monthly meeting october 24, 2018 - issa central md › wp-content › uploads ›...
TRANSCRIPT
Monthly Meeting
October 24, 2018
Central Maryland Chapter Sponsors:
Cybrary, Inc., Zscaler, Clearswift, LogRhythm, Parsons Cyber,
Phoenix TS, Tenable Network Security
Agenda / Announcements
➢Welcome to UMBC Training Center
➢Any guests or new members in attendance?
➢(ISC)2 CPE Submissions – Individual Responsibility
➢CISSP Chapter Badges / Shirts and Jackets with ISSA-Central MD Logo
➢CISSP & Study Group
➢Future Meeting schedule
Central Maryland Chapter Sponsors:
Cybrary, Inc., Zscaler, Clearswift, LogRhythm, Parsons Cyber,
Phoenix TS, Tenable Network Security
Please respect the speakers and other members,
Silence or turn off cell phones and electronic devices,
No video or audio recordings.
Questions are welcome; please keep them on-topic and brief. Further discussion should be taken off-line with the presenters so as to allow them the courtesy of being able to finish their presentations within the
allotted time without being rushed.
Sidebar discussions should be constrained. If you must discuss something, allow your fellow members (and the presenter) the courtesy
of doing so outside or on break.
Central Maryland Chapter Sponsors:
Cybrary, Inc., Zscaler, Clearswift, LogRhythm, Parsons Cyber,
Phoenix TS, Tenable Network Security
Board of Directors❖ Bill Smith, Jr., CISSP, GSNA, CEH, GPEN, GCFA, GCFE -
President
❖ Sidney Spunt, CISSP - VP Operations
❖ Zac Lechner, CISSP, CEH, MBA – Secretary
❖ Carol Klessig, CISSP - VP Professional Development
❖ Chuck Dickert, CISSP, CISA, CISM, CAPM – VP Education
❖ Jack Holleran, CISSP, CAP, (ISC)2 Fellow– Treasurer
❖ Steve Chan, CISSP, PMP – VP Membership
❖ Rob Reintges,CISSP - VP Outreach
Central Maryland Chapter Sponsors:
Cybrary, Inc., Zscaler, Clearswift, LogRhythm, Parsons Cyber,
Phoenix TS, Tenable Network Security
Central Maryland Chapter Sponsors
Platinum Sponsor
Central Maryland Chapter Sponsors:
Cybrary, Inc., Zscaler, Clearswift, LogRhythm, Parsons Cyber,
Phoenix TS, Tenable Network Security
Zscaler services enable customers to move securely to a modern cloud architecture.
The Zscaler cloud connects users to applications, regardless of where users connect
or where the applications are hosted, while providing comprehensive security and a
fast user experience.
Zscaler offers two service suites that eliminate the cost and complexity of gateway
appliances. Zscaler Internet Access securely connects users to internet and SaaS
applications, scanning every byte of traffic to protect against cyber threats and data
leakage. Zscaler Private Access provides fast access to internal applications hosted in
the data center or public clouds—without the need for a VPN.
Central Maryland Chapter Sponsors:
Cybrary, Inc., Zscaler, Clearswift, LogRhythm, Parsons Cyber,
Phoenix TS, Tenable Network Security
New Members Since September Meeting
Troy Gladhill
Christian Holleran
Andre Hudson
Michelle Lapuente
Johnathan Ryan
Delilah Yerby
Total Chapter Membership: 242
Central Maryland Chapter Sponsors:
Cybrary, Inc., Zscaler, Clearswift, LogRhythm, Parsons Cyber,
Phoenix TS, Tenable Network Security
Officer Elections
November 2018
President
VP Education
VP Outreach
VP Membership
Election Committee:Renee Esposito: [email protected]
Central Maryland Chapter Sponsors:
Cybrary, Inc., Zscaler, Clearswift, LogRhythm, Parsons Cyber,
Phoenix TS, Tenable Network Security
ISSA Member Benefitshttps://www.issa.org/page/SpecialOffers
ISSA Members May Join Peerlyst for Free*
Peerlyst is a unique product-centric social network for Enterprise Information Security pros making it easy to find
unbiased peer-based product reviews and information, and to benefit from their peers firsthand experience with
solutions.
Peerlyst uses state-of-the-art information extraction algorithms that scour the Web for product information and
generate comprehensive product pages called PeerPages™. InfoSec pros use PeerPages to discover and
compare products, rate or comment on product features, "Follow” a product to get ongoing updates, "Contact
Vendor” for more information, or "Peer” other InfoSec pros using the products to get their insights.
* Peerlyst offers different access based on employment and roles within an organization. Security products and
services vendors will need to contact Peerlyst at [email protected] to receive a different log on as they are
tagged as a vendor and are unable to review products or to directly contact Peerlyst members without the
member’s consent. Please contact Peerlyst for complete details and restrictions.
The discounts on this page have not been subjected to any testing by the Information System Security Association (ISSA). These offers are made by third parties and not endorsed by
ISSA. Members should thoroughly review the details, privacy policies, and information provided by these vendors prior to selection or implementation.
Central Maryland Chapter Sponsors:
Cybrary, Inc., Zscaler, Clearswift, LogRhythm, Parsons Cyber,
Phoenix TS, Tenable Network Security
Spring 2019 CISSP Study Group
Start: January 8, 2019
End: April 16, 2019
Review and Practice Exam
14 Sessions Total
Central Maryland Chapter Sponsors:
Cybrary, Inc., Zscaler, Clearswift, LogRhythm, Parsons Cyber,
Phoenix TS, Tenable Network Security
*** Virtual Capture The Flag for High School ***
Central Maryland Chapter Sponsors:
Cybrary, Inc., Zscaler, Clearswift, LogRhythm, Parsons Cyber,
Phoenix TS, Tenable Network Security
This Photo by Unknown Author is licensed under CC BY-
NC-ND
November 28th Meeting Location
Westridge Corporate Center6996 Columbia Gateway Drive, Suite 100Columbia, MD 21046Phone: 443-692-6600
Central Maryland Chapter Sponsors:
Cybrary, Inc., Zscaler, Clearswift, LogRhythm, Parsons Cyber,
Phoenix TS, Tenable Network Security
This Photo by Unknown Author is licensed under CC BY-
NC-ND
New Meeting Location
• Columbia/Ft. Meade Area
• Seat 75 people
• HVAC until 7:30
• AV Equipped
• Internet
• Kitchen
Central Maryland Chapter Sponsors:
Cybrary, Inc., Zscaler, Clearswift, LogRhythm, Parsons Cyber,
Phoenix TS, Tenable Network Security
Update on Fees for Chapter Meetings
• Members will NOT be charged at this time. Board will revisit after the new year
• One possible option is refunding members who pre-register and attend or pre-register / cancel ahead of deadline
• Will begin charging guests at November meeting per structure outlined below
Fees:
$15 for guests until 5 pm the day before meeting
$20 for guests paying at the door (exact cash or credit card)
Rules
No charges for speakers and their guests
Sponsor benefits of the Chapter will be updated to provide TBD number of free passes
Refunds available up to 5pm the day before
Central Maryland Chapter Sponsors:
Cybrary, Inc., Zscaler, Clearswift, LogRhythm, Parsons Cyber,
Phoenix TS, Tenable Network Security
ISSA 2017-2018 Meetings and Events
Date Speaker Organization Topic
October 24, 2018 Greg Schwartzkopf Fortinet The devil is in the details:
Nuanced conversations
about cybersecurity
November 28, 2018 Stan Lowe Zscaler, CISO
Central Maryland Chapter Sponsors:
Cybrary, Inc., Zscaler, Clearswift, LogRhythm, Parsons Cyber,
Phoenix TS, Tenable Network Security
November 28, 2018 Speaker
Stan Lowe,
Global Chief Information Security Officer, ZscalerStan Lowe, a cybersecurity and technology executive, has successfully led transformational change in large,
complex environments, as well as small and mid-size cybersecurity and IT organizations. As Zscaler Global Chief
Information Security Officer, Stan oversees the security of the Zscaler enterprise and works with the product and
operations groups to ensure that Zscaler products and services are secure. Part of his focus is to work with
customers to help them fully utilize Zscaler services and realize the maximum return on their investment.
Prior to joining Zscaler, Stan served as the VP & Global Chief Information Security Officer for PerkinElmer, where
he was responsible for global enterprise security and privacy. He has also been a Cyber Security Principal at Booz
Allen Hamilton. Stan has extensive federal experience, serving as the U.S. Department of Veterans Affairs (VA)
Deputy Assistant Secretary for Information Security, Chief Information Security Officer, and Deputy Chief Privacy
Officer, as well as Deputy Director of the Department of Defense/VA Interagency Program Office. Before joining the
VA, Stan served as Chief Information Officer of the Federal Trade Commission. Stan’s public service record
extends to the U.S. Department of Interior in the Bureau, the U.S. Postal Service Inspector General, and the U.S.
Navy.
Central Maryland Chapter Sponsors:
Cybrary, Inc., Zscaler, Clearswift, LogRhythm, Parsons Cyber,
Phoenix TS, Tenable Network Security
November 28, 2018
No Network Needed?!?!
It seems every day, we are bombarded with news of yet another breach and our
personal information being traded and sold on the dark web/Internet. We lose
sleep wondering if we have the right controls and policies in place to prevent our
companies and our names from appearing in the next morning’s headlines. Is it
time for a different approach? What if we could get rid of our network so we no
longer had to define complex boundaries and policies? Is it really possible to
architect a system that removes all the traditional ingress and egress points? If
we resign ourselves to the fact that it’s not IF but WHEN our network gets
breached….then why do we still have a network?
Central Maryland Chapter Sponsors:
Cybrary, Inc., Zscaler, Clearswift, LogRhythm, Parsons Cyber,
Phoenix TS, Tenable Network Security
October 24, 2018 Speaker
Greg Schwartzkopf,
Fortinet
Greg Schwartzkopf is a Sr. Systems Engineering Director at Fortinet, Inc.
with 22 years active in cybersecurity. As a reformed hacker, serial tinkerer,
and technology lover, his insights on the cybersecurity world are anchored in
being a part of it since it’s inception. His vast experience on the ground
shows in his no-nonsense advice on practical ways security professionals
everywhere can increase their knowledge, understanding and security
posture in today’s complex business world.
Central Maryland Chapter Sponsors:
Cybrary, Inc., Zscaler, Clearswift, LogRhythm, Parsons Cyber,
Phoenix TS, Tenable Network Security
October 24, 2018
The devil is in the details: Nuanced conversations about cybersecurity
As security professionals each day we get inundated with news,
buzzwords, product pitches, analyst summaries and a constant reminder
by everyone around us that the sky is falling. Most of what is repeated to
us over and over, however, is completely irrelevant to actually providing
security to our customers. Join me for an interactive conversation about
what’s pragmatic in this sensational world, how we can have more
nuanced conversations about security— and most important, why not to
be afraid of “I don’t know.”
Central Maryland Chapter Sponsors:
Cybrary, Inc., Zscaler, Clearswift, LogRhythm, Parsons Cyber,
Phoenix TS, Tenable Network Security