CONFERENCE SESSIONS Earn 12 CPE Credits Includes Two Day Conference Pass: Conference Sessions, Keynotes, Vendor Presentations and Lunch September 30, 2008 October 1, 2008 Implementing a Common Risk Management Framework: Certification & Accreditation Transformation Roger Caslow, DNI CIO, Program Manager, C&A Transformation The Cyberwarefare Era Geoffrey Turner, Senior Analyst, Forrester Information Security in a Health Care Environment Walter Padworski, Information Security & Privacy Specialist, Albert Einstein Health Care Network Who is Really Accountable for Information Security? Michael J. Corby, Consulting Director, M Corby & Associates, Inc The Challenges of Anti-Forensics Technology IT Investigations Brian Gawne, Forensics Investigator, GMAC Financial Information Assurance Enterprise Architecture Framework: A Function Based Approach Gary Elliott, Certifications Project Management Institute, National Security Agency   Communication 101: Just Having the Right Message is Not All You Need Ron Collette, Mike Gentille, Co-Founders & Senior Editors CISOHandbook.com The Process to Achieve Buisness Alignment with Security David Meunier, Former VP/CISO, CUNA Mutual Playing Your Cards Right: A Guide to PCI DSS Compliance Timathy M. Virtue, Former Information Security Analyst, SunTrust Bank Panel Discussion: Compliance Management Versus Risk Management: Can We be Compliant and Yet Insecure? William Sieglein, Founder & Executive Director, CSO Breakfast Club Panelists: Don Horn, CSO, CareFirst Dan Galik, CISO, Department of Health and Human Services Lisa Schlosser, CIO of Department of Housing and Urban Development John Bird, CSO, Chevy Chase Bank Panel Discussion: Is I/T Security a Technical or Management Function? Michael J. Corby, Consulting Director, M Corby & Associates, Inc Panelists: Scott W. Tousley, Cyber Security Programs, MITRE Edmund Lucke, Program Manager, Northrop Grumman Mission Systems Stephen Dill, Chief Architect, Cyber Security Solution Family, Lockheed Martin Forensics Today and Tomorrow Ovie Carroll, Director, CyberCrime Lab, Department of Justice Contractor Responsibilities under the Federal Information Security Management Act (FISMA) Peter Adler, Attorney at Law, Partner, Pepper Hamilton LLP The Smoke and Morrors of Virtualization Security Peter Lindstrom, Research Director, Spire Security Initiating Dialogue with Law Enforcement for the Cyber Security Practitioner Michael Levin, CSO, United Communications Group Learn How to Write Policies in One Session Thomas R. Peltier, Security Sage Prepairing Your Organization for E-Discovery Brian Gawne, Forensics Investigator, GMAC Financial Playing Your Cards Right: A Guide to PCI DSS Compliance Timothy M. Virtue, Former Information Security Analyst, SunTrust Bank A CompTIA Analysis of IT Security and the Workforce U.S. Results Earle Humphreys, Director Security Trustmark Program, Comp TIA Defenseless Defense Against Corporate Breaches Sanjay Bavisi, President, EC-Council Panel Discussion: Security Leadership-The Evolution from Securing Technology to Securing Information David Meunier, Former VP/CISO, CUNA Mutual Panelists: Ed Lucke, Program Manager, Northrop Grumman Panel Discussion: Information Assurance Governance Gary Elliott, Certifications Project Management Institute, National Security Agency Panelists: Daniel J. Ryan, J.D., Professor, Information Assurance, National Defense University William Vic Maconachy, Ph.D., Former Director, National INFOSEC Education & Training Program, National Security Agency Ron Ross, Ph.D., Senior Computer Scientist, Information Assurance/Security, National Institute of Standards and Technology Marc Noble, Principal, Information Assurance, Mitre Corporation, Former CISO FCC  Panel Discussion: The Financial Impact of Cyber Risk–50 Questions Every CFO Should Ask Michael Castagna, CISO, Department of Commerce Panelists: Ty Sagalow, Legal Counsel, Compliance Officer, AIG Insurance Larry Clinton, Internet Security Alliance

OPEN VENDOR SESSIONS
(Complementary Vendor Presentations and Industry Panels)

Industry Expert Panels

Network Security–Leveraging NAC and IPS Moderated by: Brian Gawne, Forensics Investigator, GMAC Financial	Virtualization and Thin Client Applications Moderated by: Pete Lindstrom, Research Director, Spire Security
The End Point’s Worst Enemy – The User  Moderated by: Walter Padworski, Information Security & Privacy Specialist, Albert Einstein Health Care Network	Data Protection - It’s All About the Data Moderated by: David Meunier, Former VP/CISO CUNA Mutual
PCI Compliance–It’s Good Information Security Fundamentals Moderated by: Tim M. Virtue, Former Information Security Analyst, SunTrust Bank

Presentation Theater

September 30, 2008

October 1, 2008

CompTIA's Security Trustmark Overview Comp TIA
Virtualization and Enterprise Security Configuresoft	Security Made Smarter:  A New Approach to Anti-Malware as Cybercrime Goes Mainstream Trend Micro
War Of The Airwaves: Next-Generation Risks & Defenses - What Hackers Know That You Don't AirDefense