Live, interactive cybersecurity training available through SANS Live Online. View upcoming events.


To attend this webcast, login to your SANS Account or create your Account.

This webcast has been archived. To view the webcast login into your SANS Portal Account or create an account by clicking the "Get Registered" button on the right. Once you register, you can download the presentation slides below.

Top 3 Threats to Retail IT Security and How You Can Defend your Data

  • Tuesday, October 21, 2014 at 3:30 PM EDT (2014-10-21 19:30:00 UTC)
  • Josh Daymont, Brian Nuszkowski, Dave Shackleford


  • Duo Security

You can now attend the webcast using your mobile device!



Affecting millions of consumers worldwide, a few high-profile retail breaches have called into question the security practices of retailers and those that support the industry. The prevalence of breaches calls for stronger, more effective security measures in a rapidly evolving IT environment.

Total breaches have risen 62 percent from 2012 to 2013, according to Symantec's Internet Security Threat Report 2014, with the number of identities stolen tallying up to 553 million - up from 93 million in 2012.

That significant upward trend necessitates a change in how we approach security.

This webinar explores:

  • New risks presented by cloud, mobile and Bring Your Own Device (BYOD)
  • Protecting data no matter where it lives, whether in the cloud or on-premises
  • The business and compliance drivers for strengthening authentication security

Ideal for security, compliance and risk management officers, IT administrators and other professionals concerned with information security in the retail industry.

Watch this webinar to learn about the top three threats to retail organizations and how you can defend against them.

Speaker Bios

Dave Shackleford

Dave Shackleford, a SANS analyst, instructor, course author, GIAC technical director and member of the board of directors for the SANS Technology Institute, is the founder and principal consultant with Voodoo Security. He has consulted with hundreds of organizations in the areas of security, regulatory compliance, and network architecture and engineering. A VMware vExpert, Dave has extensive experience designing and configuring secure virtualized infrastructures. He previously worked as chief security officer for Configuresoft and CTO for the Center for Internet Security. Dave currently helps lead the Atlanta chapter of the Cloud Security Alliance.

Brian Nuszkowski

Brian is a DevOps Engineer at Duo Security. Prior to joining Duo, Brian Nuszkowski was a site reliability engineer at Domino's Pizza, in the eCommerce division. In that role, he worked closely in support of PCI security compliance requirements. He was a recent speaker at Velocity Conference and DevOpsDays

Josh Daymont

Joshua Daymont is a security expert and PCI QSA. His industry leadership includes discovering two significant vulnerabilities that led to import CERT advisories during the late 90's. Josh has spoken at Black Hat Briefings, OWASP, ISSA and more, and has been quoted by media outlets including Information Security Magazine, CNBC and Bloomberg TV. He holds a Masters in Management of Information Technology from the Georgia Institute of Technology.

Need Help? Visit our FAQ page or email

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.