Wednesday, November 10

Security Automation and SCAP - Public and Private Sectors

12:55pm-1:55pm

Tony Sager, Chief of the Information Assurance Directorate's (IAD) Vulnerability Analysis and Operations (VAO) Group, National Security Agency (NSA)

Dr. Ron Ross, Project Leader, FISMA Implementation Project, National Institute for Standards and Technology

Richard Hale, Chief Information Assurance Executive, Defense Information Systems Agency (DISA)

Wyatt Starnes, VP Advanced Concepts & CTO of Cyber at Harris Corporation

Moderator: Eric Green, Program Director, SC World Congress

In short, SCAP is a method for using specific standards to enable automated vulnerability management, measurement, and policy compliance evaluation. This methodology, set of standards and validation program is vital to government, private sector practitioners and security vendors alike as it will help push our industry to a more regimented and secure way of dealing with everything from controls and configuration management to secure software development.In this session you will hear from the ones leading this effort as to how you can benefit from SCAP and all of the free tools available to you.

12 Hours to Network Meltdown

3:55pm-5:25pm               

Fictitious company Hackbro recently put up its private cloud. Observe while
the red team finds its way in and starts compromising systems. Follow those
attacks live on the screen in front of you and see various network systems
go down before your eyes. All the while become a valued blue team member by
tweeting live from the audience your counter-measures to put the various
network status components back to green as the red team attacks and turns
them to red.

A panel of CISOs will be present to agree on blue team corrective measures
and draw conclusions from and summarize events to create a report for the
Hackbro senior management as to what policies, technologies and practices
are necessary to avoid such a scenario actually happening to their
organization.

- Moderator: Col. Mike Convertino, commander, 318th Information Operations
Group, U.S. Air Force
- White Cell: Dr. Peter Stephenson, technology editor, SC Magazine, and
CISO, Norwich University; Lt Col Brian Denman, 39th Information Operations Squadron, U.S. Air
Force; Mr. Skip Runyan, 39th Information Operations Squadron, U.S. Air
Force; Capt Joseph Citro, 39th Information Operations Squadron, U.S. Air
Force
- Blue Team: Norwich University Cyber Cadets using the Norwich University
Advanced Computing Center Virtual Clusters
- Red Team: Penetration Testing Team, 39th Information Operations Squadron,
U.S. Air Force
- CISO Panel: - Ward Spangenberg, director, security operations, Zynga
- Michael Higgins, chief security officer, The New York Times Co.
- Bill Cook, Partner, Intellectual Property Department, Wildman Harrold

Keeping America's Cyber Infrastructure Secure

6:00pm-6:30pm            

Congresswoman Yvette D. Clarke (D-NY), Member of the House Committee on Homeland Security from New York City and Chair of the Subcommittee on Emerging Threats, Cyber-security, Science and Technology (tentative)

New York's own Congresswoman will discuss how Congress is working to help the security industry deal with threats to everything from our power grid to cyber terrorism, identity theft and general criminal activity. The United States Congress is the key component to winning the cyber battle as appropriations live or die by that government body. Learn how you can help your organization and country in this session.

Thursday, November 11

Offensive vs Defensive Cyber Security Strategy

11:30am-12:30am        

As a national focus on cyber for the public and private sectors, there are those who argue we are too offensively biased while others say we are too defensive as a national security posture. In the private sector many bury their heads in the sand, while others go on the offensive and actively work with law enforcement on sting operations nailing spammers and botnets, etc. Where is the balance?

- Moderator: Illena Armstrong, editor-in-chief, SC Magazine
- Lt Gen Robert Elder, USAF (Retired)

U.S. National Cybersecurity Strategy - progress and the path forward

4:30pm-5:00pm            

Special Assistant to the President and White House Cybersecurity Coordinator Howard A. Schmidt will present a topline summary of progress in the nation's cybersecurity efforts as well as outline some of the key challenges faced by both the public and private sectors.  Mr. Schmidt will also discuss some of the current initiatives and the way forward for pursuing the Obama administration's cybersecurity goals.  He will also address what those in the private sector can do to help keep our nation's cyber infrastructure secure.

 -       Howard A. Schmidt, Cybersecurity Coordinator, White House (invited)