Chapter Meeting – October 2020 Threat Intelligence

Join ISSA Portland for our October meeting on threat intelligence including an overview of the current threat landscape by the FBI.

About this Event

What: Portland ISSA Chapter Meeting – Threat Intelligence Symposium

When: Thursday, October 15th, 2020 from 11:00 AM – 1:00 PM. A link to the online event will be provided after completing registration.

Description: Join ISSA Portland for our October Membership meeting where we bring together experts across the field of threat intelligence to discus to discuss free and paid threat intelligence sources, how to use threat intelligence management effectively, and an overview of the current threat landscape by the FBI. A Q&A session will follow presentations.

Speaker I: Brett Scott, Director of Security Enablement and Training, Tech Data – Free & Paid Threat Intelligence Sources

Speaker II: Peter McNaull, Enterprise SE, LogRhythm – Threat Intelligence Management & How to Use it Effectively

Speaker III: SA Houle, FBI – Current Threat Landscape

SPEAKER BIOS

Brett Scott, Director of Security Enablement and Training, Tech Data

Brett Scott serves as the director of Security Enablement and Training, Americas for Tech Data. In this role, he is responsible for accelerating the security expertise of our partners and building security solutions for the Tech Data partner ecosystem to deliver to their customers. Scott’s current project is the Tech Data Cyber Range (TDCR). A multi-million-dollar effort, the TDCR is part of Tech Data’s next-generation distributor strategy. Brett is the co-founder of the National Cyber Warfare Foundation (NCWF), a 501(c)(3) non-profit organization leading the country in teaching hands-on cybersecurity skills in a real-world environment. The primary purpose of the NCWF and the Tech Data Cyber Range is to develop real competence in cybersecurity. His career began professionally in 1987 and he remains hands-on, but he also has many years of experience leading technical teams. During his career, he has worked in many different industries and has a great deal of in-depth knowledge on cybersecurity issues facing companies today.

Peter McNaull, Enterprise SE, LogRhythm

For the past 20 years Peter McNaull has been a network Security Evangelist, Sales Engineer and Director of Product Marketing. Currently, He is employed by LogRhythm, the Security Intelligence Company, as a Senior Solutions Consultant supporting both end users and channel partners. Peter has leveraged his extensive technical knowledge to help customers recognize and define their security objectives and to develop strategies to meet the challenges they face.Peter is a Northwest transplant living in Seattle with his two sons. He is an avid fan of their sporting activities – lacrosse, football, basketball. When time allows, he loves riding in the mountains.

SA Houle, FBI

SA Houle has been with the FBI for 4 years working mostly National Security and Cyber Criminal investigations. Prior to his time with the FBI he spent several years with the United States Air Force and contributed to various DoD programs.

Note: Due to the ongoing lock down restrictions in Oregon, this will be a virtual chapter meeting. Pricing for attendance has been reduced.

Posted in Announcements, Chapter Meetings, Events, News | Comments Off on Chapter Meeting – October 2020 Threat Intelligence

Chapter Meeting: COVID-19 Lessons Learned – Panel Discussion

Register:

https://www.eventbrite.com/e/chapter-meeting-covid-19-lessons-learned-panel-discussion-tickets-117351045135

Event Link (check the day of the event):

https://www.eventbrite.com/x/chapter-meeting-covid-19-lessons-learned-panel-discussion-tickets-117351045135

Description:

Social, business and governmental response at scale to COVID-19 is unprecedented in the field of information security. Business Continuity Plans and Pandemic Plans are being activated. Organizational shifts to a remote workforce are ripe for social engineering attacks, phishing and attacks targeting work from home environments. Budgets everywhere are being put under pressure. Yet the expectation to effectively defend the organization remains constant, even in light of increased risk. How are organizations shifting their approach with staff, training, vendors and technology?

Join Portland ISSA for a panel discussion on strategic responses to COVID-19.

Note: Due to the ongoing lock down restrictions in Oregon, this will be a virtual chapter meeting. Pricing for attendance has been reduced.

Speaker bio:

Dr. Travis Paakki –Senior Director, Office of Technology and Information Services, Portland Public Schools

Dr. Travis Paakki is a graduate of Colorado Technical University with a computer science doctorate with a focus on information assurance where he focused on public sector infosec challenges. During the day he is an infosec leader at Portland Public Schools, serving 50,000 students and families. He has worked in IT for 25 years and been an avid cybersecurity researcher and advocate since the age of 12. At night, he teaches masters-level networking and cybersecurity at multiple universities.

Jon Washburn – Chief Information Security Officer (CISO), Stoel Rives LLP

Jon Washburn leads Stoel’s information security and governance program, working with the COO and firm counsel to ensure policies, controls, operational processes and training programs reduce IT risk and meet client and regulatory requirements. A resource for Stoel’s Privacy and Data Security practice, he draws on his more than 20 years of experience to assist the team with risk assessments, responding to incidents, identifying policy/process improvements, and evaluating information systems architecture and security controls to determine how well they might reduce the likelihood and impact of a data breach. Outside the office, he spends considerable time volunteering with the International Legal Technology Association (ILTA) and the Legal Services Information Sharing and Analysis Organization (LS-ISAO)

Matt Olson – Senior Director of Compliance and Security, Higher Logic

Matt Olson leads the compliance and information security program at Higher Logic. With 20 years of experience running large software as a service (SaaS) operations at scale, Matt brings both a product and enterprise operations focus to information security and compliance for tens of millions of end users. He has experience in security operations management, security architecture, risk assessments, incident response, vendor management, secure software development life cycle (SDLC) best practices, establishment of policy, certification under ISO 27001 and managing audits under SOC 2. Matt currently serves as Portland ISSA chapter Vice President.


Posted in Past Presentations | Comments Off on Chapter Meeting: COVID-19 Lessons Learned – Panel Discussion

ISSA Portland 2020 Virtual “CMD+CTRL” Capture The Flag (CTF)

Join ISSA PDX for our annual hackathon, now an entirely virtual “Capture The Flag” event! Have fun, hone your skills, and win great prizes!

About this Event

ISSA Portland is once again partnering with Security Innovation to present our most popular annual event, the CMD+CTRL Cyber Range! Compete against your peers in a contest of hacking skills in a fun, safe, simulated environment. Win fabulous prizes, recognition, and best of all gain hands-on experience!

This event is easy to start but hard to finish! Everyone from non-coders with zero hacking experience to seasoned penetration testers will learn and grow their skills. With challenges for all levels, live proctors and a wide variety of vulnerabilities, the SI and ISSA teams will make sure everyone has a productive event.

Get Ready:

Want to start improving your skills before the event? Review Security Innovation’s free Community Site for courses, resources, success stories, and access to the InstaFriends Cyber Range.

When: July 16, 2020 – 9:00 AM to 1:00 PM – Pacific Time Zone

Where: Completely online! Note: You will be sent an event link on July 15th, 24 hours in advance of the event start time.

Cost:

ISSA Members – $10

Non-ISSA attendees – $25

Students (limited number) – Free when registering with a student email address

Register:

https://www.eventbrite.com/e/issa-portland-2020-virtual-cmdctrl-capture-the-flag-ctf-7162020-tickets-108417796548?ref=ecal

Prizes ranging from $50-$250 will be awarded for the highest score, runner up, and other top performers. In addition all attendees who stay through the event will have a 1 in 10 chance of winning a door prize! Register early, seating is limited! Note: You will be sent an event link on July 15th, 24 hours in advance of the event start time.

What you can expect:

Security Innovation will provide a brief orientation to the Cyber Range platform as well as an introduction to thinking like an attacker. Proctors will periodically provide “learning labs” with guidance on how to find a common vulnerabilities and execute exploits. Coaching, support, Q&A, and event guidance will be provided throughout the event via Slack and RingCentral channels. The only limit to the support is the questions you can think of!

Participation requirements:

1) An ISSA Portland Chapter Eventbrite order confirmation. An access code will be sent to you 24 hours prior to the start of the event.

2) Tech requirements – A modern browser and stable internet connection.

We’re looking forward to you joining us in a great learning experience!

If you have questions, please reach out to us at programs@portland.issa.org.

Regards,

Christopher Paidhrin

ISSA Portland Chapter President

Posted in Past Presentations | Comments Off on ISSA Portland 2020 Virtual “CMD+CTRL” Capture The Flag (CTF)

Chapter Meeting: Information Security Practitioners’ Response to COVID-19

When: Thursday, May 21st, 2020 11:30AM – 1:00PM

Register:

https://www.eventbrite.com/e/chapter-meeting-information-security-practitioners-response-to-covid-19-tickets-104580009624

Description:

COVID-19 has been an unprecedented window of opportunity for threat actors. Most organizations are experiencing heightened levels of threat activity. In this presentation, see how multiple information security disciplines can contribute to improving your organization’s resiliency, learn where to focus your team’s efforts, how to plan to be effective and reduce response times.

Note: Due to the ongoing lock down restrictions in Oregon, this will be a virtual chapter meeting. Pricing for attendance has been reduced.

Speaker bio:

Matt Olson – Senior Director of Compliance and Security, Higher Logic

Matt leads the compliance and information security team at Higher Logic. With years of experience in running large SaaS operations at scale, Matt brings both a product and enterprise operations focus to information security and compliance.

Matt holds CISSP and ITIL certifications, is the technology director for ISSA Portland and most recently led Higher Logic to ISO 27001 certification.

Posted in Past Presentations | Comments Off on Chapter Meeting: Information Security Practitioners’ Response to COVID-19

Interface Portland 2020

When:

March 10th, 2020
8:30AM – 4:30PM

Where:

Oregon Convention Center
Portland Ballroom
777 NE Martin Luther King, Jr. Blvd.
Portland, OR 97232

Registration: https://f2fevents.com/evite/pdx20-issa-portland/

Description:

ISSA Portland invites you to attend a CPE-accredited educational conference for IT professionals focusing on the latest developments in this constantly changing information technology environment. As a key-influencer on the evaluation of IT solutions, INTERFACE Portland was developed for you.

KEYNOTE: I’m From the Feds: We’re Here to Help!

Presented by Theresa Masse • Cybersecurity Advisor, US Department of Homeland Security

Help spread the word!
• Share this eVite with your colleagues
• Check our website for the latest seminar schedule updates

Join your peers and enjoy a day of the latest IT innovations and best practices – including CLOUD-based solutions – covering IT Infrastructure, BC/DR, Cybersecurity, Data Storage, and a variety of other topics being offered during the event’s presentations, panel discussions, and exhibits that are sure to be time well-spent!

About ISSA Portland:
The Information Systems Security Association is a not-for-profit organization of information security professionals. It provides educational forums and peer interaction opportunities that enhance the knowledge and professional growth of its members.

Posted in Past Presentations | Comments Off on Interface Portland 2020

November 21st, 2019 Chapter Meeting: Incident Response

When: Thursday, November 21st, 2019 9:00AM – 2:00P

Note: The October meeting was postponed until November and the format has been expanded to a half day event.

Register:

https://www.eventbrite.com/e/issa-portland-october-meeting-incident-response-tickets-75703257481

Description:

“Prevention is ideal, but detection is a must. However, detection without response has little value.” -anonymous

So, I have an incident, now what? In this talk we will explore PICERL, the six phases of the incident handling process (preparation,
identification, containment, eradication, recovery, and lessons learned). Afterward, participants will know the phases and understand next
steps for each phase, how to identify the team, communicate during an incident, and how to build out the process.

Speaker bio:

Brian Ventura – Information Security Architect, City of Portland

With a diverse background in consulting, public and private sector, and project
management, Brian brings a comprehensive view of security and technology. Brian advises public entities and private companies on security
best practices generally and within large projects. Brian’s day job is with the City of Portland, where he focuses on enterprise security.
Brian also teaches as a SANS Instructor.

Speaker bio:

Pete Dedes – Forensic Examiner Consultant, Avertium

Pete has more than 30 years of experience as a Computer Professional. Current responsibilities at Avertium (formerly Sword & Shield Enterprise Security, Inc.) includescomputer forensics, security assessments, incident response and tasks in the enterprise solutions arena. As a forensic analyst, Pete has provided courtroom testimony in several Tennessee State Courts.

Pete’s education includes an Associate’s degree in Electo-Mechanical Engineering from Owens Technical College in Toledo, OH and a Bachelor of Science Degree in Computer Science from the University of Tennessee.

Industry certifications include the Certified Computer Examiner (CCE) for forensics, and two GIAC certifications, Certified Forensic Analyst (GCFA) and Certified Incident Handler (GCIH). Pete is also licensed in the State of Tennessee as a Private Investigator.

Location:

Schwabe, Williamson & Wyatt
1211 SW 5th Ave
Suite 1900
Portland, OR 97204

Posted in Past Presentations | Comments Off on November 21st, 2019 Chapter Meeting: Incident Response

Summer Break

Greetings, we are now on our annual summer break and will resume chapter meetings in the Fall of 2019. The programs committee will be working on our program for the coming chapter year and will notify membership soon. Thank you and enjoy the summer!

Posted in Uncategorized | Comments Off on Summer Break

Culture Eats Strategy for Breakfast: Adding People Back into the Security Equation

We all know that people are a central part of the security equation, but how often are they really considered when you’re looking for ways to reduce organizational risk?  In this talk we’ll explore what security culture really means and why it’s a critical part of your overall security strategy. We’ll probe attitudes and perspectives that may be crippling your efforts to change behaviors, and review elements of a successful security awareness program. Finally, we’ll take a peek under the hood of your enterprise security policies and review strategies for making them more user friendly – and more enforceable.

Let us help you demystify the human and bring them back to their rightful place at the center of your security strategy–and success.

Presenters:

Glaphre Karolak started out as a help desk technician for a Las Vegas-based airline in 2008, and showing more talent for writing than fixing things, she quickly transitioned to documenting departmental procedures, building IT training, and writing the airline’s first information security policies. Glaphre was recruited by Caesars Entertainment as they launched their PCI compliance effort, to lead development of enterprise security policies and establish a security awareness program. Glaphre joined Kindred Healthcare in 2015 in a combined GRC and awareness role, writing policy for ISO 27001 certification, leading implementation of a enterprise document management system, and building a phishing and awareness program. Glaphre now writes for the Cybersecurity Engineering team, develops awareness content and training, and passionately works to transform security culture one relationship at a time. Glaphre has served as the Secretary for ISSA Portland Board of Directors since 2017, and served in the same position for ISSA Las Vegas from 2014-2016. She holds the GSEC certification and is currently studying for her CISSP.

Brian Ventura is a security leader in the Portland area. Brian works for the City of Portland as an Information Security Architect, focusing on GRC, Education and Awareness. Brian volunteers with the Oregon CyberSecurity Advsory Council: https://cyberoregon.com/, PCC’s CIS Advisory Board and as a Director of Education for ISSA Portland. Brian is also a SANS Instructor, teaching CyberSecurity courses regularly including: Security Essentials, CISSP Certification, CIS Controls and Risk Management. You can find a NIST CSF management tool published on GitHub: https://github.com/brianwifaneye/NIST-CSF, as well as his SANS course schedule: https://www.sans.org/instructors/brian-ventura

Tickets on sale now:

https://www.eventbrite.com/e/culture-eats-strategy-for-breakfast-adding-people-back-into-the-security-equation-tickets-61325599519

Posted in Past Presentations | Comments Off on Culture Eats Strategy for Breakfast: Adding People Back into the Security Equation

ISSA Portland April 2019 Symposium: Zero Trust and Endpoint Security

The board regrets that this event has been cancelled due to low registration and high cost of the venue making this event not viable. The board is looking into adding another event to the calendar in the May/June timeframe. So please stay tuned. Thank you for your patience.

Posted in Past Presentations | Comments Off on ISSA Portland April 2019 Symposium: Zero Trust and Endpoint Security

March 13, 2019 Chapter Meeting: Container Security

When: March 13, 11:30am – 1pm; (Lunch will be provided)

Location: 1900 SW 4th Street, room 2500B (2nd floor)

              *Note new location*

Lunch will be provided.

Title: Modernizing Traditional Security: How Containerization Makes Security and Compliance Easier

Presenter: Keith Mokris, Sr. Product Marketing Manager at Twistlock

As containers become the commonplace method for delivering and deploying applications, organizations are taking a “lift-and-shift” approach to migrating their existing applications. In this presentation, Keith will discuss a non-profit that provides environmental science and engineering oversight to some of the world’s largest civil waterworks projects and their shift to containers. This organization previously relied on a critical 14-year old app that models storm surge. The move to containers for this application delivered immediate benefits, making it easier to manage vulnerabilities, ensure regulatory compliance, and provide runtime defense. Throughout this session, we’ll break down the security advantages of containers relative to traditional architectures using this real life app as an example.

Main takeaways:

  • Learn the technical differences between containers and traditional architectures around vulnerability management, compliance, and runtime security
  • How containerization helps move security upstream in the development lifecycle and why that’s such an important benefit
  • Why containers make compliance instantly easier, by enabling organizations to find and correct problems early on, enforce settings, and automatically block non-compliant configurations
  • How the predictable nature of containers enables a new approach to runtime defense that improved efficiency and scale by reducing human security management effort
  • Lessons learned from a real world organization’s experience migrating a mission critical app to containers and how impacted their security approach

Bio: In his role at Twistlock, Keith tells the story around how enterprises can leverage the company’s cloud native cybersecurity platform to secure their modern applications. Previously, Keith was in charge of product marketing at NowSecure, helping enterprises integrate mobile application security testing into their development pipelines and identify critical vulnerabilities via penetration testing. In his free time, he is a landscape and street photographer.

Posted in Past Presentations | Comments Off on March 13, 2019 Chapter Meeting: Container Security