SANS Financial Services Cybersecurity Briefing
Live from New York! Join the SANS Institute as we simulcast the SANS Financial Services Cybersecurity Trends and Challenges briefing from the New York Marriott Downtown. This 1/2 day event provides a unique opportunity to engage in dialogue around cybersecurity issues specific to the Finance Industry and learn about key solution capabilities/customer success stories. Register here to attend in person.
Agenda:
- 8:00am
Registration / Breakfast / Networking - 8:30am - 9:00am
Welcome Keynote
One of the top complaints about the information security team is that they stand in the way of operations. How can security be aligned with operations? Can information security actually facilitate operations? Could there be long term liability and impact for the enterprise if we fail to align operations and security? In this talk David Hoelzer will explore the issues and provide insights from real world case studies in an attempt to offer some real world solutions. In addition, David will offer some practical insights on limiting long term liability based on his experience as an expert working for federal regulators in the financial services space.David Hoelzer, CSO Enclave Forensics, Fellow, SANS Technology Institute
Fellow, Identity Theft & Financial Fraud Research Operations Center - 9:00am - 10:00am
Financial Services Security - Solutions Case Study PanelFinancial Services Security - Solutions Case Study Panel
Moderated by David Hoelzer
Richard Trezza, Systems Engineering Manager, Palo Alto Networks
Bill Potter, Commercial Account Executive and John Bargiel, System Engineer, NuixPalo Alto Networks
Kim Peterson, Nuix - 10:00am - 10:30am
Networking Break - 10:30am - 11:15am
Revamping your IR program: 8 EFFECTIVE recommendations to get your monitoring & IR capabilities back in shape
The financial services industry remains a prime target for cyber criminals and putting out fires after security breaches are part of our way of life. Keeping up with the sheer amount of incidents and the complexity of new vulnerabilities and malware variants is more challenging than ever, and the shortage of security skills force us to do more with less. In this scenario, how can you make sure you are doing your best to avoid the same errors that seem to be at the root of most breaches affecting the financial services sector? In this talk you will learn what works and what does not from the experiences of our Foundstone investigators who have assisted with more than 200 cases in 2014. We will also discuss 8 effective activities that every financial services organization should be adopting and we will provide an open-source tool that attendees can leverage to hunt for indicators of compromise in their network.Ismael Valenzuela - Foundstone IR/Forensics Technical Practice Manager at Intel Security & Community SANS Instructor
- 11:15am - Noon
Prepare for Breach and Be Bold About It!
During this lecture we will discuss the reasons why current solutions have failed to protect computer networks. Moreover, we will exam what could have been done to minimize the breach, and discuss how companies exacerbated the problem.Anthony Reyes
This Briefing Sponsored by:
