SANS Rocky Mountain Fall is Live Online! Join us Nov 2-7 MT for 17 interactive courses + NetWars. Save $300 thru 10/7.


To attend this webcast, login to your SANS Account or create your Account.

This webcast has been archived. To view the webcast login into your SANS Portal Account or create an account by clicking the "Get Registered" button on the right. Once you register, you can download the presentation slides below.

Bring Your Own Collaboration Technical Control Tradeoffs

  • Wednesday, March 16, 2016 at 1:00 PM EDT (2016-03-16 17:00:00 UTC)
  • Dave Shackleford, Scott Gordon


  • Final Code

You can now attend the webcast using your mobile device!



The ease at which users can access and share corporate files, the unlimited ways to exchange these files, and the greater diversity of recipients has made information governance an IT nightmare. In this age of BYOD (bring your own collaboration), companies face increased file data leakage exposures and privacy compliance risks. What are the technical control tradeoffs and best practices to assure appropriate file access, sanctioned collaboration and persistent protection of files containing sensitive, regulated and confidential data.

Join Dave Shackleford, SANS analyst and senior instructor, and Scott Gordon, chief operating officer at FinalCode, as they examine the use cases, technical control tradeoffs and best practices to secure sensitive files being shared within and outside an organization.

Attendees will explore:
  • Key use cases and compliance drives demanding greater file security
  • Top 10 controls to secure file collaboration and their caveats
  • How file collaboration security controls align to CIS Critical Security Controls
  • FinalCode's flexible architecture and approach to reducing file sharing risks

Speaker Bios

Dave Shackleford

Dave Shackleford is the owner and principal consultant of Voodoo Security and a SANS analyst, senior instructor, and course author. He has consulted with hundreds of organizations in the areas of security, regulatory compliance, and network architecture and engineering, possessing extensive experience designing and configuring secure infrastructures. He has previously worked as CSO for Configuresoft, CTO for the Center for Internet Security, and as a security architect, analyst, and manager for several Fortune 500 companies. Dave is the author of the Sybex book Virtualization Security, the coauthor of Hands-On Information Security from Course Technology, and currently serves on the board of directors at the SANS Technology Institute and helps lead the Atlanta chapter of the Cloud Security Alliance.

Scott Gordon

Scott Gordon is the chief marketing officer at RiskIQ, responsible for global market strategy, operations and sales enablement. He has 20 years' experience contributing to security management, network, endpoint and data security, and risk assessment technologies at innovative startups and large organizations. Prior to RiskIQ, Scott held management positions at ForeScout, Protego Networks (acq. Cisco), Axent and McAfee. Scott is CISSP certified and has authored "Operationalizing Security" and co-authored the "Definitive Guide to NAC."

Need Help? Visit our FAQ page or email

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.