IEEE OC CyberSecurity Technical Talk - May 16, 2018 : vTools Events

IEEE.org | IEEE Xplore Digital Library | IEEE Standards | IEEE Spectrum | More Sites

IEEE OC CyberSecurity Technical Talk - May 16, 2018

#Cloud #app #security #audit

PLEASE REGISTER EARLY.

The room capacity is 50. Most of our sessions continue to fill up!

Secure Cloud Apps Before Mayhem Strikes

The power of the cloud to deliver robust apps cost-effectively is undeniable, but don't forget to do your security due diligence. Specific cloud apps can pose a higher risk to your organization than on-premise web applications behind the corporate firewall. Understanding third-party cloud app security hype is critical in uncovering limitations on identity management, account provisioning, data security, access control, account privileges, data exportability/sharing, user monitoring, and auditing. Evaluating capabilities against leading practices, testing security features, and performing user account auditing are all critical elements of a well-rounded cloud app security audit. Knowing how to conduct a comprehensive and efficient security audit of third-party cloud apps is an essential part of a risk management program.

OBJECTIVE # 1

At the end of this session, participants will be able to perform a high-level security review on third-party cloud apps by assessing the processes and procedures used for managing the cloud solution and by collecting responses to security checklists.

OBJECTIVE # 2

At the end of this session, participants will be able to describe how to test security features of cloud apps to include restrictions based on IP address and user groups, monitor login attempts from untrusted networks, and evaluating data exportability and sharing features.

OBJECTIVE # 3

At the end of this session, participants will be able to perform user account auditing in cloud apps and determine how to validate non-compliance issues such as active accounts for users that no longer work at the organization.

Date and Time

Location

Hosts

Registration

Date: 16 May 2018
Time: 06:30 PM to 08:30 PM
All times are (GMT-08:00) US/Pacific
Add Event to Calendar
iCal
Google Calendar

32 Discovery
Suite 250
Irvine, California
United States 92618
Building: Webster Irvine Campus
Click here for Map

Contact Event Host
Arie Shen

Arie.Shen.US@ieee.org

Gora Datta

goradatta@ieee.org
Co-sponsored by Webster Irvine

Starts 22 April 2018 12:00 PM
Ends 16 May 2018 03:00 PM
All times are (GMT-08:00) US/Pacific
No Admission Charge

Speakers

Dustin Fritz of Troncore Security / www.troncore.com

Topic:

Secure Cloud Apps Before Mayhem Strikes

Biography:

Infosec practitioner and one of the first U.S. military cyber defense and attack team members. His career began with U.S. military in digital network analysis and cyber defense and attack. He held positions in cyber weapons development and testing, NSA cyber operations, and CDC threat hunting.

More recently he held CISO level potions advising senior leadership teams on cybersecurity.

Dustin volunteers his time teaching graduate students, sitting on academic advisory councils, and developing educational programs and industry certifications for some of the nation's best institutions.

Dustin's published in the National Cybersecurity Institute Journal, IEEE Newsletter, CompTIA Certification Guide, and a contributor to NIST publication.

He holds a Master in Cybersecurity, Chief Information Security Officer Certification from Carnegie Mellon University and maintains many infosec related certifications.

Email:

Address:United States