Conference Sessions

Information Security Decisions is a customized educational conference designed by the editors of Information Security magazine and SearchSecurity.com. The conference offers you a soup-to-nuts agenda focused on the latest security trends, technologies and tools. Delivered over two days, the conference features daily keynotes, emerging technology showcases and breakout sessions (each accompanied by live "how-to" tutorials) that span the following:

• General Sessions
• Track 1: Compliance/Governance
• Track 2: Emerging Threats
• Track 3: Data Protection
• Track 4: Network Security
• Track 5: Secure Messaging

General Sessions

Can Good Security Be Measured? A Debate on Security Metrics

Sure to be a lively debate, Yankee Group senior analyst and author of Security Metrics: Replacing Fear, Uncertainty and Doubt, Andrew Jaquith debates Burton Group senior analyst, Pete Lindstrom about how an organization can measure, quantify and analyze security effectiveness. Are there metrics that make sense or is security a cost center, plain and simple? Find out the answers and join the debate by posing your own questions to these security-metrics experts.

Crystal Ball Panel: Predictions for 2008 and Beyond

In honor of the 10th anniversary of Information Security magazine to be published in December, we've invited the top information security "insiders" to discuss the last 10 years and where they expect the industry to be in 2017. Bruce Schneier, Howard Schmidt and Eugene Spafford reflect on key events over the past decade, how threats have evolved, what needs to be addressed sooner rather than later, and what trouble lies ahead that we can plan for in advance -- to avoid being caught off guard in 2008.

---

Track 1: Compliance/Governance

Regulatory compliance can't be ignored in today's corporate environment, but many security pros are still struggling to keep one step ahead of auditors and regulations. This track helps you determine frameworks, build a compliance roadmap and set expectations within your organization.

Building a Framework-Based Compliance Program

Compliance is constantly evolving and there are various updates that you need to get your hands around. One way to help deal with the updates and track your progress is by using compliance frameworks such as COSO and COBIT. In this session our compliance guru, Richard Mackey, vice president, SystemExperts helps you build your compliance program based on various frameworks and helps you build a more effective risk assessment program. Attend this session to find out:

• Themes that are common to all compliance activities
• ISO 17700 process
• How to identify and control risk through a well-defined risk assessment process
• The components of the compliance process: Policy enforcement, provisioning and data protection
• How to deal with the frameworks associated with PCI
• Standards based on security assessments

---

• FREE Registration
• Home
• Event-At-A-Glance
• Top 10 Reasons to Attend
• Speakers
• Sessions By Track
• Hotel & City Info
• FAQs
• Special Events
• Event Exhibitors
• Advisory Board
• Contact Us
• For Sponsors

SearchSecurity.com | SearchFinancialSecurity.com | Information Security | TechTarget Home Page | TechTarget Events Home Page

TechTarget Events
The Ajax Experience | The CIO Decisions Conference | Data Center Decisions | Financial Information Security Decisions
Information Security Decisions | Storage Decisons | TheServerSide Java Symposium | Regional Seminars

To report issues with this Web site, please contact TechTargetWebSite@TechTarget.com.
© 2008 TechTarget. TechTarget cares about your privacy. Read our Privacy Statement.