posted Jul 26, 2010 8:14 AM by Wayne Morrison
Join us on Thursday, August 26nd, 6:00 PM at the Manchester City Library, as our guest speaker, Melissa LaVarnway, will explore "Fraud Protection and Mitigation".
Melissa LaVarnway is an information Security engineer with 11+ years experience assisting corporations in protecting their information. Over the last 4 years Melissa has specialized in protecting customer information and financial data leveraging Fraud mitigating technologies, dominate in the world’s major banks.
Her presentation will include demonstrations, discussions, and interaction as it relates to Multi Factor Authentication, Device identification, Fraud activity, and Geo location, and how this information can be leveraged to protect from fraud.
Please RSVP via the web site.
Chapter Meeting Details:
------------------------
DATE: Thursday, August 26 @ 6:00 PM
LOCATION: Manchester Public Library
405 Pine Street
Manchester, NH 03103
|
posted Jun 11, 2010 7:07 AM by Wayne Morrison
In transition or considering a career change? Things are not the way they used to be! Attend this session with two Human Resource Professionals who will discuss the Change Curve, the importance of and tips on How to Network, Social Media and the job search, and tips on the job search process from resume writing to interviewing and follow up.
Presenters:
Silvia McCarron, SPHR
Principal, SM HR Consulting, LLC
Silvia McCarron works with clients locally as HR Consultant as well as nationally on recruitment projects. She is certified as a Strategic Professional in Human Resources through the Society for Human Resource Management. Silvia volunteers time in the HR Profession by serving on the Board of Directors of the Human Resource State Council of New Hampshire as Workforce Readiness Chair and now as Director of Membership, as well as serving as Workforce Readiness Chair for the Seacoast Human Resource Association.
Debra M. Tuttle, M.Ed.
Business Operations Manager, Key Partners, Inc.
Debra (Deb) Tuttle, M. Ed. Interacts with numerous companies nationally as a result of her expansive network through professional associations. She contributes her time locally in community service and "goes above and beyond" when coaching career professionals in transition. She is Director of the Human Resource State Council of New Hampshire and President of the Seacoast Human Resource Association. Deb brings sound business solutions to her clients and strives to consistently move the HR profession to advance through development of tomorrow's leaders.
Silvia and Deb are members of the original team that put together the award winning New Hampshire Workforce Readiness Toolkit and have given numerous presentations on the subject to New Hampshire Employment Security, New Hampshire Shared Youth Vision, The Governor's Conference on Education, various state agencies, non-profit organizations, colleges, universities, schools, public radio, and a webinar for the Society of Human Resource Management.
|
posted May 24, 2010 7:06 AM by John Forest
[
updated Jun 3, 2010 10:10 AM
]
As of 6/3 the following nominations for Board of Directors positions have been received: Todd Waskelis, President Scot Sakelarios, Vice President Peter Brym, Membership Director Wayne
Morrison,
Communications
Director
Gary
Dentremont,
Treasurer Ken Wilson,
Secretary/Treasurer
Bob Witmer,
Secretary If there is any additional interest in holding a position on the Board, please send an email to our Nominations committee at nomination@issanh.org. |
posted May 6, 2010 3:13 PM by Wayne Morrison
[
updated May 6, 2010 3:30 PM
]
We will be having the May Chapter meeting on Tuesday, May 18th, 6:30 PM at the Portsmouth Public Library. The topic for this meeting will be "IT Security Governance & Compliance", presented by Thomas Golash.
Abstract:
-------------
.Today’s enterprise faces many challenges. Among these challenges is the number of compliance and governance rules that they must abide by. Compliance initiatives such HIPAA, PCI and SOX have often placed significant burdens on many organizations. Now partners and other business associates are placing additional governance demands such as requiring ISO 27002 compliance in order to conduct business with them. This discussion will provide a overview about these compliance rules and the demands they make upon the business.
Presenter Bio:
---------------------
With over 20 years of professional information security experience, Tom has an extensive background in a variety of security disciplines and vertical markets. His security experience ranges from security policy, information security program development, security project planning, information systems security administration, systems resource and capacity planning, and data center security. Tom has significant consulting experience to health care organizations, including hospitals, HMO’s, and Insurance providers, banking and insurance, software development, manufacturing, retail, and utilities.
Please RSVP via the web site.
Chapter Meeting Details:
------------------------
DATE: Tuesday, May 18th, 6:30 PM
LOCATION: Portsmouth Public Library
175 Parrott Avenue
Portsmouth, NH
|
posted Apr 2, 2010 8:25 AM by Wayne Morrison
Join us on Thursday, April 22nd, 6:00 PM at the Manchester City Library, as our guest speaker, Stuart Werman, will explore "Data Loss Prevention".
About the Presentation:
Current information security threats are causing organizations to be more concerned about protecting corporate confidential data loss (including personal identification information and intellectual property) from the inside-out whether its malicious or inadvertent. A myriad of compliance regulations reinforce the needs for greater controls of confidential data storage, transmission and use. If this is a priority issue for you and your organization, you might be interested in hearing more about Data Loss Prevention (DLP) as a security practice. Stuart Werman will discuss business drivers for DLP, current market for DLP, DLP fit in a information security strategy, use cases and sample reports that demonstrate quantifiable exposure to data loss and next steps to response and protecting the information.
About our Speaker:
Stuart lives in Hampton, NH and graduated UNH in 1982. He was with Vontu, the pioneering DLP company that was purchased by Symantec in November 2007 and is currently a DLP Specialist with Symantec. Prior to that, Stuart worked for Internet Security Systems (ISS - now part of IBM) and Mercury Interactive (now part of HP).
Meeting Details:
Date: Thursday, April 22nd, 6:00 PM
Location: Manchester Public Library
405 Pine Street
Manchester, NH 03103
Chapter Sponsors:
The New Hampshire ISSA wishes to recognize and thank our Corporate Sponsors, Imperva and Kaspersky Lab for their support.
|
posted Feb 17, 2010 6:43 AM by Wayne Morrison
Due to a series of unforseen events, there will be no chapter meeting this month.
Information on upcoming meetings will be posted as soon as it becomes available.
|
posted Jan 3, 2010 1:25 PM by events issanh
Every major governance framework or regulation includes the injunction to involve and inform executive management and Board members as a part of the risk equation. How does a practicing professional in the fields of security, technology, or compliance succeed at such an extreme sport?
Join us at 6:30 PM on Thursday, January 21st, as Lee Beachy, SVP, Information Security at Laconia Savings Bank, considers the following checkpoints in planning best practices for risk communications:
- Effectiveness — Get to the real deal, summarize the essence, trending and critical factors
- Efficiency — overcoming communication challenges; scalable and contextual communications
- Excellence — vision, goal-setting, and audience localization in risk communications
- Ethics — reporting dangers, statistics, and errors of omission
About our speaker:
Mr. Beachy has three decades of experience in successfully managing IT teams and leading the integration of technology and process change in service organizations. He has led enterprise-wide business projects and his expertise includes the formulation of strategic technology and risk management processes into mission-critical service operations.
Meeting Details:
DATE: Thursday, January 21st, 6:30 PM
LOCATION: Manchester Public Library
405 Pine Street
Manchester, NH 03103
|
posted Nov 27, 2009 7:07 PM by Wayne Morrison
Join us on Tuesday, December 8th, 6:00 PM at the Portsmouth Public Library for a bite to eat, some lively discussion on security trends and a chance to network with some of the best and brightest InfoSec professionals in New Hampshire.
|
posted Oct 31, 2009 5:12 PM by Wayne Morrison
Join us on Tuesday, November 17th, 6:00 PM at the Manchester City Library, as our guest speaker, Ed Adams, President and CEO of Security Innovation, will explore " Real Risks & True Protections - Threats Technology Can & Cannot Protect Against".
About the Presentation:
There isn’t a security threat that you can think of that some security company’s marketing literature doesn’t promise a solution for. But despite the zeal of marketers there are still some threats to enterprise informationtechnology that the industry is just beginning to address. Take the phishing phenomenon for example. The premise here is pretty simple: send an email to a user and lie about where you’re sending it from (a bank is always good), tell them they have to urgently log into their account, provide a legitimate looking web link to click on in the message body and then steal their account info as they enter it onto an authentic-looking web page. There are a few technology issues here. The first is that many of the standard email protocols allow one to lie pretty easily about where a message is coming from. The second problem is that the average user doesn’t know if they’re at the legitimate banking site or not; it al looks like one big, complicated URL. This talk highlights the challenges that IT managers face when combating current and future threats. The talk vividly illustrates the limits of current technologies and takes a look forward to how evolving needs will be met.
About our Speaker:
Ed Adams is the President and CEO of Security Innovation, the independent authority on application security risk assessment, risk mitigation and education. He is a seasoned software executive with successful leadership experience in various-sized organizations that serve the IT security and quality assurance industries.
Mr. Adams is the founder and business owner of the Application Security Industry Consortium, Inc. (AppSIC), an association of industry technologists and leaders establishing and defining cross-industry application security guidance and metrics. He is on the board of the National Information Security Group (NAISG).
No stranger to the podium, Mr. Adams has presented to thousands at numerous seminars, software industry conferences, and private companies. He has contributed written and oral commentary for business and technology media outlets such as New England Cable News, Associated Press, CSO Magazine, SC Magazine, Boston Globe, CIO Update, Wall Street Reporter, Investors Business Daily, Optimize and CFO Magazine.
Mr. Adams is in the process of writing a book titled “Information Security Management: Survival Guide”, which will be published by Wiley & Sons and is due out in 2010. He also has maintains a blog with CSO Magazine and is a columnist for CIO Update.
Chapter Meeting Details:
DATE: Tuesday, November 17th, 6:00 - 8:00 PM
LOCATION: Manchester City Library Auditorium, 405 Pine Street, Manchester, NH 03103
|
posted Sep 28, 2009 6:37 PM by John Forest
[
updated Sep 28, 2009 6:53 PM
]
Join us on Thursday, October 8th, 6:30 PM at the Portsmouth Public Library, as our speakers will explore "Governance, Risk & Compliance" and "The Evolution of SIM, SEM and SIEM".
About our speakers:Bruce Beck, Vice President of Sales and Business Development for Avior Computing. Mr.
Beck has over 30 years of successful sales, business development and
management experience in the technology industry, primarily focused on
early stage companies. Mr. Beck significantly contributed to the
successful IPOs of three companies where he was an executive. Mr.
Beck joined Avior Computing in 2006, an emerging leader in the
Governance Risk and Compliance (GRC) market, as the 3rd employee with
responsibility for Sales and Business Development. Avior Computing’s
customers include Cigna, Huntington National Bank, United Parcel
Services, Guardian Insurance and Pearson Publishing. Mr. Beck
earned a BS in Business Administration and a minor in Computer Science
from the University of Illinois and a Masters in Finance from Boston
College. He is an avid competitive golfer. Mr. Beck and his wife
reside in North Hampton, New Hampshire. Mark Carboni, Technology Consultant at RSA, The Security Division of EMC.
Mark
has over 26 years of technology experience spanning various
disciplines, interacting and collaborating with a diverse group of
solution seekers, from C level and below. Mark specializes in
providing Security Information and Event Management [SIEM] solutions to
NY and New England enterprise customers. Presentation Abstracts:Governance, Risk & Compliance
The Executive Board of any large enterprise wants to know that the organization is appropriately protected against potential risk. The ultimate objective of risk management is to define and understand the risk tolerances of the enterprise, manage to those tolerances; optimizing the risk/return of the business. In addition, increased accountability and transparency is being demanded of corporate executives and boards of directors from both customers and regulatory agencies. Renewed enforcement and enhancements of regulatory requirements are becoming more evident and the costs associated with compliance are increasing significantly. This is occurring at the same time that resources are being stretched thin, if not altogether eliminated. It has been estimated that spending on Governance, Risk & Compliance (GRC) exceeded $32 billion in 2008 [i]. Budget priorities are becoming more focused on enterprise and operational risk management. As enterprises continue to spend time, money and resources on GRC, finding effective and economically sound ways to identify and manage the processes and procedures implicit in GRC is an enterprise imperative. GRC is not just one particular subject, discipline or endeavor. It is the attempt to develop a unified approach to interrelated tasks and events within an enterprise, including among other things: · risk management · policy management · compliance management · continuity of business management · asset management · audit management · threat management · incident/event management · vendor management In my presentation I will provide an overview of the elements of a GRC program and provide an overview of what to look for in tools to implement a GRC program. I will also relate IT GRC to Operational Risk Management and highlight overlaps and differences. The Evolution of SIM, SEM and SIEM
Check back here soon...
|
|
