Information Security and Risk Management Conference Track
Warning: include(../includes/track-chairs/john-pironti.php) [function.include]: failed to open stream: No such file or directory in /export/srv/cmp/content/apache2/interop.com/htdocs/newyork/2011/conference/information-security-and-risk-management.php on line 51
Warning: include() [function.include]: Failed opening '../includes/track-chairs/john-pironti.php' for inclusion (include_path='.:/usr/share/pear:/usr/share/php') in /export/srv/cmp/content/apache2/interop.com/htdocs/newyork/2011/conference/information-security-and-risk-management.php on line 51
The scales of information security have tipped in favor of the adversaries. Given the recent outbreak of high profile attacks, compromises, and data breaches, organizations can no longer operate under the illusion that their current approach to information security and risk management is working. The adversary community has quickly evolved and matured their attack methods and techniques to integrate innovative capabilities such as social concepts, business process knowledge, cloud computing, and multi-faceted functionality. They are also becoming more protective of their knowledge and capabilities and no longer freely advertise them in the name of research or status achievement which has greatly hindered the defenders’ ability to understand and stay ahead of them. Now is the time for defenders to fundamentally and dramatically change their approach from information security and risk management to information risk management and security. They must first understand their appetite for risk at the business level and then build their security capabilities to satisfy this appetite. They must also not assume that technology focused solutions and compliance related activities are good enough to protect their information infrastructure and data. The adversary community has thrown down the gauntlet and now it is the defenders turn to respond. The Interop New York 2011 information security and risk management will bring together some of the industry’s best and brightest thought leaders and will focus on identifying the existing and emerging challenges as well as the concepts, technologies, and industry leading practices that can be utilized to not only meet them but also tip the scales back in favor of the defenders.
| Wednesday, October 5 | |
|---|---|
10:30 AM – 11:20 AM | |
11:30 AM – 12:30 PM Location: Room 1E07 Email encryption is commonly used by organizations to send sensitive information via email. In this session, we’ll explore different email encryption technologies and discuss the pros and cons of each option. We’ll discuss implementation, cost, and end user experience for PGP, S/MIME, TLS and Web based email encryption technologies. Speaker - Aseem Asthana, Group Product Manager, Barracuda Networks Aseem directs product management for Barracuda Networks' messaging products including the Barracuda Spam & Virus Firewall and Barracuda Message Archiver. In addition, he is responsible for centralized management initiatives at Barracuda Networks. Before joining the company, Aseem had product management and engineering positions at Symantec. | |
11:30 AM – 12:30 PM Location: Room 1E16 Virtualization impacts every major compliance standard and requires fundamental changes to security practices. What should this mean to you? This session will discuss what gaps are introduced in the move from physical to virtual where compliance is concerned, and prescribe specific steps to ensure compliance for production deployments. Regulatory areas discussed will include FISMA, DIACAP, PCI, HIPAA and SOX/GLBA. IT will also discuss how to build a framework for securing virtual data centers and private clouds, and how to take physical security constructs like Zones and propagate them to the virtual infrastructure to enable consistent security across the entire data center, virtual and physical. You will also learn about various hypervisor security architectures coupled with VM Introspection and automation can deliver dynamic, granular insights into security. Moderator - Michael Dortch, Research Director, FOCUS  Michael Dortch is a Research Director at FOCUS LLC (www.focusonsystems.com), covering the dynamics linking virtualization to data center modernization and public, private and hybrid cloud computing for business. He is also Principal Analyst and Managing Editor at DortchOnIT.com and a Vice President and Principal Analyst at Constellation Research (www.constellationrg.com). DortchOnIT.com is "an independent voice for technology-dependent people" and consults with providers of disruptive business technologies. Constellation Research is a leading research analyst and advisory firm guiding organizations and their leaders through the hype and buzz of the latest disruptive technologies. One of the "Top 500 Analysts Using Twitter" according to independent metrics, Michael has been empowering information technology (IT) buyers, sellers and users since 1979, by translating what technologists say and do into language that non-technologists can understand and use. He blogs regularly and is quoted widely on subjects ranging from cloud computing and software as a service to technology solutions for small and mid-sized businesses (SMBs). As Director of Research at Focus.com, Michael helped to grow that site into a community of more than 850,000 people including some 5,000 Focus Experts, and a Top 10 Media Web Site according to Crain's "B2B Magazine." He has also been a senior analyst at Aberdeen Group, Robert Frances Group (RFG), and Yankee Group. In 1990, Michael wrote "The ABCs of Local-Area Networks," a book published internationally in three languages by Sybex, Inc. Panelist - Tamar Newberger, VP, Marketing, Catbird Tamar Newberger is the VP of Marketing at Catbird. Ms. Newberger has over 20 years of experience in technology development, systems engineering and marketing, including UNIX development as a Member of Technical Staff at AT&T Bell Laboratories and UNIX Systems Laboratories (USL), where he led the definition of SVR4.2 MP, the award-winning source code product which is at the heart of current mainstream UNIX. Ms. Newberger also worked at Novell in product planning for next-generation technologies and as the Director of Product Management at SCO. She holds MS and BA degrees in Computer Science from Columbia University in New York. Panelist - Dennis Moreau, Senior Technologist, RSA  Dennis Moreau is specialist in the application of leading edge technologies to the solution of complex problems in the Information Systems and Utility Computing management domains. His primary focus is in developing enterprise scale solutions to improve IT efficiency and effectiveness for service, systems, security, compliance and configuration management/optimization. He works actively with the National Institute of Standards and Technology (NIST), the U.S. Department of Defense (DoD) and the Mitre Corporation on the development of security configuration policy compliance standards and serves on the Advisory Board for the Open Vulnerability and Assessment Language (OVAL), a key component of the Security Content Automation Program (SCAP).Dr. Moreau has over than 35 years of experience in evaluating, designing, and implementing complex systems and their management and security infrastructures. Prior to joining RSA’s CTO Office, he was a founder and the Chief Technology Officer for Configuresoft. He was also the Associate Vice President for IT and Chief Technology Officer for Baylor College of Medicine (BCM). He holds a doctorate in Computer Science and has held faculty positions in Computational Medicine and Computer Science (tenured in 1993). Dr. Moreau speaks regularly at IT management and security conferences worldwide. Panelist - Renata Budko, Founder & VP of Product Strategy, HyTrust, Inc.  Renata Budko is the Co-Founder of HyTrust, as well as Vice President of Product Strategy. She leads the company’s innovation and strategy efforts applying her deep understanding of virtualization technology and enterprise IT processes to this role. Budko brings 15 years of experience in high tech, primarily in strategy and product management. Prior to HyTrust, she was Director of Product Management for Cemaphore Systems, responsible for the Microsoft Exchange disaster recovery and email archiving enterprise software product lines. Prior to this, she held Solutions Marketing and Technical Marketing management roles at VMware, helping define the blade, disaster recovery and VMware VDI strategies. She was also instrumental in VMware collaboration efforts between Intel VT and EMC. She previously held key marketing management roles at StarVox Communications, Hewlett-Packard, and Infra Telesystems, which she co-founded. Budko holds MBA and Master of Computer Engineering degrees from UC Davis, CA and BS in Physics from MIPT, Moscow. Ms. Budko has been a speaker at VMworld, HPWorld and EMC World events as well many regional and on-line events. | |
2:00 PM – 3:00 PM Location: Room 1E07 Information Security data is widely available. How do you locate it, assess it, analyze it, mine it and create a plan to use it? Learn about one team’s approach to applying the OODA Loop (Observe, Orient, Decide, Act) to reputable security data sources to bring greater context to critical information security decisions. Explore tactical approaches to implementing short-term effective responses (firewall rules, IPS signatures) and providing operational situation awareness. Discuss strategic options for budgeting, creating new controls and providing executive situational awareness. Speaker - Colonel (ret.) Barry Hensley, Executive Director, Dell SecureWorks  Colonel (ret.) Barry Hensley, VP of Dell SecureWorks’ Counter Threat Unit (CTU) research organization. The CTU is a team of top security experts who identify and analyze emerging cyber threats while developing rapid countermeasures in support of Dell SecureWorks’ 3,000 clients. Hensley was formerly Director of the Army’s Global Network Operations and Security Center (AGNOSC). While at AGNOSC, Hensley was responsible for directing the operations and defense of the Army’s portion of the Global Information Grid (GIG) consisting of over 1.2 million users. The AGNOSC integrates key cyber functions spanning operations, intelligence, resource management and strategic planning for the Army while leading the Department of Defense (DoD) in many critical network security initiatives. | |
3:15 PM – 4:15 PM Location: Room 1E07 This session will discuss the lessons IT managers and security officers can learn from the WikiLeaks scandal and the actionable steps they can take to help detect, deter, and prevent insider threats and security breaches. The discussion will include technology that maps directly to organizational policies, managing information security controls and real-world examples. Speaker - Jim Ricotta, CEO, Verdasys  Jim Ricotta is President and Chief Executive Officer at Verdasys, responsible for overall leadership of the company, including development and execution of its strategy and business plan. Jim is a seasoned CEO, entrepreneur, F500 General Manager, and board member with over 25 years of experience in various IT domains including enterprise security, middleware, application-layer networking, CDNs, mobile software platforms, and digital media. Previously, Jim has held the CEO and President positions at Azuki Systems, DataPower Technology, and SightPath, Inc. He has also been a Vice President and Business Unit General Manager at IBM and Cisco Systems. Jim has built management teams, brought products to market, acquired marquee customers and enjoys a long track record of growth within his positions. He has successfully built and sold companies in emerging markets to Cisco and IBM for $800M and $100M respectively. Jim holds a BS in Electrical Engineering from Cornell and an MBA from Harvard. | |
| Thursday, October 6 | |
10:30 AM – 11:20 AM Location: Room 1E07 Security is an important concern of cloud implementations- and with good reason. Hackers and other online criminals invented cloud computing years ago by harvesting our machines, creating huge networks to steal private information. The speaker will explain how to stay a step ahead of the bad guys by learning best practices in cloud security. Solutions to the security problem include deploying a line of defense at the virtual machine itself, using bi-directional firewalls on individual virtual machines, and leveraging virtualization-aware malware protection. Speaker - Dave Asprey, VP of Cloud Security, Trend Micro  Dave Asprey brings more than 15 years experience to his position of Vice President of Cloud Security at Trend Micro. In this role, Mr. Asprey helps to shape the company’s cloud strategy, focusing specifically on expanding a Cloud Security Alliance partner ecosystem; participating in cloud security organizations; and cultivating Trend Micro partnerships with cloud security vendors. | |
10:30 AM – 12:30 PM Location: Room 1E10 This detailed two-hour session will examine the key management and operational issues involved in successful mobile operations. Each presenter will discuss key best practices, learned over many years of experience, and help put any organization on the path to mobile success. We’ll cover, in depth, vital issues related to managing a mobile workforce and ensuring security and integrity, and also explore the very important emerging field of mobile device management – all in an interactive, cross-disciplinary setting. Moderator - Craig Mathias, Principal, Farpoint Group  Craig J. Mathias is a Principal with Farpoint Group, a wireless and mobile advisory firm based in Ashland, MA. Founded in 1991, the company works with manufacturers, network operators, enterprises, and the financial community in technology assessment and analysis, strategy development, product specification and design, product marketing, program management, education and training, and the integration of emerging technologies into new and existing business operations, across a broad range of markets and applications. Craig is an internationally-recognized expert on wireless communications and mobile computing technologies, and has published numerous technical and overview articles on a wide variety of topics. He is a well-known and often-quoted industry analyst and frequent speaker at industry conferences and events, as well as Webcasts, Webinars, and podcasts. He is currently a member of the Advisory Board for the INTEROP conferences (Las Vegas and New York) and is the Chair of the Wireless and Mobility track. He serves as a monthly columnist for InformationWeek.com and the Enterprise Mobility Foundation (theemf.org), and ardent blogger (“Nearpoints”) for networkworld.com. Craig holds an Sc.B. degree in Applied Mathematics/Computer Science from Brown University. Panelist - Lisa Phifer, President, Core Competence  Lisa has been involved in the design, implementation, and evaluation of networking, security, and management products for over 25 years. Since joining Core Competence in 1995, she has advised companies large and small regarding security needs, product assessment, and the use of emerging technologies and best practices. Lisa teaches about wireless LANs, mobile security, and virtual private networking, and has written extensively for numerous publications, including Wi-Fi Planet, Information Security, and SearchMobileComputing. Lisa's columns are published monthly by eSecurityPlanet, searchNetworking, and the AirWISE Community Security Center. Lisa holds an MS, Computer Science from Villanova University, and a BS in Computer Science from West Chester University. Panelist - Philippe Winthrop, Managing Director, The Enterprise Mobility Foundation  Philippe Winthrop is the Founder and Managing Director of The Enterprise Mobility Foundation, the organization behind The Enterprise Mobility Forum, the fastest growing content portal and social network exclusively dedicated to enterprise mobility. Philippe has spent his entire career researching emerging technologies and their impact on the corporate value chain. Philippe started his career at GeoPartners research, a boutique strategy consultancy, where he worked on projects including AT&T Wireless’ adoption and migration path to GSM from TDMA as well as the impact of the 1996 Telecom Deregulation Act on Competitive Local Exchange Carriers (CLECs). After GeoPartners, Philippe joined IDC's European IT Services Research group where he spearheaded a wide variety of research and consulting projects for the Top 50 IT Services companies in Western Europe. After IDC, Philippe created Axle Ventures, a boutique business planning consultancy focused on SMEs. There, Philippe worked with a wide variety of organizations in eCommerce, Healthcare and IT to help them develop winning go to market strategies. Philippe also launched the Wireless and Mobility research practice at market research firm Aberdeen Group. There, he conducted ground-breaking research to quantify the tangible value of key mobile and wireless technologies, including enterprise mobility strategy adoption, Fixed Mobile Convergence, enterprise WiFi adoption, application deployment on WLANs and more. Philippe recently ended his analyst career after a successful tenure at Strategy Analytics where he spearheaded thought leadership on enterprise mobility management and the growing issues around individual and corporate liable devices. | |
11:30 AM – 12:30 PM Location: Room 1E12 Cloud computing offers tremendous opportunities and return-on-investment; however, you need to approach this carefully, leveraging industry models in conjunction with good governance practices.The presentation describes the key part of the NIST (National Institute of Standards for Technology) cloud computing frameworks in conjunction with other enterprise architecture and modeling approaches for cloud computing.Industry standards for cloud computing will be discussed and what many international governance, standards and frameworks organizations are exploring in cloud computing.This includes: models, taxonomies, standards, business cases, governance, estimation, security, privacy and policies. Speaker - Steven Woodward, President and CEO, Cloud Perspectives Steven Woodward is a member of the National Institute of Standards for Technology (NIST) working groups for cloud computing. He is an active contributing member to the TM (Telecommunication Management) Forum cloud community. Woodward Systems is a founding company of the Ottawa Centre for Research and Innovation (OCRI) Cloud Computing Community. Steven is a board of director for the ISO/ IEC 20926:2009 International Function Point Users Group standard. Steven is a world-wide instructor and consultant for over 18 years, with a focus around governance, estimation, requirements clarification and risk management. Speaker - Fred Bartkiewicz, Partner, CyberRiskPartners, LLC | |
11:30 AM – 12:30 PM Location: Room 1E07 Having an optimized security strategy is an organizational necessity in today’s world of insider, industrialized, and advanced, targeted threats, let alone constant pressures to embrace new trends in IT such as mobility, web 2.0, and the cloud. Disjointed solutions have created complexity, increased costs, and kept security teams locked in firefighting, tactical roles instead of becoming more proactive, strategic, and aligned with business priorities. It’s time to re-think how we approach security. It’s time to stop repeating the same mistakes decade after decade. It’s time to break on through to the other side; optimized security strategies are tenable today. Attendees will be able to define requirements for an optimized security strategy within their own organizations, recognize key areas for ROI and ROSI improvement, and translate these areas into tangible points understandable by business leaders. Speaker - Brian Contos, Director Global Security Strategy, McAfee  Brian is a recognized security expert with almost two decades of experience. He is a published author, sought-after public speaker and writer for the industry and business press. He advices governments and Forbes Global 2000s, and helped build several successful security companies. Contos was formerly chief security strategist at Imperva, chief security officer at ArcSight, and director of engineering at Riptech. In addition, he has held security positions at Bell Laboratories, Tandem Computers, and DISA. Brian is a Ponemon Institute Distinguished Fellow and graduate of the University of Arizona. | |
2:00 PM – 3:00 PM Location: Room 1E07 Somewhere along the way information security become about buying the next great piece of technology to solve the problem or fill the box in the auditors checklist. Unfortunately this approach has yielded only nominal results to date and the challenges of information security and risk management are far surpassing any of the technology or compliance requirements we have today to solve them. Instead of moving the pieces of the puzzle around the board in a desperate effort to combat the technical and regulatory threats of today we should instead be trying to solve the puzzle to effectively and adequately address the information risks of both today and tomorrow. This discussion will discuss five key activities an organization can perform to truly enhance their information security and risk management capabilities prior to making the next purchase of the technology that they think will solve the problem by may ultimately become the problem. Speaker - John Pironti, President, IP Architects, LLC  John P. Pironti is the President of IP Architects, LLC. He has designed and implemented enterprise wide electronic business solutions, information security and risk management strategy and programs, enterprise resiliency capabilities, and threat and vulnerability management solutions for key customers in a range of industries, including financial services, insurance, energy, government, hospitality, aerospace, healthcare, pharmaceuticals, media and entertainment, and information technology on a global scale. Mr. Pironti has a number of industry certifications including Certified in the Governance of Enterprise IT (CGEIT), Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), Certified Information Systems Security Professional (CISSP), Certified in Risk and Information System Control (CRISC), Information Systems Security Architecture Professional and (ISSAP) and Information Systems Security Management Professional (ISSMP). Mr. Pironti frequently provides briefings and acts as a trusted advisor to senior leaders of numerous organizations on information security and risk management and compliance topics and is also a member of a number of technical advisory boards for technology and services firms. He is also a published author and writer, highly quoted and often interviewed by global media, and an award winning frequent speaker on electronic business and information security and risk management topics at domestic and international industry conferences. | |
3:15 PM – 4:15 PM Location: Room 1E07 Application security has evolved far beyond the old days of “allow” or “deny” at the firewall. The rapidly changing nature of applications has made enforcing network security extremely challenging for organizations looking to stay ahead of the latest threats. Traditional firewalls and stand-alone network security solutions cannot detect many of today’s most popular applications, creating dangerous gaps in network security strategies. This session will provide examples of how attackers are taking advantage of the latest applications to hide malicious content, and the range of options offered by network security vendors that organizations can use to detect and block these threats. Speaker - Patrick Bedwell, VP of Product Marketing, Fortinet  Patrick Bedwell has 14 years experience in the network security and network management industries. He is the Vice President of Product Marketing at Fortinet and is responsible for executing the marketing strategy for Fortinet's network security products. Prior to joining Fortinet, Patrick held product marketing and product management leadership positions at Arcot Systems, McAfee, SecurityFocus, Network ICE and Network General. Patrick earned an MBA with honors from Santa Clara University and a BA degree in English from the University of California, Berkeley. | |
| Friday, October 7 | |
9:00 AM – 10:00 AM Location: Room 1E07 This lively and fast paced presentation will examine the most recent developments in hacker tools, exploits, trends, legislation, and cyber-crime news. Live demos for some of the newest tools will be given. The session aims to educate the participates with knowledge about the current state-of-the-art in IT security, to better equip the participant to defend against newer threats, identify new resources for auditing IT systems, and plan for coming trends and legislation. Speaker - David Rhoades, Senior Consultant, Maven Security Consulting, Inc. David Rhoades is a senior consultant with Maven Security Consulting Inc. (www.mavensecurity.com). David's expertise includes web application security, network security architectures, and vulnerability assessments. Past customers have included domestic and international companies in various industries, as well as various US government agencies. David has been active in information security consulting since 1996, when he began his career with the computer security and telephony fraud group at Bell Communications Research (Bellcore). David has a Bachelor of Science degree in Computer Engineering from the Pennsylvania State University (psu.edu). | |
10:15 AM – 11:15 AM  Location: Room 1E07 Advanced malware, zero-day and targeted APT attacks aggressively evade signature-based defenses and compromise the majority of today’s networks. The primary mission for any organization dealing with advanced malware is integrating defenses to block known malware, stop outbound data exfiltration attempts, and detect zero-day, targeted attacks. Ashar Aziz will give five guiding principles for integrated, next-generation threat protection. What knowledge will the attendee gain or benefit from attending this session?
Speaker - Stuart Staniford, Chief Scientist, FireEye  As chief scientist, Staniford is responsible for fundamental research and core technology design at FireEye. He brings over two decades of experience as both a researcher and practitioner in computer intrusion detection. He has written a number of pioneering research papers and served as president of Invicta Consulting, principal scientist at Nevis Networks, and founder of Silicon Defense, a network intrusion detection company. Staniford holds a Ph.D. in Physics and a M.S. in Computer Science & Physics from the University of California, Davis and a B.S. in Mathematical Physics from the University of Sussex, UK. | |
11:30 AM – 12:30 PM Location: Room 1E07 Changing business requirements, frequent audits and legacy rule sets make it increasingly difficult to define and maintain a secure and efficient network security policy. According to Gartner, 95 percent of firewall breaches are caused by firewall misconfigurations, not firewall flaws. This session will share insights, case studies and technologies that help organizations more effectively manage the security policy Attendees will be provided with real-world use cases and experience with firewall policy management, providing insight into:
Speaker - Andrew Kalat, Sales Engineering Manager, AlgoSec  Kalat has been working with firewalls and security since 1997. As sales engineering manager at AlgoSec, Kalat is responsible for demonstrating firewall policy management to prospective customers using production firewalls. Previous to AlgoSec, Kalat was director of sales engineering at Damballa, where he worked to develop, demonstrate and sell a bot detection product. Prior to Damballa, Kalat worked as a security engineering manager at Check Point, where he was responsible for managing a team of sales engineers assisting customers in their purchase and use of Check Point firewalls. Kalat was global infrastructure manager and operations engineer at Internet Security Systems, where he was responsible for the global networking, security and firewalls for the ISS corporate network. He began his career at Netrex as an engineer, where he helped run one of the first Check Point Managed Service Providers. Kalat has previously spoken at Checkpoint Experience, ISSA, Interzone and regional security summits. | |
Information Security and Risk Management Workshops
Get in-depth Information Security and Risk Management education in full day workshops on Monday and Tuesday before the conference.
| Tuesday, October 4 | |
|---|---|
9:00 AM – 4:30 PM Location: Room 1E16 This full day workshop focuses on improving your skills with security tools so you can better evaluate, penetrate and improve your networks security. Designed for IT professionals who need more than just talk about tools, this hands-on experience helps you fully grasp the tools and their uses. This workshop utilizes Offensive Security’s BackTrack VM version so you’ll learn and practice using the same tools and techniques that nefarious hackers are using against your network. You’ll learn an organized process to analyze and attack your network including specific tools for each step. You’ll get time to practice each tool on real targets so you really understand the process and tools. Hands on knowledge of tools for evaluating, penetrating and improving your security are the take homes from this class. Attendees connect wirelessly to our array of virtual computers containing a cornucopia of OS’s for real time practice which helps you understand fully the tools you’re learning. You’ll hear it, see it, read it then do it; this is the ultimate learning experience for those who really want to know the material. We’ll provide the Backtrack VM image (or bring your own), all the targets, an electronic workbook and even prizes for the best info gatherers in the session. All you need to bring is a computer with VMplayer (free) loaded and a desire to learn how to use the latest security tools. Attendees will be able to:
Goals:
Who should attend: Networking professional who want a hands-on class about the latest security tools. Security professionals who want more training on Backtrack. Attendee Requirements: All attendees MUST have:
Instructor - Brad Smith, Director, Computer Institute of the Rockies  Brad started working with computers in 1972, was featured in 1995 HIMSS - | |
Information Security and Risk Management Free Programs
All Interop attendees can choose from a full calendar of free programs, Wednesday through Thursday, including the following covering Information Security and Risk Management:
| Thursday, October 6 | |
|---|---|
1:00 PM – 1:45 PM Location: Free Session Room 2, Booth 261  Increased worker mobility means more devices with sensitive data are being used outside the office and the explosion of cloud-based applications and cost-cutting consumerization are fueling this trend. This session will explore the five overlooked risks of increasing mobility: exposing information on social networks, displaying sensitive data in public, malware on unmanaged devices and more. Speaker - Dr. Hugh Thompson, Chief Security Strategist, People Security | |
2:00 PM – 2:45 PM Location: Free Session Room 1, Booth 461  Bullet proof Wireless LAN security is not a pipe dream. By applying a layered security approach through mechanisms including Authentication, Encryption, Firewalls, and IDS/IPS, wireless networks can be assuredly secured. This session will demonstrate how a layered approach can deliver a security that exceeds that of most all wired networks today. Speaker - Perry Correll, Director, Product Marketing, Xirrus  Perry Correll is a Senior Technologist as well as the Director of Product Marketing at Xirrus. His extensive networking background extends from original Ethernet Thicknet technology, through the switching revolution and now is involved in pushing advancements in Wi-Fi technology to displace wired solutions. Previous roles included technologist and management roles at Cabletron, Xylan and Alcatel. | |
Information Security and Risk Management Exhibitors
All Interop attendees can meet exhibitors showcasing the full range of IT innovations including the latest in Information Security and Risk Management:
Click on a column header to re-sort the exhibitor list:
( | 3 | A | B | C | D | E | F | G | H | I | M | N | P | R | S | T | V | W | X| Company | Booth |
|---|---|
(ISC)2 (ISC)? is the largest not-for-profit membership body of certified information security professionals worldwide, with over 72,000 members in more than 135 countries. Globally recognized as the Gold Standard, (ISC)? issues the CISSPŇ and related concentrations, CSSLP, CAP, and SSCP credentials to qualifying candidates. Address Website Social Networks Products/Services Offered
Products
Companies Served
|
843 |
| 3M A recognized leader in research and development, 3M produces thousands of innovative products for dozens of diverse markets. 3M’s core strength is applying its more than 40 distinct technology platforms – often in combination – to a wide array of customer needs. Address Website Products/Services Offered
Products
Companies Served
|
124 |
| Afore Solutions AFORE is a leading provider of cloud security and networking software solutions. Our unique blend of the CloudLink™ network, storage and application security solutions and InterPort™ networking software enable enterprises, service providers and ICT vendors to accelerate innovation and deployment of advanced Cloud and networking applications. Address Website Products/Services Offered
Products
Companies Served
|
423A |
APCON, Inc. APCON develops technology solutions to enhance network monitoring, support traffic analysis, and streamline network management and security. The company offers state-of-the-art aggregation, filtering and switching products. Customers include Global Fortune 500 companies, banks and financial institutions, telecommunication service providers, government and military organizations, and network equipment manufacturers. Address Website Social Networks Products/Services Offered
Products
Companies Served
|
527 |
AppRiver AppRiver is a Software-as-a-Service (SaaS) provider offering easy, effective and affordable email and Web security solutions to businesses of all sizes. All AppRiver services are backed by Phenomenal Care, US-based customer support available 24 hours a day, every day. For more information, please visit www.appriver.com. Address Website Products/Services Offered
Products
Companies Served
|
505 |
| ArcSight, an HP Company ArcSight, an HP company, provides cybersecurity and compliance solutions. Based on the market-leading SIEM offering, the ArcSight Enterprise Threat and Risk Management (ETRM) platform enables organizations worldwide to safeguard digital assets, comply with corporate and regulatory policy and control the risks associated with cybercrime. For more information, visit www.arcsight.com. Address Website Products/Services Offered
Products
Companies Served
|
737 |
Bleum Ranked one of the world’s top 100 outsourcing providers, Bleum’s client list includes global top 50 hedge funds, Fortune 100 retailers and industry leaders in manufacturing, software development and non-profit. Bleum prides itself on delivering defect-free, mission-critical applications through development centers that become an integral extension of our clients’ organizations. Address Website Products/Services Offered
Companies Served
|
731 |
CenturyLink Business CenturyLink™ is the third largest telecommunications company in the United States. The company provides data, voice and managed services to business, government and wholesale customers in local, national and select international markets through its high-quality advanced fiber optic network and multiple data centers. Visit www.centurylink.com/business Address Website Products/Services Offered
Companies Served
|
823 |
| Cervalis Cervalis is a premier provider of IT infrastructure solutions including business continuity / rapid recovery, managed hosting, enterprise cloud computing, managed security, managed storage, networking & telecommunications and co-location. Address Website Social Networks Products/Services Offered
Products
Companies Served
|
810 |
Cisco Cisco is the leader in networking that transforms how people connect, communicate, and collaborate. Cisco has led in the innovation of IP-based networking technologies, including routing, switching, security, TelePresence, unified communications, video, and wireless. The company’s responsible business practices help ensure accountability, business sustainability, and environmentally conscious operations and products. Address Website Products/Services Offered
Companies Served
|
121 |
| Comodo Group Comodo is a leading brand in Internet security. Comodo provides businesses and consumers with security and trust services, including digital certificates, PCI scanning, desktop security and remote PC support. Comodo provides easy deployment and full API support, a five-star partner program including Web Host, Private Label, Reseller and Affiliates. Address Website Products/Services Offered
Products
Companies Served
|
736 |
| Configuration Management, Inc. (CMI) Configuration Management, Inc. (CMI) is a leading provider of technology services and Enterprise Change Management, Software Configuration® Management, Release Management and Software Quality Assurance & Testing Services. Our standards-based framework helps organizations manage change across all digital assets including software code, software packages, web content, hardware, and documentation. Address Website Social Networks Products/Services Offered
Products
Companies Served
|
822 |
Dell Dell listens to customers and delivers innovative technology and services they trust and value. We offer a broad range of product categories including desktop systems, servers and networking products, mobility products, software and peripherals and enhanced services. Please visit www.dell.com to learn more. Address Website Products/Services Offered
Products
Companies Served
|
229 329 |
Emulex Emulex (NYSE:ELX) is the leader in converged networking solutions for the data center. Emulex provides a single framework that intelligently connects every server, network and storage device within the data center. Emulex's portfolio of controller chips, adapters, blades and connectivity solutions are trusted by the world's largest IT environments. www.emulex.com Address Website Social Networks Products/Services Offered
Products
Companies Served
|
242 |
ESET North America ESET is a global leader in antivirus and Internet security software. Our business solutions offer proactive, fast and effective server-to-endpoint protection for Windows, Mac and Linux platforms from viruses, hackers, spam and cyber threats. Managed from a single console, ESET award-winning security products are light and easy-to-manage for today’s networks. Address Website Social Networks Products/Services Offered
Products
Companies Served
|
636 |
| Esprida Corporation Esprida is an industry leader in remote management software for self-service, providing a Software as a Service (SaaS) product line that automates and simplifies the management of end point connected devices. Our solution provides comprehensive device management through real-time monitoring, automated content distribution, detailed reports and multi-tiered security Address Website Products/Services Offered
Products
Companies Served
|
423C |
| Exar Exar Corporation delivers highly differentiated silicon, software and subsystem solutions for industrial, networking and storage applications. For over 40 years, Exar’s comprehensive knowledge of end-user markets along with the underlying analog, mixed signal and digital technology has enabled innovative solutions that meet the needs of the evolving connected world. Address Website Social Networks Products/Services Offered
Products
Companies Served
|
348 |
F5 Networks F5 Networks, Inc., the global leader in Application Delivery Networking (ADN), helps the world’s largest enterprises and service providers realize the full value of virtualization, cloud computing, and on-demand IT. Address Website Products/Services Offered
Products
Companies Served
|
ER160 |
| Geist Manufacturing Geist specializes in 15-120 Amp PDUs, with 1000+ standard units including monitored, switched, environmental and IP based products. Geist also offers rapid response production of custom PDUs. From in-house chassis production to an on-site UL testing lab, Geist's cohesive abilities result in the lowest lead times in the PDU industry. Address Website Social Networks Products/Services Offered
Products
Companies Served
|
454 |
Gigamon Gigamon provide intelligent visibility into enterprise, data center and cloud-based networks, delivering the appropriate network traffic to the right network tools without impacting production traffic. GigaVUE® family of products eliminate SPAN port contentions, provide “any” to “any” connectivity, and enhance your network monitoring and security tools with unmatched visibility. www.gigamon.com Address Website Social Networks Products/Services Offered
Companies Served
|
134 |
| Horizon DataSys Corporation Horizon DataSys specializes in Instant PC recovery solutions for all market segments. We deliver products that provide a full 360-degree workstation recovery and PC protection utilities that save organizations money with massive productivity gains. From PC Virtualization to Public Access PC environments - we have a solution for everyone. Address Website Social Networks Products/Services Offered
Products
Companies Served
|
724 |
HP As a world-leading information technology company, HP applies new thinking and ideas to create more simple, valuable and trusted experiences with technology. Our focus is to continuously improve the way our customers live and work through technology products and services. More information can be found at www.hp.com Address Website Products/Services Offered
Companies Served
|
319 2D07 2D08 |
Huawei Technologies (USA) Huawei is a leading global ICT solutions provider. Through our dedication to customer-centric innovation and strong partnerships, we have established end-to-end advantages in networks, devices and cloud computing. We are committed to creating maximum value for operators, enterprises and consumers by providing competitive solutions and services. For information, visit www.huawei.com/enterprise. Address Website Products/Services Offered
Companies Served
|
517 |
| I Think Security Ltd. I Think Security is a Data Protection company that focuses on providing state-of-the-art, bulletproof IT security solutions. Our products are easy to deploy, technology agnostic and supported by sophisticated analytics and controls. Our activities include a unique way of providing Data Protection, Cloud Security, Mobile Security and Secure Communications. Address Website Social Networks Products/Services Offered
Products
Companies Served
|
423E |
| Intelligent Computer Solutions, Inc. (ICS) ICS provides hard drive duplication and sanitization products to the Computer Hardware Manufacturers, large IT Organizations, and small IT Departments around the world. ICS also supports the federal government and the private investigation sector by providing digital forensic products used in some of the most complex investigations today. Address Website Social Networks Products/Services Offered
Products
Companies Served
|
549 |
Ixia Ixia provides comprehensive converged IP services testing solution - from the wireless edge to the Internet core. Network equipment manufacturers, service providers, enterprises, and government agencies use Ixia's industry-leading test and simulation platforms to design and validate a broad range of wired, Wi-Fi, and 3G/4G networking equipment and networks. Address Website Products/Services Offered
Products
Companies Served
|
733 |
| MAC Source Communications, Inc. MAC Source Communications, an Avaya Platinum Business Partner, is a complete solutions provider. Our core business is the design, installation and ongoing support of converged communications products and services. Additionally, MAC Source partners with industry-leading manufacturers in wireless networks, video, data switching, routing and security applications. Address Website Social Networks Products/Services Offered
Companies Served
|
444 |
| MAD Security/The Hacker Academy MAD Security provides ROI through the investment in your people. In addition to the world-renowned training offered through The Hacker Academy, MAD specializes in role-based training, security awareness and information security training with a focus on real world threats and hands-on examples. Address Website Social Networks Products/Services Offered
Companies Served
|
739 |
| Microsemi Corporation Microsemi Corporation, headquartered in Aliso Viejo, California, designs and manufactures analog-based components, modules and subsystems used to power and protect the most challenging applications found in commercial, industrial, medical, aerospace, security and defense markets. Microsemi products are recognized for their superior performance, reliability, innovation and power saving capabilities. Address Website Products/Services Offered
Companies Served
|
449 |
Microsoft At Microsoft, we're motivated and inspired every day by how our customers use our software to find creative solutions to business problems, develop breakthrough ideas, and stay connected to what's most important to them. We are committed to the mission of helping our customers realize their full potential. Address Website Products/Services Offered
Companies Served
|
605 2D06 |
| Napatech Napatech is the leading OEM supplier of 40 GbE, 10 GbE and 1 GbE intelligent real-time network adapters. Napatech network adapters provide real-time packet capture and transmission with full line-rate throughput and zero packet loss no matter the packet size. Intelligent features enable application acceleration and offload. Address Website Products/Services Offered
Companies Served
|
443 |
Net Optics, Inc. Net Optics, the leading provider of Intelligent Access and Monitoring Architecture solutions, delivers real-time IT visibility, monitoring and control for businesses to achieve peak performance in network analytics and security. 7,000 organizations—trust Net Optics' comprehensive smart access hardware and software solutions to plan, scale and future-proof their networks. Address Website Products/Services Offered
Products
Companies Served
|
611 |
| NetIQ Corporation NetIQ Corporation is an enterprise software company with a relentless focus on delivering customer success. Our portfolio includes award-winning software solutions for identity, access, security, compliance, systems, application, and resource management. We help organizations securely deliver, measure, and manage computing services across physical, virtual, and cloud computing environments. Address Website Social Networks Products/Services Offered
Products
Companies Served
|
718 |
NetScout Systems, Inc. NetScout Systems, Inc. is the market leader in Unified Service Delivery Management enabling comprehensive end-to-end network and application assurance. IT staff at more than 20,000 of the largest enterprises, government agencies, and service providers use NetScout nGenius® and Sniffer® solutions to predict, preempt, and resolve service delivery problems. Address Website Products/Services Offered
Products
Companies Served
|
342 |
| Processor Processor is a bi-weekly print publication designed for people managing and purchasing equipment for data centers. Processor’s content is comprehensive but presented in a quick, easy-to-read format, so readers can keep up with new data center products and technologies. Address Website Products/Services Offered
Companies Served
|
355 |
| R1Soft R1Soft is the developer of Continuous Data Protection® (CDP), scalable and high-performance backup software for Windows and Linux servers in the cloud. Recognized as the leading commercial backup software in hosted services, R1Soft CDP is used by over 1,000 cloud infrastructure providers and protects more than 200,000 servers worldwide. Address Website Social Networks Products/Services Offered
Companies Served
|
816 |
Rackspace Hosting Rackspace® Hosting is the world’s leading specialist in the hosting and cloud computing industry, the founder of OpenStack™, an open source cloud platform. The San Antonio-based company provides Fanatical Support® to its customers across a portfolio of IT services, including Managed Hosting and Cloud Computing. For more information, visit www.rackspace.com. Address Website Social Networks Products/Services Offered
Products
Companies Served
|
417 |
Safari Books Online Safari Books Online is a digital library providing on demand, subscription access to thousands of learning resources including books, videos, code snippets and practice exams. Our combination of vetted content and platform tools enables our users to quickly find, organize, manage, share and use information from the world’s best experts. Address Website Social Networks Products/Services Offered
Companies Served
|
612 |
| Sentry Metrics Sentry Metrics effectively assists their clients with custom solutions for Monitored Security Services, Professional Information Security Consulting Services, and Security Products, with a goal of proactively, reactively and remedially supporting and managing the information security life cycle. Sentry delivers tangible results and enhances its clients' information security capabilities. Address Website Products/Services Offered
Products
Companies Served
|
423F |
StrataScale StrataScale’s innovative server and cloud hosting solutions allow users to build, control and scale entire IT infrastructure environments from anywhere, anytime via our advanced web portal. The secure UI provides agility, performance, and peace of mind so IT professionals can focus on improving productivity and impacting the bottom line. Address Website Social Networks Products/Services Offered
Products
Companies Served
|
705 |
Terremark, a Verizon Company Terremark, a Verizon Company, sets the standard for IT deployments with advanced infrastructure and cloud services offerings that deliver the scale, security, and reliability necessary to meet today’s demanding requirements. With a global network of datacenters and a portfolio of secure solutions, Terremark helps realize the power of the cloud. Address Website Products/Services Offered
Companies Served
|
416 |
| Thycotic Software Thycotic Software, Ltd. is a Washington, DC-based company committed to providing secure password management solutions. From managing privileged accounts to Active Directory self-service resets, our software securely manages all credentials critical to your organization's operations. Address Website Products/Services Offered
Products
Companies Served
|
722 |
TrewPort Technologies TrewPort offers SSO and Provisioning solutions for SaaS applications. TrewIDM provides SingleSignOn and Onboarding/Offboarding for SaaS apps such as Salesforce.com, GoogleApps,Replicon,Concur,BigMachines,SuccessFactors etc. It has over 60+ connectors for various systems including enterprise applications and SaaS applications. Visitus at www.ssocloud.com, you can reach us +1-678.431.4905 Address Website Products/Services Offered
Products
Companies Served
|
800 |
Tripwire Tripwire is a leading global provider of IT security and compliance automation solutions that help businesses and government agencies, take control of their physical, virtual, and cloud infrastructure. Thousands of customers rely on Tripwire's integrated solutions to help protect sensitive data, prove compliance and prevent outages. Learn more at www.tripwire.com Address Website Products/Services Offered
Companies Served
|
738 |
| TZ, Inc. Telezgology, Inc. (TZ, Inc.) Infrastructure Protection solutions are open platform systems specifically developed to enhance IT physical security with extremely affordable micro-security and environmental monitoring solutions that are designed to extend electronic access control and locking to the IT cabinet level. Address Website Products/Services Offered
Products
Companies Served
|
254 |
Vyatta Vyatta delivers a software-based network operating system that is portable to standard x86 hardware, common virtualization and cloud computing platforms. From small enterprise to Fortune 500 customers, Vyatta provides a complete enterprise-class routing and security suite that uniquely addresses the next-generation infrastructure requirements of flexibility, on-demand delivery and platform independence. Address Website Social Networks Products/Services Offered
Products
Companies Served
|
610 |
| WISP-Router, Inc. WISP-Router, Inc. is a family owned and operated business that strives to provide the most cost effective wireless networking solutions for individuals and companies around the globe. Address Website Social Networks Products/Services Offered
Companies Served
|
723 |
| Xand Corporation Xand is a facilities-based provider of data center infrastructure and business continuity solutions to financial and mid-sized corporations. Through its Colocation, Managed Hosting and Business Continuity, Xand specializes in complete, end-to-end solutions including application and server hosting, security, data storage, systems engineering, network operations, Internet connectivity, and business continuity workspace. Address Website Products/Services Offered
Products
Companies Served
|
345 |
Social media is now the top delivery vehicle for malware. And social media attacks are no longer limited to those who simply post a wealth of private information to these sites. Rather, they utilize advanced techniques, such as click jacking, spear phishing and password sniffing. By not only expanding the information we are placing on social websites, but also being too trusting of fellow users and eagerly sharing our opinion with that ever popular “like” button, we are making the job of social engineering easier for the bad guys. Let’s move from defense to offense and regain control of our accounts.
Paul Henry is a security and forensic analyst at Lumension, a leading provider of endpoint security and intelligent whitelisting solutions. Paul is one of the world's foremost global information security and computer forensic experts. With more than 20 years of experience, he is a seasoned speaker, author and contributor for some of the leading security industry events and publications.