Your organizations information is at risk. Learn how to protect it at SANS Minneapolis - August 12-17.


To attend this webcast, login to your SANS Account or create your Account.

Bring Your Own Collaboration Technical Control Tradeoffs

  • Wednesday, March 16th, 2016 at 1:00 PM EDT (17:00:00 UTC)
  • Dave Shackleford and Scott Gordon
This webcast has been archived. You can view the webcast presentation and download the slides by logging into your SANS Portal Account or creating an Account. Click the Register Now button after you have logged in to view the Webcast.


  • Final Code

You can now attend the webcast using your mobile device!


The ease at which users can access and share corporate files, the unlimited ways to exchange these files, and the greater diversity of recipients has made information governance an IT nightmare. In this age of BYOD (bring your own collaboration), companies face increased file data leakage exposures and privacy compliance risks. What are the technical control tradeoffs and best practices to assure appropriate file access, sanctioned collaboration and persistent protection of files containing sensitive, regulated and confidential data.

Join Dave Shackleford, SANS analyst and senior instructor, and Scott Gordon, chief operating officer at FinalCode, as they examine the use cases, technical control tradeoffs and best practices to secure sensitive files being shared within and outside an organization.

Attendees will explore:
  • Key use cases and compliance drives demanding greater file security
  • Top 10 controls to secure file collaboration and their caveats
  • How file collaboration security controls align to CIS Critical Security Controls
  • FinalCode's flexible architecture and approach to reducing file sharing risks

Speaker Bios

Dave Shackleford

Dave Shackleford is the owner and principal consultant of Voodoo Security and a SANS analyst, senior instructor, and course author. He has consulted with hundreds of organizations in the areas of security, regulatory compliance, and network architecture and engineering, possessing extensive experience designing and configuring secure infrastructures. He has previously worked as CSO for Configuresoft, CTO for the Center for Internet Security, and as a security architect, analyst, and manager for several Fortune 500 companies. Dave is the author of the Sybex book Virtualization Security, the coauthor of Hands-On Information Security from Course Technology, and currently serves on the board of directors at the SANS Technology Institute and helps lead the Atlanta chapter of the Cloud Security Alliance.

Scott Gordon

Scott Gordon is the chief marketing officer at RiskIQ, responsible for global market strategy, operations and sales enablement. He has 20 years' experience contributing to security management, network, endpoint and data security, and risk assessment technologies at innovative startups and large organizations. Prior to RiskIQ, Scott held management positions at ForeScout, Protego Networks (acq. Cisco), Axent and McAfee. Scott is CISSP certified and has authored "Operationalizing Security" and co-authored the "Definitive Guide to NAC."

Need Help? Visit our FAQ page or email

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.