Wednesday May 25 2PM  EDT

Watch Now <59:46>

The cybercrime battlefield is changing. Employees, not networks, are now in the front. State-of-the-art trojans, stealthy infection and social engineering plague every Fortune 500 company. What do cybercriminals steal? How do they monetize it? Is it time for a new defense doctrine? In this talk, the RSA Cybercrime Lab will share new research, insights, and nerve-wracking evidence of data already in the wrong hands.

Sponsored by RSA, The Security Division of EMC, Global Diamond Sponsor

(ISC)2 members can receive 1 CPE credit for attending the live webcast. Use your after event email as confirmation.

Uri Rivner, Head of New Technologies and Identity Protection
RSA, The Security Division of EMC

Uri Rivner is responsible at RSA for moving Cybercrime-fighting innovations from concept to reality. He was a key player in the development of risk-based authentication, the RSA eFraud Network and other anti-Cybercrime technologies now used by thousands of organizations worldwide. Rivner joined RSA through the acquisition of anti-fraud company Cyota, where he gained a deep perspective on international fraud.

Watch Now <59:46>

Wednesday March 30th 2011, 2PM EDT

Watch Now <56:11>

It's 2011. Why are we still dealing with drive-by downloads? This session combines telemetry data from two web security products with millions of users to answer some of today's top questions. Where are the malicious payloads hosted? How are criminals infecting legitimate sites? Do we really want to block the unintentionally malicious sites? Use these answers to optimize your web security efforts.

Sponsored by Cisco Systems, Global Platinum Sponsor

(ISC)2 members can receive 1 CPE credit for attending the live webcast. Use your after event email as confirmation.

Patrick Peterson, Chief Executive Officer and Cisco Fellow
Authentication Metrics, Inc. and Cisco Systems, Inc.

Patrick Peterson joined IronPort Systems in 2000 and defined IronPort’s email security appliances and invented SenderBase, the industry’s first reputation service. In 2008, after Cisco’s acquisition of IronPort, Peterson became one of 14 Cisco Fellows. He leads research projects to understand cutting-edge criminal attacks and the business models they support.

In 2009, extending years of work at IronPort and Cisco, Peterson founded Authentication Metrics, Inc (AMI) to create a new trust framework for email. AMI leverages email authentication standards to secure the email channel. Peterson serves as CEO of AMI and remains an active Cisco Fellow.

Henry Stern, Senior Security Researcher, Cisco

Henry Stern joined IronPort Systems in 2006 as one of the original engineers responsible for IronPort Anti-Spam (TM), the industry’s most accurate anti-spam filter, and invented IronPort’s Multidimensional Pattern Recognition (TM) technology for combatting image threats. Henry has been involved in the anti-spam community since 2003, serving as a committer for the Apache SpamAssassin project and a contributor to both the SURBL and URIBL spam domain name blocklists.

Watch Now <56:11>

Arthur Coviello, Jr., Executive Chairman, RSA, The Security Division of EMC, and Executive Vice President, EMC Corporation

Organizations worldwide have high hopes for the cloud. Hope in its potential to transform IT infrastructures, applications, and information management and in its ability to revolutionize business. But before we can trust that the cloud is safe for real business, we need a secure foundation of dynamic controls and trustworthy measurement. Art Coviello and Richard McAniff, Chief Development Officer and Member of the Office of the President, VMware, Inc.unveil innovative advances toward a trusted cloud.

Art Coviello is responsible for RSA’s strategy and day-to-day operations as it delivers EMC’s global vision of information-centric security.  Mr. Coviello was Chief Executive Officer of RSA Security, Inc. prior to its acquisition by EMC in 2006. He joined the company in 1995 and has been a driving force in its rapid growth, increasing revenue from $25 million in 1995 to revenues of over $600 million in 2009.  Mr. Coviello’s expertise and influence have made him a recognized leader in the industry, where he plays a key role in several national cyber-security initiatives. Mr. Coviello has spoken at numerous conferences and forums around the world.  Mr. Coviello has more than 30 years of strategic, operating and financial management experience in high technology companies. In addition, he currently serves on the Board of Directors at EnerNOC (a leader in Demand Response Systems for energy conservation).

Mr. Coviello graduated magna cum laude from the University of Massachusetts.

Download <7:09>

Philip R. Reitinger Deputy Under Secretary for the National Protection and Programs Directorate (NPPD) and Director of the National Cybersecurity Center (NCSC), U.S. Department of Homeland Security

Town Hall at RSA Conference 2011: Join NCSA and leading cybersecurity experts, including senior officials from the White House and key federal government agencies, for an in-depth dialogue about ways to increase collaboration in the face of more and more sophisticated threats in cyberspace. This will be an interactive Q&A with leading government cyber security officials and industry experts on topics that are important to risk managers in both the private and public sector, domestic and international.

Hosts:

• Shannon Kellogg, Senior Director, Government Affairs and Public Policy, EMC Corporation
• Michael Kaiser, Executive Director, National Cyber Security Alliance

Guests:

• Howard A. Schmidt, Special Assistant to the President & Cybersecurity Coordinator
• Philip Reitinger, Deputy Under Secretary, DHS
• Patrick Gallagher, Deputy Under Secretary of Commerce for Standards and Technology & Director, NIST

Philip R. Reitinger was appointed by U.S. Department of Homeland Security (DHS) Secretary Janet Napolitano to serve as the Deputy Under Secretary for the National Protection and Programs Directorate (NPPD) on March 11, 2009. In this role, Reitinger leads the Department’s integrated efforts to reduce risks across physical and cyber infrastructures. He oversees the coordinated operational and policy functions of the Directorate’s subcomponents, which include Cybersecurity and Communications (CS&C), Infrastructure Protection (IP), Risk Management and Analysis (RMA), and the United States Visitor and Immigrant Status Indicator Technology (US-VISIT) program. On June 1, 2009 Reitinger also became the Director of the National Cybersecurity Center (NCSC), which is charged with enhancing the security of federal networks and systems by collecting, analyzing, integrating and sharing information among interagency partners. In this role, Reitinger is responsible for coordinating situational awareness and reporting for federal cybersecurity organizations and personnel.

As Deputy Under Secretary for NPPD and Director of NCSC, Reitinger provides strategic direction to the Department’s cybersecurity efforts while ensuring preparedness and response capabilities across all federal computer systems.

Prior to joining DHS, Mr. Reitinger was the Chief Trustworthy Infrastructure Strategist at Microsoft Corporation. In that role, he worked with government agencies and private sector partners to enhance cybersecurity and infrastructure protection. In November 2001, Mr. Reitinger became the Executive Director of the U.S. Department of Defense’s (DOD) Cyber Crime Center, which provides electronic forensic services and supports cyber investigative functions at DOD. Before joining DOD, Mr. Reitinger was Deputy Chief of the Computer Crime and Intellectual Property Section at the U.S. Department of Justice. At the Department of Justice, Mr. Reitinger chaired the G8 subgroup on High Tech Crime. Reitinger has represented government and industry on critical information technology and security initiatives throughout his career, including the Industry Executive Subcommittee of the President’s National Security Telecommunications Advisory Committee (NSTAC), where he chaired the Next Generation Networks Task Force. He was the first Chairman of the Software Assurance Forum for Excellence in Code (SAFECode), the President of the Information Technology-Information Sharing and Analysis Center (IT-ISAC), and a member of the Executive Committee of the IT Sector Coordinating Council (IT SCC). Mr. Reitinger was a member of the Federal Emergency Management Agency National Advisory Council and the Information Security and Privacy Advisory Board (ISPAB) of the National Institute of Standards and Technology. He was also a member of the CSIS Commission on Cybersecurity, which developed recommendations for the 44th Presidency.

Reitinger holds a law degree from Yale Law School and a bachelor’s degree in electrical engineering and computer science from Vanderbilt University.

Ulrich Waldman, Research Associate, Fraunhofer Institute for Secure Information Technology SIT

The new German eID card allows for a high-level of security and economy of personal data based on mutual authentication of citizens and service providers on the Internet. The session introduces new concepts, technologies, infrastructure services, application scenarios, and economic opportunities from an international point of view.

Ulrich Waldmann is a graduate computer scientist from the Technical University Darmstadt, Germany. Since 2002 he works as research associate at the Fraunhofer Institute for Secure Information Technology SIT in Darmstadt in the area "Transaction and document security". His working fields include smart cards, health cards and telematics, security concepts, smart card standardization, eID cards, RFID and biometry. He contributes to the introduction of the German health card, health professional card and national identity card. He is engaged in standardization of chip card protocols on national level (DIN), editor of the German health professional card specification, project manager of the eID card test center at the Fraunhofer SIT and organizer of the annual SIT-SmartCard Workshop.

Download <7:41>

John Whaley, Chief Technology Officer, MokaFive

IT departments are considering BYOPC (Bring Your Own PC) initiatives, due to factors including cost, employee demand for choice and freedom, and more contractors and part-time workers. But the big issue is security: how can you ensure the security of an unsecured, employee-owned desktop that you have no access to? This session will address different BYOC models and share best security practices.

John Whaley is responsible for the technical vision of MokaFive. He holds a doctorate in computer science from Stanford University, where he made key contributions to the fields of program analysis, compilers, and virtual machines. He is the winner of numerous awards including the Arthur L. Samuel Thesis Award for Best Thesis at Stanford, and has worked at IBM's T.J. Watson Research Center and Tokyo Research Lab. John was named one of the top 15 programmers in the USA Computing Olympiad. He also holds bachelor's and master's degrees in computer science from MIT and speaks fluent Japanese.

Download <6:39>

Jeremiah Grossman, CTO, WhiteHat Security

Jeremiah Grossman will draw from the most recent WhiteHat Security Website Security Statistics Report – a trove of information from over 1,600 websites – to introduce the most prevalent vulnerabilities putting data at risk. This presentation will place special emphasis on separating historical trends from the current state of web application security.

Jeremiah Grossman, founder and CTO, WhiteHat Security, is a world-renowned Web security expert. A co-founder of the Web Application Security Consortium (WASC), he was named one of InfoWorld’s Top 25 CTOs in 2007 and is often quoted in publications such as SC Magazine, Forbes and USA Today. Grossman is an influential blogger who encourages open dialogue regarding vulnerability trends.

Download <6:21>