Keynote Speakers

The FBI View Of Cybersecurity: Threats, Trends and Protective Strategies

Open to All ISC West Badge Holders

April 05, 2017, 8:45 AM - 9:45 AM

Location: Marco Polo 701

Take a look inside the FBI’s key priorities and initiatives in computer intrusion and cyber threat response. Current hacking events have thrust cybersecurity into the news daily. Learn about an assessment from the Bureau's perspective of current and emerging threat trends related to data protection and privacy issues that impact security across the country. Review highlight recent cases and takedowns conducted by the FBI and its partners in response to data breaches and major cybercrime, and identify several of the FBI's innovative partnerships that help companies and the public combat cyber threats and manage risk.

Contributors

Philip Celestini

Philip Celestini
Presenter
Section Chief, FBI Cyber Division

About: Section Chief Philip Celestini is a veteran Special Agent of the Federal Bureau of Investigation (FBI), currently assigned to the FBI’s Cyber Division as the Bureau's Senior Executive Representative to the National Security Agency and U.S. Cyber Command. Mr. Celestini has excelled in a wide variety of FBI Headquarters and field office assignments, and was also detailed to the White House as the FBI's Counterterrorism Liaison to the National Security Council staff from 2004 to 2006. Mr. Celestini earned numerous commendations and honors throughout his career as a field Agent, and in 2013 he was recognized with the FBI’s “Top 12 Knowledge Award” for his pioneering application of technology platforms to improve on-demand information sharing in complex, multi-jurisdiction cases - a reflection of his career-long focus on improving performance through collaboration and technical innovation. Prior to entering the FBI, Mr. Celestini served our nation while on active duty in the United States Air Force as an Intelligence Operations Officer. Mr. Celestini received his Bachelor of Science degree from the United States Air Force Academy, and also holds a Master of Science (with Distinction) in Public Safety Leadership.


DDoS Threat Landscape & Defensive Countermeasures

Must purchase a SIA Education@ISC West package to attend

April 06, 2017, 8:45 AM - 9:45 AM

Location: Sands 305

October 2016’s attack on Dyn’s DNS infrastructure was a gloomy wake-up call to the online community at-large, depriving us access to some of the online destinations and applications we use every day, thereby confronting us with the stark reality of an old and ever-growing threat with which the InfoSec community has been grappling: DDoS Attacks.

As we look at the role that “Internet of Things” devices played in the attack against Dyn, as well as the attack against Krebs prior to it, we will dive into the DDoS attacks Threat Landscape: Symptoms, Motivations, Business Impact & Attack Vectors. Having thereby gained a better understanding of our exposure to these threats, we’ll then explore Defensive Countermeasures with a strong emphasis on preparedness ahead of these attacks, including:

  • Reducing Attack Surface
  • Monitoring: Availability, Performance & Search Engine Visibility
  • DNS Redundancy Planning
  • Web Application Scaling Strategies
  • Mitigation Vendor Fit Assessment
  • Attack Mitigation

Contributors

Chris Holland

Chris Holland
Moderator
Founder, HiveWind, LLC

About: Chris Holland is the Founder of HiveWind, LLC, a consultancy specializing in the research and development of best-of-breed DDoS mitigation solutions. Throughout a career spanning more than 20 years, Mr. Holland has held Sr. Engineering and Leadership roles for small and large successful publicly-traded companies such as EarthLink and Internet Brands, serving business models across Content, Commerce, Travel & Finance on a wide variety of technology stacks including Java/J2EE, PHP/LAMP and C#/.Net, catering to audiences over 100 million monthly visitors.

Tin Zaw

Tin Zaw
Panelist
Directory, Security Solutions, Verizon Digital Media

About: Tin Zaw has served as Verizon Digital Media Services’ director of global security solutions since 2015. He and his team provide managed and professional web security services for clients' web properties. He launched the services during his first year at Verizon and continues to grow the operations each year.

Prior to joining Verizon, Zaw led web and product security teams at AT&T and Intuit. He previously designed and implemented security products at Symantec for 100 million plus users worldwide and participated in the early days of the web infrastructure at Inktomi, which later became part of Yahoo!. He started his career by programming network protocols at QUALCOMM and Cerner.

A long-time volunteer with OWASP, Zaw is a former president of its Los Angeles chapter and currently co-leads the OWASP project on Automated Threats to Web Applications. He received the OWASP Chapter Leader of the Year award at the AppSec USA conference in 2013.

Zaw graduated with a bachelor’s degree in computer science from Pittsburg State University, Kansas. He obtained a master's degree in computer science from the University of Southern California and an MBA from the USC Marshall School of Business.

Craig Rosen

Craig Rosen
Panelist
Vice President & Chief Information Security Officer, AppDynamics

About: In his current role as Vice President and Chief Information Security Officer at AppDynamics, Craig is focused on building and scaling a strong information security practice to protect company data and ensure customer trust. Craig’s strategy is forward-leaning and centered on driving proactive, risk-based and data-driven decisions to enable business. Craig is passionate about leveraging security to develop customer trust as the business of security evolves from imperative to competitive advantage. As a technologist at heart, Craig thrives on translating the technical complexities of cybersecurity as a function of corporate risk management for the Chief Executives and the Board Room. Prior to AppDynamics, Craig was the Vice President and Chief Security Officer for FireEye where he built and led the company’s first information security and risk management practice through IPO in September, 2013. Prior to FireEye, Craig launched the first Security Architecture practice at Pacific Gas & Electric Company. There, Craig was focused on building resilient security architectures to protect the company’s critical infrastructure and went on to lead the Company’s cybersecurity strategy along with a team dedicated to advising the business and Chief Executives on cybersecurity risk. Craig has been practicing and consulting in the field of information technology and security for over 20 years.


How Cyber-Attacks are Changing the Expectations of Security, Privacy, and Safety

Open to All ISC West Badge Holders

April 06, 2017, 1:45 PM - 2:45 PM

Location: Marco Polo 701

Cyber-attacks are an ever increasing problem that reaches out from the digital domain and into the physical world to impact the security, privacy and safety of people, businesses, and governments. The rapid growth of technology adoption and connectivity are driving new opportunities for attackers at an accelerating rate. The result is a radical shift in expectations by consumers and organizations for more comprehensive solutions, streamlined oversight, and clear accountability.

Mr. Rosenquist, a cybersecurity strategist with Intel Corp, will discuss the growing types of incidents and challenges in the industry which are driving shifts in expectations for security, privacy, and safety. He will also present a glimpse of the future where both risks and opportunities abound.

Learning Objectives:

  1. Review of significant impacts of cyber-attacks on the physical world
  2. Understand the emerging challenges cyber/physical will face with security, privacy, and safety
  3. Learn how the changing expectations in the market are creating new industry practices

Contributors

Matthew Rosenquist

Matthew Rosenquist
Presenter
Cyber Security Strategist, Intel Corporation

About: Matthew Rosenquist joined Intel Corp in 1996 and benefits from nearly 25 years in the field of security. Mr. Rosenquist specializes in security strategy, measuring value, and developing cost effective capabilities and organizations which deliver the optimal level of security. Currently, a cyber-security strategist for the Intel Security Group, he helped in the formation of this industry leading organization which brings together security across hardware, firmware, software and services.

Mr. Rosenquist built and managed Intel’s first global 24x7 Security Operations Center, oversaw several internal platform security products and services, deployed the enterprise intrusion detection program, and was Intel’s first Incident Commander for worldwide IT emergency responses. He has conducted investigations and risk assessments in defense of corporate assets and managed the security playbook for Intel’s strategy planning group, encompassing all security features landing in the PC architecture. Mr. Rosenquist ran security for Intel’s multi-billion dollar mergers and acquisitions activities and justified the security strategy protecting Intel’s global manufacturing capability. His development of the Threat Agent Risk Assessment (TARA) methodology to optimize security, has influenced how organizations view and prioritize risks.

Mr. Rosenquist is very active in the industry, speaks at conferences, consults with industry partners, member of advisory boards for cyber education, and has published acclaimed white papers, blogs, and videos on a wide range of information security topics. He is very passionate about security and information technology, his chosen career path, and strives to blend practical risk mitigation practices and information technology capabilities to achieve an optimal level of security.

We use cookies to operate this website and to improve its usability. Full details of what cookies are, why we use them and how you can manage them can be found by reading our Privacy & Cookies page. Please note that by using this site you are consenting to the use of cookies.