOT’ Companies of the Future – innovative emerging companies in
Asia are invited to make a presentation and participate in an interactive discussion

SOME KEY TOPICS OF DISCUSSION

• Can Technology help us weather the Recession?
• Building Resilient Enterprises
• Managing IT Investments in a Downturn – How to do more for less?
• New Business Models: Cloud Computing – Benefi ts, Challenges & Implications.
• Data Centers of the Future

The Dangers of Persistent Web Browser Storage

AISP Academic Series - A wolf in sheep's clothing: The Dangers of Persistent Web Browser Storage

Date: 16 July 2009, Friday
Time: 1.30pm - 5.30pm
(3.5 CPE hrs)
Venue: Singapore Management
University Seminar Room 2-3
(Level 2),
School of Information Systems,
80 Stamford Road,
Singapore 178902

Fees (incl. GST)
Free for AISP members
$21.40(Affiliate)*
$53.50 (Guest)
* SCS member, ISC2 member

Click here for information.

SingCERT Cloud Computing Security Seminar

Brought to you by:

SingCERT Security Seminar

Clould Computing Security

15 July 2009 (Wednesday)
2:00 pm to 5:00 pm
IDA Multi-Purpose Hall, Level 14

Synopsis

‘Cloud’ has become the favored buzzword among IT vendors rushing to deliver
more for less in a tight economic environment. Security vendors have certainly not
failed to miss this opportunity and a variety of security solutions once available
from product vendors are now being delivered as services in the cloud. Tough
economic times are a selling point for such services, but what are the true costs? Are
short term cost savings outweighed by the hidden costs associated with outsourcing
security?

Cloud based security services are a relatively new phenomenon and as such,
enterprises typically have a variety of concerns that need to be addressed prior to
committing to such an approach. Attendees can expect to understand the pros and
cons of cloud security services and leave with the questions that need to be
answered upfront by all enterprises considering such offerings.

In addition, Michael will investigate the tools, techniques and motivations of modern attackers. He will spend time walking through real world web based attacks that target end users to better understand how cloud based security can address emerging threats. Attendees can expect to learn what they're are up against and understand how best to defend against such attacks.


Bio-Data of the speaker

Michael Sutton, Vice President, Security Research


Michael Sutton has spent more than a decade in the security industry conducting leading-edge research, building teams of world-class researchers and educating others on a variety of security topics. As VP of Security Research, Michael heads Zscaler Labs, the research and development arm of the company. Zscaler Labs is responsible for researching emerging topics in web security and developing innovative security controls, which leverage the Zscaler in-the-cloud model. The team is comprised of researchers with a wealth of experience in the security industry.


Prior to joining Zscaler, Michael was the Security Evangelist for SPI Dynamics where, as an industry expert, he was responsible for researching, publishing and presenting on various security issues. In 2007, SPI Dynamics was acquired by Hewlett-Packard. Previously, Michael was a Research Director at iDefense where he led iDefense Labs, a team responsible for discovering and researching security vulnerabilities in a variety of technologies. iDefense was acquired by VeriSign in 2005.

Michael is a frequent speaker at major information security conferences; he is regularly quoted by the media on various information security topics, has authored numerous articles and is the co-author of Fuzzing: Brute Force Vulnerabilities, an Addison-Wesley publication.

He was the guest speaker on the Black Hat DC 2009 Briefings held at Hyatt Regency Crystal City, February 16 to 17.


Schedule
2:00 - 2:30 pm Registration

2:30 - 3:30 pm Part I – Pros and cons of cloud security services

3:30 - 4:00 pm Tea Break

4:00 - 5:00 pm Part II – Attackers’ Techniques, Tools & Motivation

5:00 - 5:15 pm Q&A



** Pre-registration required. Please register through http://www.quantiqint.com/qievents/Zscaler-SingCert/Zscaler-SingCert-Registration.htm
** Seats are limited; please register by 13 Jul 2009.

** For more details on this seminar, kindly contact SingCERT at 6211 0911.


[*Early Birds Gifts will be given to the first 20 attendees. While stocks last!

*Attendees are advised to bring their business card on the day of the seminar as there will be a lucky draw conducted.]

Combating the Insider Threats and Securing Privileged Passwords

Where: Mandarin Ballroom II, 6th Floor Main Tower, Meritus Mandarin Singapore 333 Orchard Road, Singapore 238867

Time: 11:30 AM - 2:30PM

What: This seminar will reiterate the severity of and threat to corporate IT posed by insider attacks, especially those insiders with privileged access rights.

When: 23rd June 2009

Topics included:
- The liabilities of uncontrolled admin, root and application-script identities
- Compliance implications of Privileged Identity Management
- Why it's essential to audit generic and privileged accounts?
- The importance of removing hard-coded passwords from applications and scripts
- How to lockdown local administrator accounts on workstations
- How we can assist companies to seal up holes in their identity security model.
- Success Stories

Who Should Attend: IT Manager, CIO, CEO, CISO, Risk and Compliance, Director, Infra, IT Security Officers, MIS Manager, Project Managers, IT Security Executives Special Guest

Speakers: Terence Kew, Regional Infrastructure Manager, Molex Far East South Management Pte Ltd. Terence have 18 years of experience in IT and will be sharing previous challenges they had before implementing Privileged Identity Management.

Oded Valin is the Regional Sales Engineer for the Asia Pacific region at Cyber-Ark Software, the market leader in securing and managing privileged identities and highly-sensitive information.

***This event is by invitation only, on a First come, first serve(d) basis. Please register early if you're interested in attending. ***