Northeast Ohio Information Security Forum

—< NORTHEAST OHIO INFORMATION SECURITY FORUM MEETING —< Wednesday December 15, 2010 —< 6:30 PM – 8:00 PM —< Pizza and social start 6:00 PM —< Location: Park Center Plaza #1, 6100 Oak Tree Blvd, off Rockside Road, Independence, Ohio —< Open to everyone and free as always The Northeast Ohio Information Security Forum will meet for its monthly meeting on Wednesday January 19, 2010 starting at 6:30 PM. It will be held in the lower level of the Park Center Plaza #1 building (in the large room on lower level) off of Rockside Road in Independence. I’ve included links to maps and directions in this email. We have two talks planned… +++ What the FOCA – Chris Murrey, SecureState +++ Ten ways to fail at Information Security – Chris Clymer, SecureState See bottom of email for talk abstracts. PRIZES! Did we get your attention? We plan to have some prize giveaways as well. Don’t forget to come early, starting at 6:00 PM, for pizza and pop. Another great meeting from NEO Info Sec Forum – we hope to see you there! – NEOISF Board – ============================================================ [Location] Park Center Plaza 1 6100 Oak Tree Blvd Google maps link: TinyURL link http://tinyurl.com/neoisfmtg [Directions] 1. I-77 2. Rockside Road exit 3. West on Rockside Road 4. 2nd light go South onto Oak Tree Blvd 5. Pull into the 3rd driveway on the right 6. Go to lower level Signs will be posted on the building. ============================================================ TALK ABSTRACTS Title: What the FOCA – Chris Murrey, SecureState In this presentation, Chris Murrey of SecureState will provide a detailed overview of FOCA, a tool for extracting metadata as well as discovery of systems. Attendees will leave with a thorough understanding of the tool, including proper use. Chris Murrey's BIO: As a member of SecureState’s Profiling Team, Chris Murrey is passionate about the role he plays in ethical hacking. Mr. Murrey performs technical security assessments on a weekly basis, specifically Web Application Security Assessments and External Penetration Tests. An Offensive Security Certified Professional and Microsoft Certified Systems Administrator, Mr. Murrey previously worked in the IT sector for a Cleveland printing company and as a “jack of all trades” for a multi-million dollar corporation. Title: Ten ways to fail at Information Security – Chris Clymer, SecureState Since leaving corporate life to become a consultant 9 months ago I’ve had the opportunity to observe and assess security programs across a wide array of companies. Hospitals, banks, utilities, law offices and grocery stores…everyone does security a little bit differently. One common theme has been that there is no one “right” way to run an effective security program. There are however so many spectacularly different ways to do security wrong! In this presentation I will highlight ten different ways that I’ve seen security NOT work, and which likely WON’T work for anyone, anywhere. Chris Clymer's BIO: Chris is a senior security consultant with the Advisory Services practice at SecureState, a Cleveland-based security consultancy. Chris is a co-host of the Security Justice podcast, is an organizer of Security Bsides Cleveland, a founding member of the Cleveland TOOOL chapter, and of course a board member of the Northeast Ohio Information Security Forum. He specializes in taking the opposite side of any security argument 😉