CONFERENCE SESSIONS (2-Day Conference Pass Includes: Conference Sessions, Keynotes, Vendor Presentations, Lunch, Reception and 12 CPE Credits) March 26, 2008 March 27, 2008

Metasploit for Penetration Testers (It's not just for hackers anymore) Megan Restuccia, VP, Morgan Stanley Lead, Follow or Get Out of the Way! Dennis Treece, Director of Corporate Security, Massachusetts Port Authority Using Information as Evidence – an Audience Participation “who done it” Anne Oribello, Sr. Information Security Analyst, Genzyme Corporation Should Companies Be Anti-Social Towards Social Software David Sherry, VP, Enterprise Identity & Access Management, Citizens Bank Group The Challenges of Anti-Forensics Technology in IT Investigations Brian Gawne, Managing Director, Computer Forensics & IT Investigations The Best (or Worst) Stories Of Information Security Michael Corby, M Corby & Associates The Forgotten Component in Compliance: Records Management Kerry Anderson, VP, Technology Risk, FBC Information Security Understanding the Commonwealth's Cybercrime Initiative Thomas Ralph, Chief, Cybercrime Division, Office of Attorney General, Commonwealth of Massachusetts Anne Yas, Assistant Attorney General Cybercrime Division, Commonwealth of Massachusetts Complying with Data Breach Notification Laws:  Lessons from the Healthcare Industry David Szabo, Attorney Healthcare & Information, Issue Specialist Nutter, McClennen & Fish, LLP Meeting Compliance Objectives: Save a Seat for Security Dan Jones, IT Security Manager, UMASS Medical School Virtualization: The End of Network Security As We Know It Christofer Hoff, Chief Architect, Security Innovation, Unisys Corporation Current Trends in Electronic Crimes Vincent Crossman, Special Agent, US Secret Service

The Process to Achieve Business Alignment with Security David Meunier, Former VP--CISO, Cuna Mutual Group Cyber Jihad – The Virtual Hand of Terrorism Jeff Bardin, Director, Risk Management, EMC Law, Compliance and Security: The Lawyer as a Security Professional Jennings Aske, CISO, Office of Health and Human Services Commonwealth of Massachusetts Case Study: Verizon's Security Architecture and Management Needs and Direction David Dumas, Director Network Security, Verizon Panel-Today’s Trends in Security Awareness Terri Curran, Director, Corporate Information, Security Services, Bose Corporation Incident handling- All Hands on Deck Ian Burke, Data Security, Administrator, St Joseph Hospital Forensics in Fifteen Minutes David J. Bowie, Sr. Security Analyst, Information Technology Services Probabilistic Complex Event Processing John T. Langton, Senior Scientist, Charles River Analytics Towards Natural Laws of Security Tim MalcomVetter, Information Security Strategy, Hallmark Cyber Intrusion- Finding the Holes Jim Burrell, Supervisory Special Agent, FBI Open Season  Join your peers and colleagues in a Socratic discussion as you discuss the pro’s  and  con’s, highlights and dilemmas of each session in this interactive forum. Preparing for Identity Management Thomas Peltier, Security Sage Preparing your organization for E-Discovery Brian Gawne, Managing Director, Computer Forensics & IT Investigations Trojan 2.0, the Paradigm has Shifted, Looking to the Web as a Virus Source, not Email Christopher Duffy, CISSP, CIO, Peirce College Disk Encryption: Approaches, Products and Pitfalls David Escalante, Director of Computer Policy & Security, Boston College

      March 26, 2008

8:00AM      STEERING COUNCIL KICKOFF BREAKFAST   (Invitation only) Are you Ready? An In-Depth Discussion on Data Breach Readiness Christopher Barker Vice President, Text 100 Jim Maloney Former VP & Global Head of Security Amazon.com

    March 27, 2008

12:00PM ISSA MEMBER LUNCHEON New England Chapters  (Invitation only)	Hosted By:
Tom Gemmell, Director, Enterprise Privacy Solution Strategy, Microsoft

OPEN VENDOR SESSIONS
(Complementary Vendor Presentations and Industry Panels)

Training  March 26, 2008 March 27, 2008 8:00AM Securing Your Infrastructure (Part 1) 3:00PM Securing Your Infrastructure (Part 2) 8:30AM Securing Your Infrastructure (Part 3)

Theater March 26, 2008 March 27, 2008 8:30AM Optimizing Your Desktop Infrastructure Speaker: Chris Winn, Strategic Security Advisor 11:30AM Virtualization from the Data Center to the Desktop Speaker: Mike Reilly, Technology Architect 3:00PM Server Infrastructure Optimization Speaker: Mike Reilly, Technology Architect 8:30AM Remote Infrastructure Optimization Speaker: Tom Gillum, Security Solution Specialist 11:15AM Identity and Access Solutions Speaker: Mark Perry, Technology Solution Professional 2:30PM  Protecting Data with a Rights Management Solution Speaker: Mark Perry, Technology Solution Professional

Industry Expert Panels

March 26, 2008 1:15PM-2:00PM Network Security – Leveraging NAC and IPS  The End Point’s Worst Enemy – The User PCI Compliance – It’s Good Information Security Fundamentals

March 27, 2008  1:00PM-1:45PM Virtualization and Thin Client Applications Data Protection - It’s All About the Data ID Management

Presentation Theater March 26, 2008 March 27, 2008 11:30am Virtualization and Enterprise Security George Gerchow, Strategist, Configuresoft 3:00pm War Of The Airwaves: Next-Generation Risks & Defenses - What Hackers Know That You Don't -AirDefense 8:30AM Web Security Urban Legends John Carmichael, Security Trainer, Security Innovation 11:15AM Five Reasons your Company Needs NAC -ForeScout

Nexum Boulevard

CONFERENCE RECEPTION  - 3:00PM Please Join Us For The Opportunity To Relax & Network With Peers, Speakers And Exhibitors. Enjoy Complimentary Beer, Wine & Appetizers! Hosted by: