|
|
 |
|
|
 |
 |
|
|
|
| |
|
| |
|
ONLINE REGISTRATION HAS CLOSED - PLEASE REGISTER AT THE EVENT NOW - SANTA CLARA CONVENTION CENTER |
|
| Tuesday - January 29, 2008 - Santa Clara Convention Center - 2nd Floor |
| Time |
Title - Speaker |
Track |
Room |
10:00 hrs
to
10:55 hrs |
Title: NAC - Alternatives to Controlling Access to the Network
No matter which vendor or approach, the essence of network accesss control (NAC) lies in its abilities to assess the risk of an endpoint entering the network, restrict threat traffic, and quarantine threatening or noncompliant users. We'll separate the hype from reality and how NAC can become the cornerstone of a solid network security strategy. Today's technology environment is defined by mobility - a productivity enhancement that also delivers an explosion of network security concerns. Home PCs become office PCs, laptops get attacked on the road, IP telephony is a growing trend, and increasingly more new devices are IP-enabled. Any one of these could be unmanaged, out-of-policy or just plain infected, leaving IT security professionals with two question. How do I control the access to networking resources? and How do I ensure that the resources on my network aren't creating a security risk? Network Access Control (NAC) technology promises to address this fundamental challenge. It's an emerging technology space, with many vendors offering solutions to address the need. This session will separate the hype from reality, discuss what NAC can and cannot deliver, and how NAC can become the cornerstone of a solid network security strategy.
Speaker: Michael D’Eath, Vice President Corporate and Business development. Michael comes to Mirage Networks with over 30 years of entrepreneurial, executive and business development experience in software, hardware and services. He is responsible for creating and managing Mirage’s strategic alliances. Immediately prior to joining Mirage, Michael was in charge of Business Development for Identity Management at Sun Microsystems, which he joined through the acquisition of Waveset Technologies in 2003. As Vice President of Corporate and Business Development for Waveset, he led Waveset’s alliances with systems and technology vendors, as well as managed relationships with the investment community. Recognized as one the industry's leading business development professionals, Michael has served such companies as Novell, Esquire, Prime Computer and Tivoli Systems, which he was instrumental in introducing to IBM for a $750 million acquisition in 1996. He is the former founder and CEO of CaritaSoft, a provider of customer value management solutions for the communications industry.
Level: Business
|
NAC
Network Access Control |
201 |
Title: Implementing Agile with Discipline
Description: The disciplined implementation of Agile best practices can result in the establishment of a powerful business enabling solution delivery framework that helps the business deliver key projects to market faster, with a higher ROI and improved market position. IBM has used the Accelerated Solution Delivery model since 1998 to drive productivity improvements of over 100%, decrease time to market, decrease defects, and increase business customer solution satisfaction. The fact is that implementing Agile practices successfully anywhere other than a "dot com" can be challenging for any team or organization. Following an Agile with Discipline approach can mitigate the risk of Agile failure and make the implementation smoother for the organization.
Speaker: Paul Gorans, Accelerated Solution Delivery (ASD) Practice Lead, IBM Global Business Services. Paul J. Gorans is the Global Leader of the Accelerated Solution Delivery practice within the Application Development Center of Excellence. He supports all sectors. Mr. Gorans has twenty years of Systems Engineering and Project Management experience at GM, Ford and the Department of Defense. His eleven years of project management experience includes the delivery of new application development projects, large systems integration programs and managing an application portfolio. Paul was one of the first Project Managers at the Ford Accelerated Solution Center (ASC) in 1999, where he successfully delivered several agile projects and a complex agile program. The Ford ASC was the first IBM ASD implementation and resulted in best-in-class project delivery metrics. For the past eight years, he has been dedicated to the sales, consulting and delivery of Agile best practices, through the ASD model, for dozens of clients in all industries. Mr. Gorans is heavily involved in IBM's Agile@IBM community that is focused on collaborating on and expanding Agile best practices across all IBM lines of business. He is a key contributor in the expansion of the wiki, including sharing success stories, lessons learned, and Intellectual Capital and raising awareness throughout GBS. He was a key planner and contributor to the first ever IBM Academy of Technology conference on Agile Methods and Practices, which brought experts together from across IBM to collaborate, share experiences and strategize on expansion of Agile across IBM for the benefit if IBM and our clients. Immediately prior to joining IBM, Mr. Gorans was a Program Manager at EDS, managing the GM Benefits and Personnel systems portfolio of existing and new applications totaling $13 Million in annual revenue. Over a period of eight years at EDS he made major contributions as a Systems Engineer, Project Manager and Supervisor to multiple application development and systems integration projects involving the nationalization of services and consolidation of processing that saved millions of dollars annually. Mr. Gorans began his career in the U.S. Air Force, in Intelligence Operations, and then led initiatives to develop and deliver new information technology solutions for Intelligence Operations to the field.
Level: Technical - Intermediate |
Web Applications |
209
|
Title: Enterprise 2.0: Maximize Data and Business Processes with RIAs
Description: This session will show how with Rich Internet Applications (RIAs) and business process management, developers can incorporate back-office infrastructures with new types of Web 2.0 front-office applications. This means higher performance, data rich applications, collaborative applications, and larger scale applications (such as audio and video)
Speaker: Raja Hammoud, Group Product Marketing Manager, Adobe Systems. Raja Hammoud is a Group product marketing manager responsible for the business and marketing strategy for Adobe's business process management (BPM) technology. Raja joined Adobe in 2007 after serving as senior director of product management at webMethods for 7 years. webMethods is an enterprise software provider of integration, SOA and BPM solutions. While at webMethods, Raja managed multiple products through their entire life cycle. Most notably, Raja successfully led webMethods in the BPM market, by setting a solid BPM product roadmap, and driving its execution across product development, marketing, sales and professional services. With over 10 years experience, Raja has served with Eastman Chemical Company, Ventro, and webMethods in positions encompassing software development, quality assurance, implementation, product management, and marketing. Raja Hammoud graduated with high distinction from the American University of Beirut with degrees in Computer Science and Mathematics.
Level: Business |
Web 2.0 |
210
|
Title: IT Compliance Management Unveiled: Revealing The Strategic Value
Description: Overregulation is now cited as the number one risk to business growth by CEOs. Balancing business progress and control management has become a continual battle from the boardroom to the data center. Traditional top-down and bottom-up compliance approaches are breaking down under multiple regulations especially when considering the vast gaps between regulatory requirements and actual technologies; overlaps in managing multiple regulations; and disparity in individual interpretation of regulations. With considerable amounts of time and money already spent, it's time to take compliance to the next level to reveal its real business value. An agile intermediary system is necessary to bridge the gap between continually shifting requirements and an organizations people, processes and technologies. This session will define an IT Compliance Management system; demonstrate how a system of segmenting control areas into domains reduces complexity; and build out the two key components of this system: 1) Design of Controls, and 2) Measurement & Monitoring of Controls.
Speaker: Steven Schlarman, Chief Security Strategist, CISM, CISSP, Brabeion Software Corporation. Steve is responsible for product development and strategy. He is a published author and a regular speaker and trainer on security compliance matters. Prior to joining Brabeion, Mr. Schlarman was a Director in PricewaterhouseCoopers Advisory Practice for 9+ years focused exclusively on information security and compliance consulting and auditing. While there he led a wide range of best practice engagements including security strategy, security policy development, IT audits, penetration studies, Sarbanes-Oxley preparation and computer crime investigation. Mr. Schlarman was PwC's global Subject Matter Expert, lead developer of the original Enterprise Security Architecture System (ESAS), and primary developer of security policy methodologies.
Level: Technical - Intermediate |
Compliance and Standards |
204
|
Title: AbSD Architecture Helps Turn IT Generalists Into Gurus
Description: Appliance-based Software Delivery (AbSD) combines three tiers of systems management: application services, operation services and operating environment in a singe hardware appliance. This structure creates an approach that addresses the problems of reliability, complexity and cost that are current issues with traditional and Software-as-a-Service (SaaS) delivery methods. Marty Kacin, co-founder, president and CTO at KACE, will address the structure, problems addressed, and applicability of AbSD in resolving current and projected issues with software delivery.
Speaker: Marty Kacin, Co-founder, President and CTO, KACE. Prior to KACE, Marty Kacin co-founded AvantGo and held key executive positions as Vice President of Applications, Professional Services and as CTO of the enterprise applications organization. Before AvantGo, Marty was a founding member and Vice President of Engineering of both Intranet Partners (an Internet technology engineering group) and the Stanford Center for Surgical Computing. A 20-year veteran of the high tech software industry, Marty has broad experience in IT, mobile, software development and medical computing fields. Marty holds BS degrees in General Science and Computer Science along with a BBA in Business from the University of Wisconsin
Level: Technical - Intermediate |
Software-as-a-Service (SaaS) |
207
|
Title: Liberate and Monetize Mobile Media
Description: Mobile user-generated content is growing daily as end-users share and network via the Internet. Yet there is a gap between the PC and mobile phone, due to the difficulty and expense of moving data off the phone. Faraz Hoodbhoy shares the solution; how to open the mobile phone to new levels of interactivity and revenue opportunities.
Speaker: R. Paul Singh is the CEO and President at PixSense, Inc. He was one of the founders of ipVerse/Veraz (NASDAQ: VRAZ) and helped the company in various management roles from CEO to VP to GM. He has over 20 years of experience in general management, marketing and business development in the communications industry. Before founding ipVerse, Mr. Singh was CEO and co-founder of Internetware, an Internet security company that merged with Quarterdeck Corporation. Earlier, as Pre sid ent of Launch Marketing , Mr. Singh worked with networking companies such as Ascend, Netopia and Sun Microsystems to develop and implement product strategy and launch plans. Prior, Mr. Singh was director of marketing for Telebit, later acquired by Cisco Systems. He also worked at Sun Microsystems on projects involving integration of voice and data networking and with 3Com in various product management and strategic marketing roles. He has co-authored three books on Internet related topics.
Level: Technical - Intermediate |
Mobile Internet |
212 |
Title: Trusted Storage
Description: The session begins with security measures for storage systems that exist today and their relative effectiveness. It will then go into where and how to secure access control of the storage system, discussing in detail what needs to be controlled and how to grant control in a secure manner. The Trusted Computing Group's Trusted Storage Use Cases will be reviewed in depth, highlighting the technical requirements being solved by the formal specifications. Relationships and cooperation with other industry storage standards (eg, SCSI and ATA, SNIA) will be discussed, and the TCG's specification for secure and trusted storage will be outlined and an overview of the Trusted Storage Architecture.
Speaker: Dr. Michael Willett, Senior Director, Seagate Research/Trusted Computing Group. Dr. Michael Willett received his BS degree from the US Air Force Academy and his Masters and PhD in mathematics from NC State University. After a career as a university professor of mathematics and computer science, Michael joined IBM as a design architect, moving into IBM's Cryptography Competency Center. Later, Dr. Willett joined Fiderus, a security and privacy consulting practice; subsequently, accepting a position with Wave Systems, helping to design programmable cryptographic chips. Currently, Michael is a Senior Director in Seagate Research, focusing on security functionality on hard drives. Dr Willett represents Seagate on the Trusted Computing Group Board of Directors, Technical Committee, and the Trusted Storage Work Group.
Level: Technical - Intermediate |
Web 2.0 & Trusted Storage |
203
|
11:00 hrs
to
11:55 hrs |
Title: Beyond NAC - The Need for Post-Admission Control
Description: Most of today's NAC discussions highlight admission control authentication and posture check. But controlling admission is only a piece of securing the LAN. To protect the business, IT must control where users can go once they're on the LAN, based on identity and role. IT needs such post-admission tools as visibility, identity-based control, and threat control to truly protect access to data. This session takes IT beyond NAC to the full scope of LAN security issues.
Speaker: Jeff Prince, Chairman and Chief Technology Officer, ConSentry Networks. Jeff Prince has over 16 years of experience developing networking and ASIC technologies. Prior to becoming chairman and CTO of ConSentry Networks, Jeff was a founder of Foundry Networks, leading Foundry's hardware engineering group. Before that, Jeff was a founder of Centillion Networks, which was acquired by Bay Networks in 1995. Prior to Centillion, Jeff was a hardware engineering manager at Network Equipment Technologies. Jeff holds eight patents related to networking technologies and has a BS in computer engineering from California State University Chico. Jeff is also a managing partner at Prince Ventures, LP.
Level: Technical - Intermediate |
NAC
Network Access Control |
201 |
Title: Five Common Mistakes in Securing Web Applications
Description: This session provides a discussion of how many severe vulnerabilities in web application can be introduced by design and architectural-level choices, resulting in application vulnerabilities even when the core OWASP and WASC security issues have been addressed. Solutions and recommend best practices for avoiding these mistakes will also be provided.
Speaker: Tom Stracener, Senior Security Analyst, Cenzic Intelligent Analysis Research Lab, Cenzic. Tom Stracener was one of the founding members of nCircle Network Security. While at nCircle he served as the head of vulnerability research from 1999 to 2001, developing one of the industry's first quantitative vulnerability scoring systems, and co-inventing several patented technologies. Mr. Stracener is an experienced security consultant, penetration tester and vulnerability researcher. One of his patents, Interoperability of vulnerability and intrusion detection systems, was granted by the USPTO in October 2005. Tom is the senior security analyst for Cenzic's CIA Labs.
Level: Technical - Intermediate |
Web Applications |
212 |
Title: Utility computing - Tapping a new resource to power your Web applications
Description: While the biggest value in new Web 2.0 applications is their functionality, deploying and operating applications on fixed infrastructure is becoming prohibitively expensive. Power costs are skyrocketing, servers depreciate before they're plugged in, and skilled operators are in short supply. The presentation will discuss, and demonstrate, a new architectural model for running and scaling Web 2.0 applications without breaking the bank - utility computing.
Speaker: Bert Armijo, Senior VP Product Management, 3tera. Bert Armijo is Co-founder and VP of Product Management at 3Tera, Inc. the leading innovator of grid computing and utility computing. A veteran of multiple startups, Bert co-founded Topspin Communications, a pioneer in fabric computing which was acquired by Cisco Systems in 2005. Bert was a co-founder of a Gigabit Ethernet startup Rapid City Communications, where he launched the first Gigabit Ethernet routing switch in 1997. Later the company was acquired by Bay Networks, which was acquired by Nortel. At Nortel's High Performance Switching Division Bert was responsible for launching the Passport 8600 Enterprise LAN switch. Bert an MBA from Saint Mary's College. His blog is at www.3tera.com/hotcluster.html
Level: Technical - Intermediate |
Web 2.0 |
210 |
Title: Mastering a Security Risk Management Blueprint
Description: Master an emerging Security Risk Management blueprint with a digestible and disciplined five-step process. Map people, processes and technologies in context of today's two intertwined exposures & risk and policy/control to gain: Visibility for state of security exposures; Guidance for cost effective reduction of exposures; Compliance to regulatory requirements for risk and policy management.
Speaker: Gidi Cohen, Chief Strategy Officer, Skybox Security. Gidi Cohen is an experienced speaker and researcher on the topic of security, risk management and analytic technologies. Before founding Skybox Security, the pioneering security risk management company, Gidi was CEO & co-founder of Vigil Technologies. Prior to Vigil Technologies, he managed extensive R&D projects at Orbotech and led an elite software development unit in the IDF intelligence corps. He holds a B.Sc. and M.Sc. in Computer Sciences and Mathematics from the Tel Aviv University.
Level: Business |
Compliance and Standards |
209 |
Title: E-mail Governance: Effective Management from Inception to the Archive
Description: This session further outlines the importance of e-mail governance in knowledge and corporate management. It discusses: Case study examples on best practices for deploying e-mail governance in real-world infrastructures; Application strategies for effective archival and categorization policies to meet corporate requirements and government regulation compliance; Insights into e-mail governance deployment and employee policy education; Calculating return on initial investment and lowering total cost of ownership.
Speaker: Bradley Young, Vice President of Service, MessageGate. Bradley is a 15-year veteran of the enterprise development industry. His experience has led him to work with a wide range of companies, including multinational corporations. Young has extensive experience leading enterprise systems, working with large-scale customers, and developing deployment strategies. Most recently, Young was at Attachmate, Inc., where he led several groups developing customer deployment strategies. Previously, Young worked with renowned companies including AT&T Wireless and N2H2, where he managed development projects and built automated testing frameworks. Young served in the United States Army as a Mechanized Infantryman in the 1st Infantry Division.
Level: Business |
Email and Messaging |
207 |
Title: Web 2.0 meets Storage 2.0
Description: Fueled by the explosive growth in digital media and user generated content, the demand for storage has increased exponentially, placing significant stress on current in house storage architectures and costly overcapacity build-outs. Factoring in time-to-market pressures as well as power, space, large capital expenditures, global performance, load balancing and availability issues, companies are faced with a exploding challenges and costs to go with the exploding storage demand.
Speaker: Edgard Capdevielle, Sr. Director of Product Management, Nirvanix, Nirvanix. Edgard joins Nirvanix from Brocade Communications’ Emerging Businesses unit responsible for entering the HBA market, which doubled Brocade’s addressable market. He joined Brocade through the acquisition of McDATA Corporation, where he led the Advanced Products Group responsible for expanding revenue in new businesses. As Sr. Director of Product Management, he established and managed OEM relationships with Riverbed, FalconStor, and LSI’s StoreAge. Prior to McDATA, Capdevielle worked with the founders of Orbital Data (acquired by Citrix Systems), was a Principal at Outlook Ventures, a $200M San Francisco based VC firm, and served as Engagement Manager with Ernst & Young’s management consulting practice (now Cap Gemini). He received a Masters degree in Business Administration from the University of California at Berkeley and a bachelor’s degree in Computer Science and Electrical Engineering from Vanderbilt University.
Level: Intermediate |
Web 2.0 & Trusted Storage |
203 |
12:00 noon
to
13:00 hrs |
INDUSTRY PANELS |
Theater |
13:00 hrs
to
14:00 hrs |
INDUSTRY PANELS |
Theater |
14:00 hrs
TO
14:55 hrs |
Title: Using the Network Infrastructure to Secure the Internal Network
Description: If you use Foundry, Cisco, Extreme, or HP Procurve router or switches, you are already equipped to deploy a powerful security technology based on flow-based anomaly detection. Worms, viruses, hidden backdoors, policy violations, anomalous traffic spikes, and other concerning network conditions are easily detected using NetFlow and sFlow datagram analysis. Flow-based anomaly detection is easy to deploy, cost effective, and provides deep insight into what's going on within the internal corporate intranet.
Speaker: Adam Powers, Chief Technology Officer, Lancope. As Lancope's Chief Technology Officer, Adam Powers is a leading innovator in the development of next-generation network behavior analysis and response solutions. Adam is a significant driver of Lancope's R&D of behavioral algorithms and analysis techniques for the StealthWatch System. With 10+ years of operational and engineering experience in enterprise IP security technologies, Adam commands considerable expertise in datacenter network design, IP flow analysis techniques, content delivery networks, and enterprise network security planning and management. During his tenure as a Sergeant with the US Marine Corps, Adam managed UNIX and IP networks across 5 operational datacenters and participated in several highly confidential information security initiatives.
Level: Technical - Intermediate |
Network Infrastructure & Outsourcing |
201 |
Title: Advanced Protection for Software Applications
Description: Traditionally, software has either not been protected, or has been protected by techniques that are static (such as obfuscation). The result? An estimated $41 billion lost to global software piracy in 2006, according to IDC and the BSA. This session will explore the underworld of cracked software – how is software hacked, where is it sold, and most importantly, what can be done about it? Learn the key characteristics of effective protection to harden applications against attacks in a manner that is not disruptive to good customers and to the development process itself. The approach we will present is flexible and tamper-resilient, and is based on a distributed security scheme, in which code protection is achieved, not by a single security module, but by a network of (smaller) security units that work together in the program. Learn how to safeguard your applications against tampering, piracy, reverse engineering and malware injections.
Speaker: Kevin Morgan Vice President of Engineering, Arxan. Kevin joined Arxan technologies in August 2006 as Vice President of Engineering. Mr. Morgan has 26 years of experience in the commercial system software business. He joined MontaVista software in 1999 as the Vice President of Engineering and the sixth permanent employee. Mr. Morgan led the engineering and product strategy for nearly seven years, growing the company to the world’s dominant embedded Linux products provider and one of the largest embedded operating systems businesses overall. He began his career at Hewlett Packard developing kernel level software in the RTE operating system, rising to Laboratory Manager for the HP-UX kernel and overseeing all HP-UX product development. He holds a Master of Science degree in Computer Science from the University of California at Berkeley .
Level: Technical - Intermediate |
Tomorrow's Technology Today |
210 |
Title: After the TJX Breach: Will PCI Security Compliance Be Enough?
Description: Is PCI DSS compliance enough to prevent another TJX fiasco? We'll review PCI DSS recommendations from a wireless perspective and identify additional measures needed to keep determined hackers away.
Speaker: Pravin Bhagwat, Chief Technology Officer, AirTight Networks. Pravin is a wireless networking pioneer and researcher with 13 years of leading edge research and development experience in wireless and mobile networking. He leads technology development and research at AirTight Networks. Previously, Pravin was a lead researcher at AT&T Research and IBM Thomas J. Watson Research Center, where he spearheaded several wireless technology innovations leading to novel products and standards. An Associate Editor of IEEE Transactions on Mobile Computing, Pravin has served as a guest editor of IEEE Network. Pravin has a B.Tech. in Computer Science from IIT Kanpur, India and an MS/PhD in computer science from the University of Maryland.
Level: Technical - Intermediate |
Security and Prevention |
209 |
Title: Next Gen Threats and the SaaS Defense
Description: This education sessions will examine the advent of the SpamThru Trojan and its milestone significance as similar techniques appeared within Storm Worm. Toward the latter half of 2007, the issues caused by the proliferation of Storm Worm Trojan dominated IT security news. What factors made this botnet so different from what had gone before?
Speaker: Mark Sunner, Chief Security Analyst, MessageLabs. Mark Sunner joined MessageLabs in 1999 as head of product development and innovation. The services Mark and his team initially created went on to establish several ground breaking milestones within the Anti-virus and Anti-spam arenas. In 2003 Mark relocated to New York for a year to help establish MessageLabs North American business and became the company’s primary spokesperson. Mark has more than 15 years of public speaking experience and is renowned as a keynote speaker within the industry. He has spoken on a wide variety of security related topics to more than 10,000 executives in the UK and has addressed audiences around the world on a range of security issues and product innovation. Mark is also a key media figure, having conducted numerous interviews with print media around the world and broadcast media appearances with The BBC, CNN, CNBC, Channel 4, Sky Television and others on a wide range of security and messaging usage topics.
Level: Basic |
Software-as-a-Service (SaaS) |
207 |
Title: IPS Solutions are Evolving: How Anti-Reconnaissance Technology Can Protect Your Network
Description: Today, attacks are silent, smarter and targeted. Cyber criminals lay the groundwork for any attack by scanning networks to identify valid IP addresses, open IP ports, operating systems, and applications including their versions and types. Both active and passive anti-reconnaissance technology is being used to prevent reconnaissance attempts to deter and mislead attackers. Learn how basic anti-recon methods can help lock down your network. Finally, a look at the most advanced anti-recon technology will show how you can increase network and device protection against zero-day attacks while protecting against the widest range of Denial of Service (DOS) attacks and back-door intrusions from wireless access points.
Speaker: David Izatt, Chief Technology Architect, Arxceo Corporation. David A. Izatt is a founder and the chief technology architect at Arxceo. Mr. Izatt is the inventor of the primary patent for Arxceo's core technology as well as numerous additional patent submissions since Arxceo's creation. Mr. Izatt continues to create potentially patentable approaches and methods for improving network security as he designs the next generation of Arxceo's core technology. Prior to founding Arxceo, Mr. Izatt was president and chief executive officer of AAW Inc, where he developed the original core PnPRO method. Mr. Izatt was also a senior programmer of Palladia Corporation, a startup focused on developing advanced distributed computing approaches. Mr. Izatt has also held other relevant roles such as network administrator of a public university, where he was faced with problems that lead him to eventually create Arxceo's technology.
Level: Technical - Intermediate |
Threats and Intrusion Prevention |
203 |
Title: Role of security in 3G Mobile Networks: Threat and Solutions
Description: In a 3G world, as mobile operators offer multimedia-rich services, their networks are vulnerable to many direct & in-direct service attacks. These attacks exploit weaknesses in 3G network architectures & protocols causing significant loss of revenue each year. This presentation will describe an end to end 3G network/system architecture implemented using IPsec Virtual Private Network's (VPN).
Speaker: Sid Yenamandra, Sr. Director, Applied Services Processors, Hifn, Inc. Sid Yenamandra directs Hifn's Applied Service Processor product line. Prior to Hifn, Sid was the Sr. Director of Exar's Telecom and Storage business. He also held senior marketing and applications engineering roles at PacketFX, Broadcom and Conexant. Sid completed his B.S. in Electrical Engineering & Computer Science from UC Berkeley.
Level: Intermediate |
Wireless Security |
204 |
15:00 hrs
to
16:00 hrs |
Title: Why Outsource? What to Know and Consider
Description: Outsourcing often means access to economies of scale, expertise and vendor leverage not available to the traditional business in the SMB, digital media, games, and SAAS spaces. But, outsourcing to 25 highly qualified individual companies in segmented spaces places too much burden on internal management teams. Moreover, quality control becomes nearly impossible, and focus is taken away from the core business. Using Master Outsourcers adds to the value chain and provides the best TCO for servers, bandwidth, support, colocation, power, and just about any product you'd typically use in a data center. How do you locate a Master Outsourcer? How do you evaluate the ROI math when you find one?
Speaker: Derek Wise, Chief Executive Officer, Global Netoptex, Inc. Derek Wise is president and CEO of Global Netoptex Inc (GNi). Wise's current position is the culmination of over ten years of technical networking, communications and security experience. GNi was founded to meet the need for fast, reliable and, above all, affordable managed IT and networking services. Prior to starting GNi, Wise was responsible for field engineering teams in Europe and Asia for Enron Broadband Services. He has extensive experience in managing new network installations including strategy, design, provisioning, installation and deployment.
Level: Technical - Intermediate |
Network Infrastructure & Outsourcing |
201 |
Title: 2008: The Future of Content Loss Protection
Description: In 2007, security executives were charged with the creation and enforcement of content security policies which met both increasingly strict government standards and the security needs of the organization. For these security programs to be successful in 2008, executives must be able to consistently evaluate their organizations security performance. Technology, people and process are 3 key components of a comprehensive content loss prevention methodology focused on mitigating the risk of sensitive information loss or misuse.
Speaker: Todd Graham, Chief Scientist, RSA, The Security Division of EMC. Todd Graham brings a unique blend of technical knowledge and an understanding of market requirements that allows Tablus to provide powerful solutions to real-world problems. During his tenure at Tablus, Graham has been an integral part in the development of the Tablus content loss prevention platform that enables organizations to locate, monitor and protect sensitive content from loss or misuse. Graham joined Tablus (now RSA Security) through its acquisition of Indigo Security in January, 2005 where he was the founder and chief technology officer. Prior to founding Indigo, he was founder and CEO of Digital-3, a digital audio device platform start-up. Graham is a founding executive board member of Digital Detroit, the largest non-profit high tech group in Michigan and was honored as the Deloitte and Touch Young Entrepreneur of the Year in 2002.
Level: Business |
Tomorrow's Technology Today |
212 |
Title: Stop Document Leaks at the Source
Description: The speaker will explain how to strike a balance between document security and collaboration. New solutions can restrict document access to identified recipients and determine who can do what with a document, including printing and forwarding. Audit controls can track who has viewed a document and when, and if an unauthorized action was attempted. Document access can be revoked instantaneously to previously vetted recipients. And eSignatures and Information Classification round out a sound security strategy.
Speaker: John B. Harris, Manager, Security Alliances, Adobe Systems. John has been involved in the information security industry for over 11 years, focusing on technologies such as multi-factor authentication, biometrics, public key infrastructure and digital signatures. Mr. Harris is currently the Manager for Security Alliances at Adobe Systems, Inc. He joined Adobe in July 2006, and is responsible for managing Adobe’s relationships with companies and organizations that integrate, extend, and complement security aspects of Adobe’s product lines. Prior to joining Adobe, Mr. Harris managed the introduction of a number of landmark biometric and authentication products for both Sony Electronics and Thomson-CSF. Mr. Harris holds an M.A. in International Security Policy from George Washington University, and a B.A. in Political Science from the University of Massachusetts at Amherst.
Level: Technical - Advanced |
Security and Prevention |
209 |
Title: Managing Security in the Clouds
Description: Security in-the-cloud refers to security services that redirect traffic through a third-party in order to clean or stop bad traffic before it reaches its destination. Recognized by Gartner as an emerging criteria for selecting an infrastructure protection solution, in-the-cloud solutions and services introduce a tremendous opportunity to reduce IT time and resource investment by leveraging dozens of security technologies through a more centralized approach. In-the-cloud services are being increasingly embraced as an alternative to maintaining and upgrading traditional hardware and software, and becoming more readily available as network, internet, and application service providers (NSPs, ISPs, and ASPs) have begun to offer bundled security services as an add-on to their monthly subscription packages. Many argue that in-the-cloud service providers serving many clients are best positioned to incorporate best-of-breed technology offerings quickly and less expensively than individual organizations who are held back due to lack of scale, time, resource and budget constraints. However, as with many emerging technologies before it, in-the-cloud offerings introduce a debate on how it fits within the scope of an overall infrastructure security strategy. Does it negate traditional solutions such as anti-virus and IPS? Is it robust enough to adapt to emerging threats? What is the best scenario for a successful deployment?
Speaker: Greg Kopchinskir, Sr. Product Manager, Bivio Networks. Greg Kopchinski is Senior Product Manager at Bivio Networks where he has whole product responsibility for the company's industry-leading DPI network appliance platforms. Greg has a strong background in product management and marketing for embedded computer technologies with several leading companies including Motorola, Force Computers, Captus Networks and Ziatech (acquired by Intel). He has spoken on product and market trends at industry events and has authored several articles that have appeared in various technical publications. Greg is a graduate of Cal Poly, San Luis Obispo with a B.S. degree in Electronic Engineering.
Level: Technical - Intermediate |
Internet - Security |
207 |
Title: The Next Generation of Threats
Description: Targeted threats are on the rise as new vulnerabilities continue to propagate. Evolving threats are less broad then the mass-mailing worms of the past. Newer threats focus on individuals or a specific company combining malware and social engineering to trick the individual through subtle manipulation. This session will discuss the next generation of threats that networks will battle and how they can be protected from these attacks.
Speaker: Mike Paquette, Chief Strategy Officer, Top Layer Networks. Mike Paquette is leading the technology and product direction for the company. He is recognized as a leading security expert and has recently presented at conference such as the 2006 InfoSecurity Conference and the 2007 RSA Conference. Over the years, Mike has presented on security threats such as the 2003 Summer of Worms, the 2004 DDoS-based cyber extortion of online betting sites, and the 2005/2006 rise of the botnets. Mike has more than 22 years of computer networking and security experience with extensive background in the design and development of networking products.
Level: Technical - Intermediate |
Threats and Intrusion Prevention |
206 |
Title: Wireless Threat Management: A Comprehensive Strategy for Protecting Your Business in the New Wireless Frontier
Description: This session will expose how wireless laptop and mobile device insecurities are being exploited and discuss how businesses can implement a Wireless Threat Management strategy to protect corporate networks and data in today's increasingly wireless world. It will introduce how businesses can use actionable intelligence to proactively respond to threats and manage risks in real-time. It will provide insights on the latest insecurities surrounding the new era of mobility and will show how businesses can take effective action to mitigate wireless threats to wired and wireless environments.
Speaker: Nicholas Miller, Chief Executive Officer, AirPatrol Corporation. Nicholas Miller is an innovative career entrepreneur who has founded a number of successful private and publicly traded companies in the software, wireless, and Internet sectors. His wide ranging experience as a high technology executive includes over 25 years of direct P & L responsibility, along with extensive experience in sales, marketing and technology start-ups. Miller was one of the first to identify the security threats posed by wireless technology and coined the phrase "WiPhishing". He is the holder of two US patents related to wireless technology and the Internet.
Level: Basic |
Wireless Security |
204 |
16:00 hrs
to
19:00 hrs |
| |
|
|
|
| Wednesday - January 30, 2008 - Santa Clara Convention Center - 2nd Floor |
| Time |
Title - Speaker |
Track |
Room |
10:00 hrs
to
10:55 hrs |
|
Access & Identity Management |
201 |
Title: Empowering Business Users through Enterprise Mashups
Description: Service-Oriented Architecture (SOA) efforts are typically thought of as a “behind-the-scenes†solution. However, as SOA efforts have matured, enterprises have begun to focus on methods of improving SOA ROI by delivering these services to end user communities via the Enterprise Mashup. Enterprise Mashups are compelling because they enable business users to self-integrate Services from both inside and outside the corporate firewall in flexible, innovative ways, yet stay within the context of a security and governance framework that enterprises require.
Speaker: John Crupi, Chief Technology Officer JackBe, inc. John is the CTO of JackBe Corporation. As CTO he is entrusted with understanding market forces and business drivers to drive JackBe's technical vision and strategy. John Crupi has 20 years experience in OO and enterprise distributed computing. Previously, John spent eight years with Sun Microsystems, serving as a Distinguished Engineer and CTO for Sun's Enterprise Web Services Practice. Mr. Crupi is co-author of the highly popular Core J2EE Patterns book, has written many articles for various magazines and is a well-known speaker around the globe. He is a frequent blogger and was selected to join the International Advisory board for Ajax Developers Journal. John was also named as a member of the Software Development Magazine's Dream Team.
Level: Intermediate |
Applications and Software |
212 |
Title: The Building Blocks of Business Continuity
Description: Business continuity is of increasing concern to businesses today. From small companies up to the largest of enterprises companies must respond to external threats and operational risks, while providing 24x7 continuous application and data availability. For a business continuity solution to be effective, it must be comprehensive. Business continuity requires more than the current tools provided by traditional data protection vendors. Asempra will discuss the new building blocks of business continuity and how companies can extend the benefits of operational resilience to a full range of business functions and processes.
Speaker: Eric Herzog, VP of Marketing and Operations, Asempra Technologies. Eric Herzog is responsible for strategic and product planning activities, product line management, product marketing, and technical marketing for Asempra. His responsibilities also include overseeing all worldwide channel marketing and corporate communications. Herzog has 20 years of marketing and sales experience in the storage software and storage systems hardware markets. He has managed all aspects of marketing and sales in both start-up and large corporate environments. Prior to joining Asempra, Herzog was vice president of product line management for desktop and mobile storage, vice president of worldwide channel marketing, and vice president of corporate communications at Maxtor (recently acquired by Seagate Technology). Prior to Maxtor, Herzog was vice president of marketing and business development for ARIO Data Networks (recently acquired by Xyratex) and vice president, business line management for OEM subsystems and controllers at IBM, where he held P&L responsibility for a business line generating over $200 million in revenue. Herzog has held vice president positions in marketing and sales at Topio (recently acquired by Network Appliance), Zambeel, and Streamlogic. He has also held director positions in marketing and sales at Everex, and Mass Micro Systems. He has been a member of the board of advisors for WISAN and BASILNET, both private technology companies.
Level: Business |
Storage and Networks |
210 |
Title: Shedding Light on Web Application Security Requirements for PCI DSS
Description: The Payment Card Industry (PCI) Data Security Standards (DSS) are a broad set of requirements for protecting payment account data security. The vulnerability management program portions of the PCI DSS are causing confusion among many organizations over the requirements for developing and maintaining secure systems and applications. This talk clarifies the confusion around the vulnerability management program portions of the PCI DSS to help organizations understand the web application requirements.
Speaker: Michael Sutton, Security Evangelist / Engineer for HP Software. Prior to HP Software, Michael was a Security Evangelist for S.P.I. Dynamics, Inc. that was acquired by HP in August 2007. Michael is responsible for educating audiences on the importance of integrating web application security best practices throughout the application development process, and works closely with the HP Software Security Labs team to identify, research and present emerging issues in web application security. He is a frequent speaker at major information security conferences and events, has authored various white papers, and is regularly quoted as an expert resource in the media on various information security topics. Michael is also the co-author of the book titled, "Fuzzing: Brute Force Vulnerability Discovery", published by Addison Wesley Professional the summer of 2007. Prior to SPI Dynamics, Michael was a Director for iDefense/VeriSign where he headed iDefense Labs. Michael also established the Information Systems Assurance and Advisory Services practice for Ernst & Young in Bermuda. Michael has his CISSP and CISA designations and is a member of Information Systems Audit and Control Association (ISACA).
Level:Technical - Business |
Compliance and Standards |
209 |
Title: The Components of a strong Software Anti-Piracy Solution
Description: Software piracy is a costly and rapidly growing problem. Global software revenue losses due to piracy exceeded US$40 billion in 2006 and growing 20% annually. This session will discuss cracking of software & license management, outline all aspects of a solid protection process and show the principles of a state of art protection solution that addresses the weaknesses the crackers take advantage of.
Speaker: Jan Samzelius, CEO - Chief Executive Officer, ByteShield. Jan is one of the founders of ByteShield and has been its full-time leader for three years. He has been CEO of several startups in the past decade. He holds an important patent in the area of text processing and is the co-inventor of several of ByteShield's current patent applications. Jan has worked extensively in marketing, primarily as a consultant. Jan received his MBA from Harvard Business School.
Level: Technical - Basic/Business |
Software |
207 |
Title: The Problem of Information Leaks
Description: As organizations grow and invest in solutions to increase the availability of information, the risk and severity of a data breach increases. To effectively implement a data security solution requires that executives and security officers recognize that protecting data is not an IT requirement, it's a business requirement. This session will prescribe measures to effectively discover, monitor, and correct broken business processes to safeguard confidential information, maintain business continuity, and secure a competitive advantage.
Speaker: David Meizlik, Product Marketing Manager, Websense. David is a seasoned security professional who has successfully managed marketing programs with such vendors as Microsoft, Cisco, and Check Point.
Level: Intermediate |
Integrated Security |
212 |
Title: Unified Communications: A New Frontier for Open Source Solutions
Description: This presentation provides a unique view into how open source developments work and puts into perspective many of the common misconceptions about open source development. Open source telephony has entered a distinctive new phase growing pains of first generation open source solutions have become all too apparent and new open source efforts have come along to replace them. Competition is in full force vying for users of free solutions. Customer expectations have risen sharply. No longer is it just cool to use an open source solution. Open source solutions, as any other mission critical enterprise application, have to measure up to the full gamut of enterprise requirements and customers are willing to pay for it.
Speaker: Martin Steinmann, Vice President of Product Management, Bluesocket, Inc. With more than15 years of experience in the technology industry, Mr. Steinmann brings extensive experience in marketing and strategic planning to his role as Vice President of Product Management. Martin is also a founder and member of the governing board at SIPfoundry, the industry's leading open source community dedicated to VoIP technology and solutions. Previously, Martin was a Venture Partner first with St. Paul Venture Capital and later Vesbridge Parnters, a Boston based venture capital firm specialized in early stage and special situations opportunities in the networking and IT market. Martin has also served as Vice President Marketing for Syndesis Inc.
Level: Technical - Intermediate |
IP & Unified Communications |
204 |
Title: Secure Switching: The Evolution of the LAN
Description: Open ports, no easy way to separate users, no ability to control what users can access, and no knowledge of the endpoint – no wonder the LAN has such a hard time incorporating security. This session will examine the evolution of the LAN to secure switching, how this trend mirrors past sea changes in the LAN, and how you can begin to plan for this migration in your LAN today.
Speaker: Joe Vittorelli, Director of Systems and Infrastructure at Fayetteville State University. Joseph Vittorelli, director of Systems and Infrastructure at Fayetteville State University, has more that 20 years experience in wide variety of Information Technology roles including strategy, architecture and governance. As director, Joseph is responsible for helping define and implement a strategic approach to enterprise technology and providing strategic direction and management for the University's IT infrastructure. Since Joining FSU, Joseph has updated and refreshed the network infrastructure from core to edge to include a new NAC solution to relieve issues caused by student owned computers. Joseph was also instrumental in the development and implementation of a partnership with HP to provide managed print and fax services. Prior to Fayetteville State University Joseph spent 17 years working and leading various systems and infrastructure teams at Ford Motor Credit. Joseph holds a M.S. in Business Information Technology from Walsh College of Business
and Accountancy and is current working on a M.S. in Business Continuity and Emergency Management at Boston University.
Level: Technical - Intermediate |
Network & Infrastructure |
203 |
11:00 hrs
to
11:55 hrs |
Title: Restoring Trust in Your Online Brand
Description: Phishing, fraud and identity theft are issues shared by all financial and ecommerce sites. This session will highlight a unique approach to the problem by discussing a layered, network model of authentication to allow consumers to use one credential across all participating properties. Mr. Rosch will discuss how layering back-end fraud detection engines with customer-facing authentication-based security solutions will not only minimize threats but increase confidence, usage and revenue to a company's brand. This approach increases consumer confidence, drives down deployment costs, and reduces support overhead. A shared, standards-based, network approach to consumer-based authentication means online properties can choose to decrease their costs by leveraging credentials already in the hands of consumers or to promote their brand by providing branded credentials for their user community to use everywhere. We hope audience members will: - Recognize how customer-facing authentication solutions will increase consumer trust in their online brand; - Benefit from a networked approach to fraud detection and user authentication.; - Leverage their brand as one associated with online security; - Evaluate the benefits of different authentication form factors to drive additional usage of their services.
Speaker: Fran Rosch, Vice President, VeriSign Identity Protection Services, VeriSign. Fran Rosch has been part of the VeriSign Security Services organization for the past nine years where he has focused on working with VeriSign’s largest customers to design and deploy effective security solutions to solve identified business challenges. These solutions have incorporated all VeriSign security technologies including two-factor authentication and PKI services, managed firewall and intrusion detection/prevention services and encryption capabilities. In his current position, Mr. Rosch is responsible for business development of VeriSign Security Services and driving key partnerships and relationships related to the deployment of its security technology.
Level: Business |
Access & Identity Management |
201 |
Title: 13 Critical Questions to ask your Software Vendor about Security
Description: Software is prevelant in businesses today and there is currently no checklist or even guidelines for organizations and/or managers to use to assess the commitment to security that software vendors have prior to purchasing software - which often can be in the hundreds of thousands dollars. This talk outlines 13 specific questions that consumer can ask that will extract critical information from software vendors and more importantly, will show how to interpret the information they receive from vendors.
Speaker: Edward Adams, Chief Executive Officer, Security Innovation. Ed Adams is the CEO of Security Innovation, the independent authority on application security risk assessment, risk mitigation and education. He is a seasoned software executive with successful business experience in various-sized organizations that serve the IT security and quality assurance industries. Mr. Adams is the founder of the Application Security Industry Consortium, Inc. (AppSIC), an association of industry technologists and leaders establishing cross-industry application security guidance. Mr. Adams has presented at numerous industry events and has contributed commentary for media outlets such as New England Cable News, CSO Magazine, SC Magazine, CIO Update, Investors Business Daily and CFO Magazine
Level: Technical - Basic |
Applications and Software |
200 |
Title: Storage Grids - The Next Storage Technology Wave
Description: Server virtualization/consolidation, service-oriented architecture (SOA), and never-ending storage growth are driving new data storage requirements far and above the capabilities of traditional storage architectures. To effectively address these requirements, a radical new architecture is needed. Intelligent storage grid systems not only address the needs of a dynamic environment, but create the foundation for a storage infrastructure of the future. This session will introduce the storage grid architecture and associated benefits.
Speaker: Gary Francis, Senior Vice President, Crosswalk. Gary Francis brings more than 30 years of strategic experience in advanced storage architectures to his current position as Senior Vice President with Crosswalk. He spent 27 years at Storage Technology Corporation (StorageTek), where he served as a corporate vice president, general manager, chief strategist, as well as held various management positions within the information systems organization, disk and tape product marketing and corporate strategic planning. Prior to joining Crosswalk, he founded InflectionPoint Strategies, Inc., a management consulting firm specializing in the high technology market with a focus on strategic planning, marketing strategies, business development and management.
Level: Technical - Advanced |
Storage and Networks |
210 |
Title: Regulatory Compliance: What Your Organization Should Know in 2008 and Beyond
Description: Recent years have seen a deluge of regulation - HIPAA, Sarbannes Oxley (SOX), PCI, Gramm-Leach-Bliley (GLBA), to name a few. Addressing these multiple compliance initiatives strains IT resources and can create redundancies in your business processes. This session will discuss how organizations can stay in synch with varied compliance requirements while utilizing new technologies and best practices to effectively satisfy the most pressing issues.
Speaker: Thomas Varghese, President and Chief Technology Officer, Bharosa. An industry veteran with 19 years experience, Thomas was a research scientist (electronics, defense, space) prior to acting as CTO for Silicon Valley companies. Thomas currently serves on numerous corporate advisory boards and is a special advisor to the Japanese government.
Level: Technical - Intermediate |
Compliance and Standards |
209 |
Title: The evolution of mobile advertising and what this mean for your brand: can you afford to be left behind in this growing medium
Description: Mobile advertising is poised for explosive growth in the U.S. according to Diamond Management & Technology Consultants, Inc., who predict the U.S. mobile content and advertising market will generate $13 billion in revenue by 2010. However, the mobile advertising market in the U.S. still lags substantially behind Europe and other regions. U.S. operators are only in the preliminary stages of building the technology framework necessary to capitalize on the potential in this space (however, recently Verizon and Google have both made distinct steps towards realizing the potential of the mobile advertising space). In the next few years companies will need to forge into advertising in the mobile space as they once for online advertising and capitalize on the developments in mobile advertising as a viable medium to increase brand recognition and drive sales.
Speaker: Ms. Stephanie Grossman, Chief Executive Officer, digital SIDEBAR. Stephanie Grossman is the Founder and CEO of digital SIDEBAR a technology-enabled media company with a unique mobile advertising application that links wireless carriers, content providers, marketers and consumers. Prior to founding digital SIDEBAR and working in the mobile advertising space, Stephanie spent 18 years as a leading executive in traditional and digital media, marketing and advertising. She successfully launched and headed divisions for Warner Bros. and Court TV and headed up the media sales division for Scripps Networks television and on-line properties. Ms. Grossman is also a member of the Mobile Marketing Association and various media organizations.
Level: Technical - Basic |
Mobile Advertising |
207 |
Title: Unified Communications: Leverage the Power of the Internet
Description: This session will discuss how the new forms of technology and media types often bring the added complexity of another independent application silo another platform for IT to manage and another password and desktop application for the end user. We only need to look at the complexity of today's business card filled to the brim with an office number, mobile number, e-mail, IM address, Skype address, and more to understand there's a problem. What we call today the "e-mail address" will become a unified address or identity, unlocking the true power of Internet Communications. By integrating multiple media types (voice, video, scheduling, e-mail, IM/presence) into a single account, delivered with Web 2.0 technology, users will become more productive and mobile. When users want to download a song, set up a videoconference, read the latest RSS feed, or chat with a colleague overseas, they don't need to shuffle identities or switch from one application to another. These open & existing systems on the Internet bring true mobility and portability, where one address can find and follow users no matter where they are, regardless of the network or access device.
Speaker: Jon Doyle, VP of Business Development, CommuniGate Systems. Jon Doyle has a long history working with mobile and broadband providers in the Internet Communications segment. As vice president of business development at CommuniGate Systems, he currently focuses on developing strategic partnerships and expanding office locations worldwide. Prior to joining CommuniGate Systems, Jon was director of strategic alliances at Sendmail, where he managed product development and marketing programs with strategic partners including HP and Intel. Jon brings extensive industry experience in Linux-based solutions, having served as the director of operations and services at SuSE Linux Inc. (now Novell), as well as an executive consultant at Compaq's Corporate Strategy office.
Level: Technical - Intermediate |
IP and Unified Communications |
206 |
Title: Ensuring Secure Remote Management of Distributed Satellite-based Networks
Description: Satellite communications represent a cost effective and reliable means of transporting voice, video and data to and from remote locations. However, as the adoption of satellite-based communication networks continues to grow, so do the management challenges for IT and operational staff. Attendees of this session will get an overview of these challenges and the resolution of how new out-of-band technology can provide secure remote monitoring and management of both hybrid satellite and terrestrial networks. In addition, attendees will hear about real-word applications and the results being realized from such deployments. The single greatest challenge to providing high service levels at truly remote locations is the lack of onsite IT support staff to monitor, troubleshoot and fix network-related problems. If a problem does occur or if maintenance has to be performed, a technician is usually dispatched via car or plane a costly, time-consuming and sometimes dangerous proposition. Existing network monitoring and management tools fall short on meeting support challenges because they only work in-band, or when the network is up, and lack the automated capabilities to correct problems without manual intervention. As we enter 2008, this session will introduce how next-generation out-of-band management technology is helping to lower the costs and complexities of managing wired and wireless networks at remote locations.
Speaker: Mark Piening, VP of Marketing, Uplogix. Mr. Piening brings a broad range of marketing and business development experience from leading technology companies. Most recently, Mr. Piening served as Senior Director for Symantec where he led the Global Partner and SMB Marketing teams. Prior to Symantec, Mr. Piening directed the Dell Global Alliance for VERITAS Software. His other marketing, sales, and business development leadership roles include Series A, pre-IPO, small cap and large public companies like Dell, DIGEX (now Verizon), and Ernst and Young. Mr. Piening is a former CPA with an MBA in Marketing and Entrepreneurship from UNC Kenan-Flagler and a BA in Economics/Business from UCLA.
Level: Business |
Network Infrastructure |
212 |
Title: How to Avoid Virtualization Gotchas
Description: Find out how: Hardware resources can be consolidated onto fewer servers; IT organizations can scale server resources; IT staff resources can be deployed more efficiently; Legacy applications can be redeployed to virtual machines, extending application life and increasing performance; Improve security because the operating system never communicates directly with the host.
Speaker: Ed Harnish, Vice President, Acronis, Inc. Ed Harnish is responsible for worldwide growth of both the consumer and corporate markets in advanced, scalable storage management and disaster recovery software. Acronis helps enterprises and consumers alike safeguard their electronic information and assures the availability, security, integrity and recoverability of their infrastructures. As a key member of the executive team, Ed oversees corporate strategy and marketing activities, including multimedia and web site management, and product marketing. Ed has spent more than 20 years leading the growth of IT-centric software companies and as a result has a keen eye for business issues, trends and opportunities in the industry today. Prior to Acronis, he led marketing efforts for Imceda, the makers of LightSpeed which was sold in May of 2005 to Quest software. He has also held similar positions with Banyan, Switchboard, RAScom, and Aptus Technologies. Ed is a sought after speaker at industry events and conferences including Microsoft's TechEd, IDC's Virtualization Summit, Server Blade Summit, Data Protection Summit, AFCOM and Storage Management World. In addition Ed has written a number of articles for industry trade magazines including PCWeek, Infoworld and the View.
Level: Technical - Basic |
IP & Unified Communications |
204 |
Title: How to enable wireless email and instant messaging with a cross-platform approach
Description: Mobile email and instant messaging hold many clear benefits for modern enterprises: convenience, efficiency, and it's an exceptionally effective way for workers to stay connected on an always-on basis. However, a critical requirement for deploying an effective enterprise mobile email/IM solution is to take a fully integrated, cross-platform approach. This session will explore this approach including the importance of interoperability, of supporting heterogeneous environments, and the significance of an "always available" architecture. This session is relevant because it will explore: - The importance of interoperability through a common design approach for quality assurance and removing the burden from IT of ensuring the software works together - How by supporting heterogeneous environments, companies are able to choose the right technologies for their business requirements, rather than being locked into a single device, platform or vendor - The significance of a unique "always available" architecture enables users to access email/IM, data and applications on frontline systems and devices anytime, regardless of whether or not they have a live connection to enterprise systems
Speaker: Senthil Krishnapillai, Director, Product Management, Sybase iAnywhere. Senthil Krishnapillai is director of product management at Sybase iAnywhere. Krishnapillai's mobile communications group, part of the Information Anywhere suite, is responsible for the designing and bringing future generation of Mobile collaboration products to the market. Krishnapillai is experienced in managing enterprise products for worldwide markets and has successfully developed and marketed innovative products for mobility market. He has more than 15 years experience in product management, product marketing and product development for mobile devices and smartphones with Sybase and Extended Systems and was the founder of Rand Software, a synchronization software company. Krishnapillai is a member of various consortiums including OMA-DS, CTIA.
Level: Technical - Basic |
Email and Messaging |
207 |
Title: Open Source Best Management Practices
Description: Open source projects have had a strong hand in advances in recent network management technology. In this session, Thomas will discuss open source network monitoring innovations and highlight ways in which their functionality is often even better than that of their proprietary counterparts. He will focus on ways to best utilize this technology and the very fine line you have to walk to "right size" your monitoring system (too much data and you're flooded, too little and you miss important information).
Speaker: Craig Thomas, Chief Technology Officer and Chief Architect, GroundWork Open Source. Craig brings over 20 years of experience with software engineering and architecture of enterprise-scale business-critical systems to GroundWork. He has been responsible at many successful startups for the overall product technical direction, leadership, and architecture as well as contributing as a hands-on developer. Most recently, he was the CTO of Steelwedge Software, an innovator in the emerging field of Enterprise Planning and Performance Management (EPPM). Before Steelwedge, Craig was the CTO and Co-Founder of OneRelease Venture Engineering (acquired by Manugistics). Craig has also held Director of Engineering positions with ProBusiness Services, Inc., Premenos, and at Sybase.
Level: Technical - Intermediate |
Network & Infrastructure |
203 |
12:00 noon
to
13:00 hrs |
INDUSTRY PANELS |
Theater |
13:00 hrs
to
14:00 hrs |
INDUSTRY PANELS |
Theater |
14:00 hrs
to
14:55 hrs |
Title: Why Storage is Going Green
Description: Green storage is primed to be the most hyped trend in data storage for 2008. Nearly every vendor will claim lowered power and cooling expenses through more efficient uses of technology. However many are overlooking a key issue and taking only a one-dimensional power-consumption view and ignoring a critical component of what corporate data centers require most: efficiency. Storage system efficiency encompasses much more than lowered power and cooling costs. Physical space limitation in data centers around the world has inexorably, and in most cases unexpectedly, emerged as one of the most perplexing challenges facing IT professionals today.
Speaker: Russ Kennedy, Senior Director of Marketing & Strategy, Pillar Data Systems. Russ Kennedy joined Pillar Data Systems in April 2006. As Senior Director of Marketing and Strategy, Kennedy is responsible for addressing critical customer issues pertaining to primary storage, data protection and compliance. Prior to joining Pillar Data, Kennedy spent 19 years at StorageTek and six months at Sun Microsystems after Sun acquired StorageTek. He was the Chief Technology Officer for the Information Lifecycle Management Solutions (ILMS) Business Unit in Sun,s Data Management Group (DMG). In that position, Kennedy was responsible for the strategy and technical direction for the ILM portfolio of solutions aimed to help customers address their storage and compliance challenges. Prior to that role, Kennedy was the director of Software Product Management for StorageTek's Information Lifecycle Management Solutions group. He was responsible for product management; product marketing and strategic direction for software solutions that help StorageTek customers implement an ILM practice. During his career at StorageTek, Kennedy had a number of roles around software including development and customer support. Prior to moving into the ILMS business unit, he led the StorageTek Software Development organization and was responsible for delivering many world class software solutions, including StorageTek's flagship VSM product. Kennedy joined StorageTek in 1987. He has more than 20 years experience in the storage industry. He has a bachelor's degree in Computer Science from Colorado State University and an MBA from the University of Colorado at Denver. Kennedy lives in Boulder, Colo., with his wife and three sons.
Level: Business |
Storage and Networks |
212 |
Title: Leveraging IT Operations for Scalable Security Incident Management
Description: As regulatory compliance and auditing requirements continue to tax existing resources and business processes, companies are increasingly looking to IT operations to support burdens of security incident management. Knowledge, procedures and automation are proving to be effective tools to leverage IT operations and reduce the burdens on IT security, including dangerous periods of downtime and exposure. Leading governance and service management frameworks, such as ITIL and CobiT provide guidance for easing the security burden. This presentation will help explain that determining how to align IT goals with overall business goals must be addressed before creating processes to help ease the security burden and handle incidents independently. In addition, it will highlight the significant benefits to the convergence of security and operations, most importantly utilizing existing resources to their fullest capacity.
Speaker: Bob Tesh, Senior Manager, Product Marketing, NetIQ Corporation. Bob Tesh has more than 20 years experience in the computer software, industrial automation and telecommunications industries. As Senior Manager of Product Marketing, Bob is responsible for determining product direction and strategy of NetIQ's security solutions, through understanding of customer requirements. Prior to NetIQ, Bob held management positions at Vieo, Inc., BindView and BMC Software. Bob earned his bachelors degree from North Carolina State University in Industrial Engineering and graduated with honors. Bob also earned an MBA from Xavier University.
Level:Technical - Intermediate |
Compliance and Threats |
210 |
Title: Putting Trust into the Network: Securing Your Network through Trusted Access Control
Description: Client network connection requests are granted or denied based on the client's ability to prove credentials, including passwords and certificates. This approach ignores the possibility that the client contains malicious code (e.g. viruses, Trojans, malware) that spreads through the network once connected. The Trusted Network Connect approach provides a method to ascertain end-point integrity for clients seeking connectivity to a network. Through trusted network connection protocols and trusted platform mechanisms, platforms can be authenticated before being given full network connectivity. This presentation will address the Trusted Network Connect architecture, similar efforts and the role of the widely deployed Trusted Platform Module in TNC. It also will address updates to TNC including Platform Trust Services and platform integrity assurance.
Speaker: Steve Hanna, Distinguished Engineer, Juniper Networks/Trusted Computing Group. Steve Hanna is a Distinguished Engineer in the Unified Access Control team at Juniper Networks. As co-chair of the Trusted Network Connect subgroup within the Trusted Computing Group, Hanna has a deep and broad understanding of Network Access Control technology. He is also active in other networking and security standards groups such as IETF and OASIS. He is the author of several IETF RFCs and published papers, an inventor or co-inventor on 27 issued U.S. patents, and a regular speaker at industry events such as Interop and the RSA Conference. Hanna holds an A.B. in Computer Science from Harvard University.
Level: Technical - Intermediate |
Security and Prevention |
209 |
Title: Security Convergence: Bridging Physical and IT Security
Description: As security concerns continue to increase for the average organization each day, the public hears more horror stories about data breaches, unauthorized entries and the theft of intellectual property many are now looking at the long-hyped idea of security system convergence as a way to increase overall security. Physical and logical security convergence means different things to different people but now that it has moved from a concept to a reality and more organizations are implementing this solution, it is critical to understand what consumers are investing in. Access control systems in the IT and physical worlds have had little in common technologically, so integrating them was a costly and complex proposition. However, demand for converged security systems is growing and these kinds of solutions can now produce real value. This session will: Explain convergence, its true definition and outline the impact it has on the security market; Discuss the technologies, personnel and process/policy issues that are currently being examined as organizations converge their traditionally-siloed physical and IT security systems under one umbrella; Address the benefits it provides and what the future of IT and physical security will bring.
Speaker: David Ting, Chief Technology Officer and Founder, Imprivata, Inc. Named one of InfoWorld's Top 25 CTO's of 2006 and an active member of the Open Security Exchange (OSE), David has more than 20 years experience in developing advanced imaging software and systems for high security, high-availability systems. Prior to founding Imprivata, he developed biometric applications for government programs and web-based applications for secure document exchange. David was formerly the technical manager of Kodak's Boston Technology Center, a systems development group for Eastman Kodak. Prior to that position, he managed Atex Systems Imaging Department, where he was responsible for the first full color output system used in the newspaper industry.
Level: Business |
| | | | |
