—< NORTHEAST OHIO INFORMATION SECURITY FORUM MEETING
—< Wednesday May 20, 2015
—< 6:30 PM – 8:00 PM
—< Pizza and social start 6:00 PM
—< Location: OEC at 4205 Highlander Pkwy Richfield, OH 44286
—< Open to everyone and free as always
The Northeast Ohio Information Security Forum will hold our monthly meeting at the above date and time.
Agenda:
“Resiliency – Is It Just Another Buzz Word?”
by Gary Sheehan
Gary Sheehan is the Chief Security Officer and Director of GRC Services for ASMGi. ASMGi provides a variety of IT, security and business solutions that enable organizations to meet their goals and objectives. Gary has over 30 years of experience in information technology with over 25 years of experience in information security, specializing in GRC integration, security management, compliance, policy and awareness development, and security program governance. Throughout his career Gary has worked for and with a number large companies in the banking, insurance, diversified industrial, healthcare, manufacturing and chemical industries. He has successfully executed large, global security projects and implemented enterprise-wide security programs at a number of companies.
Gary is a past President of the Northern Ohio Members Alliance of InfraGard and Founder of Information Security Summit. Gary has a Bachelor’s degree in Business Administration from Baldwin-Wallace College and is a 2006 graduate from the FBI Citizens Academy.
“The Domain Name System – Operation and Security”
by Tom Kopchak from Hurricane Labs
The Domain Name System (DNS) is a critical service for the operation of the Internet as we know it. Although the process of resolving human readable domain names into Internet-routable IP addresses may seem simple, this process is backed by a massive, globally-distributed database. The reliable functioning of this system impacts all users – from end users, to system administrators, to security professionals and event entire countries. Because of behavior and ubiquity of DNS, it has recently become a focus for attackers, especially as both a source and target for distributed denial of service (DDoS) attacks.
In this presentation, Tom will provide an overview of the operation and design of the Domain Name System, focusing on both the global structure along with best practices for a local deployment. Security considerations will be a core component of the presentation, including an overview of recent attacks leveraging the fundamental operation of DNS along with improperly configured resolvers resulting in significant interruptions in Internet service.
BIO:
Tom Kopchak is a Senior Security Engineer and Operations Team Lead at Hurricane Labs, an Information Security Firm in Cleveland, Ohio who specializes in Splunk design and implementation, network integration, and firewall and network security. Tom is an alum of the Rochester Institute of Technology, with a background in Computing Security and Information Security (MS) and Applied Networking and System Administration (BS). His research areas include computer forensics and data storage technologies. When he is not working with computers, Tom enjoys composing, music improvisation (Acts of Music), and playing both the piano and organ.
We thank OEC for providing the location and catering the food. Check them out at www.oeconnection.com
Don’t forget to come early, starting at 6:00 PM, for pizza and pop.
Another great meeting from NEO Info Sec Forum – we hope to see you there!
– NEOISF Board –