Current global events and economic conditions are causing some unsettling situations that need to be addressed. For the security professional, it isn't just about averting cyber criminals' new threats to your business and customer data while also managing security, risk and privacy.

The role of security professional has evolved from a job requiring an in-depth technical background into one that demands a well-rounded business perspective.

You'll find a comprehensive agenda designed to help guide you through today's tumultuous environment and anticipate how to stay on track for the future.

Agenda Tracks

TRACK A: The CISO's Role: Information Security Management Planning
The job of Chief Information Security Officer has evolved. Sometimes you came up through the ranks, maybe from network security, maybe from the audit department. You may know something about "the business" or maybe you're focused - too much - on technological solutions to infosec problems. You'll learn how to round out your knowledge and skills to meet the challenge of the job.

TRACK B: The Network Security Professional
Connectivity. Without it we're isolated and can't do business. The perimeter is porous, the challenges growing, the threats mutating and the bad guys are getting more and more creative. Keeping up means understanding how the tools are evolving, where they fit, where they overlap and where they truly show value.

TRACK C: Applications and the Security Role
Applications run the business. The first task is to make sure they work and meet the requirements. Too often, the question "is it secure?" is an afterthought. You can learn to fix that.

TRACK D: Security and Risk in Your Industry
Each industry sector is a little bit unique. Some industry initiatives are specific, some more general, but all offer something from which other businesses can learn.

TRACK E: Privacy and Data Security: Working with the Chief Privacy Officer
Privacy is the consumer version of security, but it also applies to corporate privacy, i.e. protecting intellectual property and the data your company or agency has been entrusted to protect. How can privacy be addressed within the information security domain?

TRACK F: Professional Effectiveness Workshops
Combining tutorials and interactive exercises, the sessions in this track will provide the tools and techniques needed for personal, individual success in your information security and risk management programs.

New! Financial Services and Healthcare Specific Sessions

Financial Services Focused Sessions

• Heartland Payment Systems
• Top Ten Security Lessons I learned in the Implementation of SOA for Large Enterprise (Tom Ray, Wamu)
• Tips to Link Risk and Security to corporate performance
• Why you can't count on customer authentication alone
• Threats and Vulnerability Mgmt in FS and Other Industries
• Securing the Web gateway
• SSO and Password Mgmt
• Key Mgmt and DLP
• Security, Privacy & Email Administrator
• Retail Security Issues

Healthcare Focused Sessions

• Healthcare Focused Sessions
• Security in Health Care: How to Prepare for Inevitable HIPAA Enforcement
• Effective Enterprise Single Sign On Implementation (Mark Eggleton)
• Tips to Link Risk and Security to corporate performance
• Key Mgmt and DLP
• Security, Privacy & Email Administrator
• Security, Operations and Facilities and BCM
• Using Data Loss Prevention to Reduce Privacy Costs

Key Topics

• Data and Application Security
• Privacy policies and privacy protection tools
• Hype Cycles for Information Security
• Magic Quadrants for Security Technologies
• How to be economical and safe through efficient security operations
• Facing budget crunches while under security and compliance mandates

Analyst/User Roundtable Topics

Retail Security Issues: Fraud, Shrinkage and PCI
Avivah Litan
Mon, June 29, 5:30-6:30 pm

Authentication Trends
Ant Allan, PhD
Mon, June 29, 5:30-6:30 pm

IPS and Firewall Management
Greg Young
Tues, June 30, 9:15-10:15 am

Threats and Vulnerability Management in Financial Services and Other Industries
Mark Nicolett
Tues, June 30, 9:15-10:15 am

IAM Issues in Government and Other Industries
Ray Wagner
Tues, June 30, 10:30-11:30 am

Security Organizational Structures
Chris Byrnes
Tues, June 30, 10:30-11:30 am

SSO and Password Management
Ant Allan, PhD
Tues, June 30, 2:45-3:45 pm

Key Management and Data Loss Prevention
Eric Ouellet
Tues, June 30, 2:45-3:45 pm

Security Awareness Training
Perry Carpenter
Tues, June 30, 5:15-6:15 pm

Forensics Tools, Technologies, Techniques
Jay Heiser
Tues, June 30, 5:15-6:15 pm

E-Discovery
Andrew Walls
Wed, July 1, 11:00-12:00 pm

Security, Operations and Facilities and BCM
Roberta Witty
Wed, July 1, 11:00-12:00 pm

Secure Software Development
Joseph Feiman
Wed, July 1, 1:30-2:30 pm

IAM War Stories
Perry Carpenter
Wed, July 1, 1:30-2:30 pm

Earn CPE Credits

As an attendee to this event, any sessions you participate in that advance your knowledge within that discipline may earn you CPE credits from the following organizations:

ISC²/CISSP
Gartner is an Official (ISC)²® CPE Submitter and can submit up to 18 Type A or 2 Type B CISSP®, CAP, CSSLP, SSCP credits, based on the content in the Gartner Information Security Summit. You will be required to provide your name, certification number or (ISC)²® number and your email address when onsite at the Summit.

ISACA CPE hours (CISA, CISM, and CGEIT) may be available as follows as outlined in their Continuing Education Policy: (www.isaca.org/cisacpepolicy, www.isaca.org/cismcpepolicy, www.isaca.org/cgeitcpepolicy).

Visit the Agenda Builder