Information Security Risk Management - No Exceptions!
- Mark Williams
- Tuesday, February 17th, 8:15pm - 9:15pm
As a risk analyst or manager, it is likely that your days are filled with requests for exceptions to policy to permit people to do things wrong. I believe there is a better way. Permitting exceptions can be a valuable tool in developing a process life cycle. It can also become an easy way to avoid making decisions to upgrade or improve systems.
We are all faced daily with decisions on whether to permit exceptions. Let me show you how I think that continuous risk assessment and risk management can actually avoid the need for exceptions. By using a logical approach to risk identification, categorization and decision making, you too can do the "impossible" and say:
NO EXCEPTIONS!
Bonus Sessions
The following bonus sessions are open to all paid attendees at no additional cost. There are many different types of events that fall into these categories:
- SANS@Night: Evening presentations given after day courses have ended. This category includes Keynotes.
- Special Events: SANS-hosted events and other non-technical recreational offerings. This category includes, but is not limited to, Receptions and Information Tables.
- Master's Degree Presentation: Presentations given by SANS Technology Institute's Master's Degree candidates.
Monday, February 16
| Session | Speaker | Time | Type |
|---|---|---|---|
| General Session - Welcome to SANS | Dr. Eric Cole | Monday, February 16th, 8:15am - 8:45am | Special Events |
| APT: It is Time to Act | Dr. Eric Cole | Monday, February 16th, 7:15pm - 9:15pm | Keynote |
Tuesday, February 17
| Session | Speaker | Time | Type |
|---|---|---|---|
| Privileged Domain Account Protection: How to Limit Credentials Exposure | Mike Pilkington | Tuesday, February 17th, 7:15pm - 8:15pm | SANS@Night |
| Information Security Risk Management - No Exceptions! | Mark Williams | Tuesday, February 17th, 8:15pm - 9:15pm | SANS@Night |
Wednesday, February 18
| Session | Speaker | Time | Type |
|---|---|---|---|
| The 13 Absolute Truths of Security | Keith Palmgren | Wednesday, February 18th, 7:15pm - 8:15pm | SANS@Night |
| Continuous Monitoring - A Practical Example | Randy Marchany | Wednesday, February 18th, 8:15pm - 9:15pm | SANS@Night |
Thursday, February 19
| Session | Speaker | Time | Type |
|---|---|---|---|
| How to Give the Best Pen Test of Your Life | Ed Skoudis | Thursday, February 19th, 7:15pm - 8:15pm | SANS@Night |
| Continuous Monitoring and Real-World Analysis | Seth Misenar | Thursday, February 19th, 8:15pm - 9:15pm | SANS@Night |
| BYOB - Build Your Own Botnet | Francois Begin - Master's Candidate | Thursday, February 19th, 8:15pm - 8:55pm | Master's Degree Presentation |
Friday, February 20
| Session | Speaker | Time | Type |
|---|---|---|---|
| Debunking the Complex Password Myth | Keith Palmgren | Friday, February 20th, 7:15pm - 8:15pm | SANS@Night |
