Workshops
Monday–Friday, April 28–May 2
Find full-day and two-day courses with up to the minute, in-depth information. Choose from many topics including:
SundayMondayTuesdayWednesdayThursdayFriday
| Sunday, April 27 | |||||
|---|---|---|---|---|---|
|
Workshops
 Mobile Broadband: Technologies, Systems, Devices and Strategies (Location: Jasmine A)"Mobile broadband" is no longer an oxymoron. Today's wireless technologies - and the continuing evolution of wireless itself - have motivated a broad array of products and services that enable anyone to be connected and productive almost anywhere. Wireless LANs have achieved parity with wire, and wide-area wireless services have made similar gains. Now the question is how to pick the best wireless and mobile tool for the job, how to integrate wireless products and systems into a comprehensive IT solution, and how to plan the future of IT infrastructure and services given the continuing rapid evolution of wireless itself. This Workshop is designed as a quick but comprehensive wireless update for IT and network managers and staff. We will discuss all major and emerging broadband wireless technologies and systems, including advances in the IEEE 802.11 wireless-LAN standard and both today's 3G and tomorrow's 4G wide-area wireless services. Course Outline Who Should Attend A working knowledge of networking is required as a prerequisite. This Workshop is moderately technical in nature, and some background in wireless is suggested. It is intended for enterprise IT and staff, network planners and operations staff, and advanced users, but will also be of value to the vendor and carrier communities as well. You Will Learn The primary objective of this Workshop is to provide enterprise IT management and staff with the information they need to develop effective IT strategies and to evaluate, select, and optimize mobile broadband products and services. Instructor - Craig Mathias, Principal, Farpoint Group
Craig J. Mathias is a Principal with Farpoint Group, a wireless and mobile advisory firm based in Ashland, MA. The company works with manufacturers, network operators, enterprises, and the financial community in technology assessment and analysis, strategy development, product specification and design, product marketing, program management, education and training, and the integration of emerging technologies into new and existing business operations, across a broad range of markets and applications. Craig is an internationally-recognized expert on wireless communications and mobile computing technologies, and has published numerous technical and overview articles on a variety of topics. He is a well-known industry analyst and frequent speaker at industry conferences and trade shows, and is currently a member of the Advisory Boards for the Interop (Las Vegas and New York), Mobile Business Expo (MBX), and WiMAX World conferences. He also serves as a semi-monthly columnist for SearchMobileComputing.com, ardent blogger for Unstrung.com, and weekly columnist for Computerworld.com. He holds an Sc.B. degree in Applied Mathematics/Computer Science from Brown University. The ABC of Virtualization: A Shortcut Guide to Virtual Technology (Location: Mandalay Bay B)Virtualization of core datacenter services such as server operating systems, storage, networking, desktops and applications is transforming the way organizations run IT. By reducing physical server footprints, eliminating complex physical network switching equipment, and removing all issues around application operation, virtualization is transforming the way we look at storage. Additionally, virtualization provides the best model for business continuity. Impacting almost every level of IT operations, only a handful of organizations around the world have moved to this new datacenter model. This workshop will help demystify the different aspects of virtualization by introducing each level and how they fit together. This session will also focus on the new division between resource pools (RP) and virtual service offerings (VSO) and follow with a detailed plan for the new virtual architecture, benefits, rules, guidelines as well as the new management approaches required for this powerful new force in IT. Course Outline Who Should Attend You Will Learn Instructor - Danielle Ruest, MCE, MCT, MVP, Senior Enterprise Architect, Resolutions Enterprises Ltd.
Nelson Ruest is a Senior Enterprise Consultant with over 25 years experience in migration planning and network, PC and server design. He was one of Canada's first MCSEs and Microsoft Certified Trainers. He is very familiar with all versions of Microsoft Windows as well as Active Directory, systems management, intra- and extranet configurations, collaboration technologies and office automation. In 2007, Nelson released a free eBook with his partner Danielle Ruest: The Definitive Guide to Vista Migration (www.realtime-nexus.com/dgvm.htm) and finished Windows Server 2008, The Complete Reference for McGraw-Hill Osborne published with the release of Windows Server 2008. Nelson and Danielle are currently delivering a 20-city tour on Server Consolidation and Infrastructure Optimization (http://events.techtarget.com/consolidation) which is designed to help organizations move to a virtual infrastructure. Nelson and Danielle are also co-authors on the Deploying and Administrating Windows Vista Bible book for Wiley. Nelson has been working with virtualization technologies for the past 10 years and has implemented everything from testing, development and production virtualization environments. Nelson works for Resolutions Enterprises, a consulting firm focused on IT Infrastructure Design. Resolutions can be found at www.Reso-Net.com. The Disaster Recovery Cookbook: Recipes for Surviving a Disaster (Location: Breakers F)How long would it take your company to recover if your primary datacenter suffered a major disaster? If your organization is like many you could save a current set of backup tapes with a ten minute warning during business hours, but a datacenter disaster at 4AM requires reverting to the tapes from the previous day. You know it's a problem but are unclear how to build a disaster recovery plan that will work without eating up your entire IT budget. This workshop will explain how. From the basics of high availability to building out a disaster recovery hot-site, this workshop will explore the options and help you choose the solutions that balance risk against cost to come up with a plan that's right for your organization. Course Outline Who Should Attend IT managers and system administrators looking to protect their data and businesses against disasters and even more frightening, user error. You Will Learn Instructor - Howard Marks, Founder and Chief Scientist, Networks Are Our Lives, Inc!
Howard Marks is the Founder and Chief Scientist at Networks Are Our Lives, Inc! a Hoboken NJ based networking consultancy. In over 25 years of consulting he has designed and implemented networks, management systems and Internet strategies at organizations including American Express, JP Morgan, Borden Foods, US Tobacco, BBDO Worldwide and Foxwoods Resort Casino. Mr. Marks has been a speaker at industry conferences including Comnet, PC Expo, Neworld+Interop and Microsoft?s TechEd since 1990 on topics including LAN and WAN infrastructure, systems management and web hosting. He is the author of Networking Windows and co-author of Windows NT Unleashed (Sams) along with over 100 articles in publications including PC Magazine, Network Computing and Network World. He is currently the "Backup and Business Continuity" blogger at InformationWeek.com Advanced Firewall and Network Security Design (Location: Jasmine C)This Workshop covers the philosophical tricks and technical approaches that experts use in building advanced firewall and secure network architectures. Learn about the art of firewall design, so that you can reason about and build high-performance high-security systems. We will focus on various architectures of security systems in the broad sense, rather than delving into individual details about particular products that are currently on the market. Additionally, you will learn about related firewall/security techniques including how to build filtering rules for intrusion prevention, setting up caching proxy servers, failing over multiple firewalls, compartmenting wireless traffic, setting up SSH and SSL services and secure Email access. Overall, we emphasize a "do it yourself" attitude based on using freeware/open source tools to get the job done securely. Course Outline Who Should Attend Security administrators interested in building advanced security systems. You Will Learn: How to demystify, build and understand firewall architectures and advanced internet security configurations. Instructor - Marcus Ranum, CSO, tenablesecurity.com
Marcus J. Ranum, Chief Security Officer of Tenable Security, Inc., is a world-renowned expert on security system design and implementation. Since the late 1980's, he has designed a number of groundbreaking security products including the DEC SEAL, the TIS firewall toolkit, the Gauntlet firewall, and NFR's Network Flight Recorder intrusion detection system. He has been involved in every level of operations of a security product business, from developer, to founder and CEO of NFR. Marcus has served as a consultant to many FORTUNE 500 firms and national governments, as well as serving as a guest lecturer and instructor at numerous high-tech conferences. In 2001, he was awarded the TISC "Clue" award for service to the security community, and also holds the ISSA lifetime achievement award. In 2005 he was awarded Security Professional of the Year by Techno Security Conference. Creating Your Enterprise Unified Communications Plan (Location: Breakers B)Unified Communications (UC) offers enormous opportunities for dramatic enhancements to your communications environment. But there is a real need to organize these opportunities into a coherent and cost-justified plan for your company or institution. This one-day workshop will provide you with the information and tools to create that plan for your enterprise. Course Outline Based on the proven two-day BCR Training Course, "Planning and Implementing VoIP Unified Communications", this session will answer these questions: Who Should Attend This course will support the job responsibilities, leadership requirements, and business development goals for the following roles: You Will Learn At the end of the Workshop, attendees will have an understanding of how to investigate and evaluate UC solutions; how to create a plan based on those solutions; and how to proceed with the selection and implementation of the appropriate technologies, services and change management programs to produce a high-return sequence of Unified Communications investments. The workshop will include a UC Planning Toolkit which will be available in electronic form for all course attendees. Instructor - Marty Parker, Principal, UniComm Consulting LLC
Marty Parker provides Unified Communications consulting support to both private and public sector enterprises. As a Principal of UniComm Consulting and as co-founder of UCStrategies.com, Marty is part of a network of talent and ideas to assure clients of the best and latest information about Unified Communications (UC). Marty's focus is on the applications for UC and how those applications optimize business processes to deliver hard-dollar ROI. This focus is the basis for his BCR Training course, "Planning and Implementing VoIP Unified Communications"; for his articles in BCR Magazine and on NoJitter.com (see ?Top UC Applications Now Apparent?, June 2007); and for his UC RFP Templates available at UCStrategies.com. Marty is a regular moderator and presenter at InterOp, VoiceCon and in other UC industry venues. His applications and industry-oriented perspectives on UC are based on his roles in sales, marketing, product management and executive positions with IBM and ATT/Lucent/Avaya as well as with a major Telecom VAR, and as founder and CEO of venture-funded startups in the early phases of the voice messaging industry. Contact Marty at mparker@UniCommConsulting.com. Monday, April 28 | | ||||
|
Workshops
Intrusion Detection and Prevention (IDS/IPS) for IT Managers (Location: Breakers F)After firewalls, IDS have become one of the most widely deployed security technologies on most networks. Unfortunately, how they work remains a mystery to a great many network and security administrators. In this Workshop, we will examine the underlying principles of IDS/IPS: how it works, its strengths and its weaknesses. We will teach you simple yet powerful techniques for detecting intrusions effectively using firewalls and router ACLs. In order to help you understand the costs and effort associated with an IDS/IPS deployment we will cover the management side of setting up an IDS infrastructure and getting the best value from the data it returns. Course Outline Who Should Attend Network or security managers responsible for an IDS/IPS roll-out or interested in getting the maximum value from an existing IDS/IPS deployment. You Will Learn How IDS/IPS work, how to build them and how to manage them. Instructor - Marcus Ranum, CSO, tenablesecurity.com
Marcus J. Ranum, Chief Security Officer of Tenable Security, Inc., is a world-renowned expert on security system design and implementation. Since the late 1980's, he has designed a number of groundbreaking security products including the DEC SEAL, the TIS firewall toolkit, the Gauntlet firewall, and NFR's Network Flight Recorder intrusion detection system. He has been involved in every level of operations of a security product business, from developer, to founder and CEO of NFR. Marcus has served as a consultant to many FORTUNE 500 firms and national governments, as well as serving as a guest lecturer and instructor at numerous high-tech conferences. In 2001, he was awarded the TISC "Clue" award for service to the security community, and also holds the ISSA lifetime achievement award. In 2005 he was awarded Security Professional of the Year by Techno Security Conference. Developing an Enterprise Network Architecture (Location: Breakers B)Establishing an architectural framework that enables an organization to adapt its IT infrastructure and services in the context of enterprise strategies has never been more critical. This Workshop teaches the skills IT managers need to develop an enterprise network architecture using a decision-making framework and methodology for technology selection based on proven architectural principals, technical positions and template frameworks. Course Outline Who Should Attend This workshop is designed specifically for enterprise network architects and technologists involved with network planning, network designers and consultants, and integrators and VARs. You Will Learn Attendees will learn valuable technical information and understand how to create network plans that support business initiatives. Instructor - Jack Stackhouse, Director of Technical Architecture , Burton Group
Jack Stackhouse has over 20 years of experience in systems engineering, engineering management, and consulting for large multinational organizations, city, and state governments on network architecture, wireless technology and RFP development for WAN, voice technology and IT outsourcing. As a director of technical architecture, Jack provides Burton Group?s Fortune 500 and Global 2,000 clients strategic advice on network architecture, remote access, wireless technologies, voice services, and IPv6. Storage Network Technologies: The Hype-Free Guide to Fibre Channel & iSCSI SANs (Location: Breakers C)SANs are no more than "virtual SCSI Cables". SAN plumbing! Yet, we spend heavily on this plumbing, our storage network infrastructures. This Workshop examines why organizations implement NASs and SANs. It provides a comprehensive technical examination of fibre channel, iSCSI and various IP Storage technologies. The Workshop also examines the practical problems faced in the heterogeneous world where the "any-to-any" connectivity provided by SANs can present more problems than it solves. You will learn the best way to continue to gain asset utilization in a mixed technology world. Techniques used to overcome issues through the use of zoning, persistent binding and virtual fabrics. The Workshop identifies components and products that make up a NAS or SAN, examines the design and performance aspects of a SAN, and finally explores where Storage Networks are headed over the next few years. Course Outline Who Should Attend Anyone who designs, implements, manages, specifies or selects Storage Networking technologies. IS/IT technical staff and managers, product developers, systems integrators, systems engineers and technical marketing personnel. Anyone who wants to understand more about storage networking solutions and technologies You Will Learn How to separate the myth from reality of the various storage networking technologies and give you a better understanding what storage networks can and cannot do for you. Instructor - Howard Goldstein, President, HGAI
Howard A. Goldstein, Founder Howard Goldstein Associates, Inc. Howard Goldstein has over 30 years' experience in storage, data and telecommunications networking. His background includes positions in technology, management and education with practical technical experience in architecture, design, planning, implementation and operations. His technical focus ranges across various storage network architectures and products including IP storage, iSCSI, SCSI, Serial Attached SCSI, Serial ATA, Fibre Channel, TCP/IP, Gigabit Ethernet, Infiniband, PCI, PCI-X, PCI Express and others. Goldstein holds a B.S. in Computer Science from the University of Massachusetts and an M.S. in Telecommunications from Pace University. He is a frequent speaker at Interop and Storage Networking World. He founded Howard Goldstein Associates, Inc. an Education & Technology Company offering instructor led training. Visit www.hgai.com. He provides in-depth skills with his technology-specific classes. His job task approach in his Storage Networking Planning, Design, Performance and Troubleshooting classes provides the skill level required to perform specific job roles in the Storage Networking industry today. Howard Goldstein has expertise in many aspects of the human side of technology offering innovative consulting and education services on Professional Vitality and Career Development, Adult Learning, and Presentation Development & Delivery Techniques. Howard believes that content and context delivery is as important as content development and is a master of both. Goldstein is an active member of the Storage Networking Industry Association and serves on the SNIA Education Committee. He has helped develop the SNIA Certification Program as well as other SNIA Education initiatives. He has been active in the publications world as technical editor of Building Storage Networks and Resilient Storage Networks. Understanding Voice Over IP (Location: Mandalay Bay C )This Workshop provides a technology overview of Voice over IP, including the protocols, technologies and architectures at the core of VoIP products and systems. These include media transport (the Real Time Transport Protocol), Quality of Service technologies such as Differentiated Services and the Resource Reservation Protocol (RSVP), signaling through the Session Initiation Protocol (SIP), security, and firewall and NAT traversal using techniques like the Simple Traversal of UDP Through NAT (STUN) and Interactive Connectivity Establishment (ICE). The course does not provide a review of products on the markets or network design guidelines. Course Outline Who Should Attend Technologists or technology managers that want to understand how VoIP works "under the hood". You Will Learn After this Workshop, students will be able to identify the key technologies used within VoIP systems, understand how they fit together, and appreciate some of the complexities in developing VoIP networks. Instructor - Dr. Jonathan Rosenberg, Cisco Fellow, Cisco Systems
Dr. Jonathan Rosenberg is a Cisco Fellow in the Voice Technology Group at Cisco Systems. There, he is responsible for guiding the technology directions for their enterprise VoIP products. Jonathan is active in the IETF; he is the lead author of the Session Initiation Protocol (SIP), the inventor of SIP for presence and IM, known as SIMPLE, in addition to other Internet technologies, such as STUN, ICE, XCAP and TRIP. Jonathan received his PhD from Columbia University, and his Bachelors and Masters from MIT. Jonathan has been awarded the Voice on the Net Pioneer Award by pulver.com, and was named one of the one hundred most innovative young technologists in the world by Technology Review Magazine. Windows Server 2008: Administer, Virtualize, Transform the Data Center (Location: Mandalay Bay B)One of the best ways to control the increasing administrative workload is to divide activities into daily, weekly, monthly, even semi-annual schedules. This workshop will help you gain control by using role-based server architecture for both administration and security. It will help you identify which tasks are the most crucial for each server type and when they must be performed. This Workshop focuses on Microsoft's trend towards server roles in Windows Server 2008, and Windows Vista. It covers the following roles: General, File and Print, Network Infrastructure, Active Directory, Application and Terminal Servers. Practical examples of administration activities through the graphical interface, command line tools or PowerShell scripts make this Workshop a must for all overworked system admins. This Workshop will have a special focus on Windows Server 2008 and the changes it will bring to system administration. Course Outline Part I - Implement Server Roles Work with Identity Servers * Active Directory Domain Services * Active Directory Lightweight Directory Services * Active Directory Certificate Services * Active Directory Rights Management Services * Active Directory Federation Services * DNS Work with Network Infrastructure Servers * DHPC * Network Policy and Access Services * Windows Deployment Services * Virtualize with Hyper-V Work with File, Fax and Print Servers Work with Application & Dedicated Web Servers Work with Terminal Servers Part II - Implement Server Features Course materials include presentation handouts. Course is based on Chapter 13 of the Ruest's Microsoft Windows Server 2008: The Complete Reference from McGraw-Hill Osborne. Who Should Attend Information Technology Management, Systems Administrators, Networking Professionals, and Network Operating System Technology Evaluators. You Will Learn How to manage resource pools; how to with virtual service offerings; how to manage file and print Servers; how to manage clustered servers; how to manage Windows Server 2008 Server Core; how to secure servers with the security configuration wizard; how to create new domain controllers for existing domains; how to manage DNS for Active Directory; how to manage group policy and how to manage the NTDS.DIT database. Instructor - Danielle Ruest, MCE, MCT, MVP, Senior Enterprise Architect, Resolutions Enterprises Ltd.
Nelson Ruest is a Senior Enterprise Consultant with over 25 years experience in migration planning and network, PC and server design. He was one of Canada's first MCSEs and Microsoft Certified Trainers. He is very familiar with all versions of Microsoft Windows as well as Active Directory, systems management, intra- and extranet configurations, collaboration technologies and office automation. In 2007, Nelson released a free eBook with his partner Danielle Ruest: The Definitive Guide to Vista Migration (www.realtime-nexus.com/dgvm.htm) and finished Windows Server 2008, The Complete Reference for McGraw-Hill Osborne published with the release of Windows Server 2008. Nelson and Danielle are currently delivering a 20-city tour on Server Consolidation and Infrastructure Optimization (http://events.techtarget.com/consolidation) which is designed to help organizations move to a virtual infrastructure. Nelson and Danielle are also co-authors on the Deploying and Administrating Windows Vista Bible book for Wiley. Nelson has been working with virtualization technologies for the past 10 years and has implemented everything from testing, development and production virtualization environments. Nelson works for Resolutions Enterprises, a consulting firm focused on IT Infrastructure Design. Resolutions can be found at www.Reso-Net.com. Tuesday, April 29 | | ||||
|
Workshops
Location Based Solutions: Understanding GPS, GIS and Location Technology (Location: Jasmine C)The growth of Geographic Information Systems (GIS), Geospatial solutions and tracking technology for positioning both outside and inside buildings is exploding. The problem with these technologies is they are often misunderstood and deployments can be more challenging than expected. This workshop will help attendees understand the options and capabilities of the current location marketplace and help provide a roadmap for gaining real value for enterprise organizations -- large and small. Course Outline The course will review and demonstrate the technology, software and data manipulation related to the following topics: Who Should Attend CTO, CIO, Project Managers, Developers, Transportation and Logistics Specialist, Government and Municipal Planners, Field Service Managers, Sales Force Specialist, Network & Telecommunication Specialist, Health and Human Service Providers, Natural Resource Specialist and anyone interested in understand Geographic Information Systems and Location Based Services. You Will Learn Instructor - Fran Rabuck, President, Rabuck Associates
Fran Rabuck is an independent consultant, thought leader and internationally recognized expert in emerging technologies in the mobile, media and collaboration space. He is a frequent speaker, advisor and judge at major computer industry events. Rabuck has provided consulting and training on a variety of topics for many organizations ? large and small. His current projects include training and consulting on RFID, wireless sensors, mobile CRM/Field Force and collaborative phone applications for pharmaceutical, engineering, government, educational and an entrepreneurial startup. He has recently earned the latest certification from CompTIA for RFID, becoming one of the first wave of practitioners to earn this certification. Troubleshooting Ethernet and Switched Networks - SOLD OUT (Location: Jasmine A)Getting blamed for performance problems? Don't let the foundation of your network be the bottleneck! This workshop covers how to troubleshoot Ethernet and switched networks. In most cases, networks are designed and installed, but never thoroughly tested to make sure they are performing as they were designed. The instructor will review the operation of Ethernet and the types of errors that typically occur. Ethernet topics include Ethernet Signaling, Fast Link Pulse, CRC/Alignment Errors, Collisions, and Fragments. The switching portion of the course examines the basics of switch and spanning tree operation. This overview provides the basis for covering troubleshooting techniques in the switched environment. Plan to leave this course with the skills necessary to successfully test and troubleshoot the physical and data link layers of today's Ethernet networks. Course Outline Who Should Attend This course is intended for network administrators, designers, and analysts that are responsible for Ethernet networks. You Will Learn Students will be prepared to test existing Ethernet networks to determine if they are operating properly and how to quickly isolate and resolve problems, should they exist. Instructor - Chris Greer, Senior Network Analyst, Network Protocol Specialists
Chris Greer is a Senior Network Analyst with Network Protocol Specialists, LLC. An accomplished network analyst, Chris brings years of troubleshooting experience to the classroom. Prior to joining Network Protocol Specialists, LLC, Chris held a variety of positions at Fluke Networks. He has also served as the Troubleshooting and Analysis Lead for the Network Operations Team at InterOp for 5 years. Instructor - Mike Pennacchi, Owner, Network Protocol Specialists
Mike Pennacchi is owner of Network Protocol Specialists, a network analysis and training company based in Seattle, Washington. His company specializes in analyzing network performance problems for companies throughout the United States. He has taught at Interop since 1997 and has received the event's Instructor Award as highest ranking instructor three of those years. Pennacchi brings his experience as a network analyst into the classroom and assists students in understanding how to fix problems in their own networks. Wednesday, April 30 | | ||||
|
2 Day CSI Workshops
T41 Executive Summit: Security and Privacy Collaboration - Day One of Two (Location: Breakers G)Effectively addressing and coordinating Privacy and Information Security initiatives has moved to the top of the list for companies maintaining customer and employee information. However, there are often gaps in communication and collaboration between Privacy and Information Security activities. These gaps create more complexity and bigger challenges for companies to handle, as well as putting the organization at greater risk for incidents, along with contractual and regulatory noncompliance. Successful Privacy and Information Security programs collaborate together to ensure effective controls are integrated throughout the enterprise. This two-day workshop addresses key focus areas for effective collaboration between Privacy and Information Security groups. This workshop will provide knowledge and tools (supported by case studies) that can be used immediately to help business leaders successfully meet these complex and difficult challenges. Course Outline Day 1: Foundation Areas
Who Should Attend This course is intended for CISO, CSO, CPO, CIO, Legal Counsel, Director, Manager, and IT Audit Director and Manager levels. You Will Learn
Speaker - Christopher Grillo, Director, Information Security, Medica
Christopher Grillo, CPA(inactive), CISM, CISA, CIPP, ITIL is the Director of Information Security for Medica Health Plans. Chris is a business focused and technically adept leader with over 15 years of experience in information security, privacy, risk management, audit, and IT consulting in various industries. Chris has a proven track record of implementing and maintaining effective Information Security programs in various industries. Prior to joining Medica, Chris was the Director of Information Security at Pearson Education where he led the global Information Security Program. Chris also held Information Security management positions at highly diverse and regulated companies with business operations in energy, auto, finance, and software development. In addition, Chris served as Sr. Principal Consultant at Guardent and Canaudit, where he led comprehensive information security and privacy engagements. Chris is the author of several seminars such as: Handling Complex and Difficult Privacy and Information Security Issues, Enterprise Security Management, Security Awareness, Acquiring Information Security Tools, and Auditing System Development. He has published several articles and has been quoted in popular magazines such as InformationWeek, Computerworld and the CSI Alert. Chris is an active member in various Information Security and Audit Associations, Privacy groups, and has served as chairperson of the Computer Security Institute (CSI) Advisory Council. Chris can be reached at christopher.grillo@medica.com or csgrillo@gmail.com. Speaker - Rebecca Herold, Owner & Principal, Rebecca Herold, LLC
Rebecca is an information privacy, security and regulatory compliance consultant, author and instructor with her own business, Rebecca Herold, LLC, and over 17 years of experience. Rebecca is authoring her 11th book, and is the editor and primary author for the ?Protecting Information? quarterly subscription security and privacy awareness multi-media publication. Rebecca has authored chapters for dozens of books and over one hundred published articles. In 2007 Rebecca was named a ?Best Privacy Adviser? by Computerworld magazine and one of the "Top 59 Influencers in IT Security" by IT Security magazine. Rebecca is an Adjunct Professor for the Norwich University Master of Science in Information Assurance (MSIA) program. Rebecca is a frequent speaker and has been quoted in dozens of publications. Rebecca can be reached at http://www.privacyguidance.com, her blog at http://www.realtime-itcompliance.com, and rebeccaherold@rebeccaherold.com. T42 How to Complete a Risk Assessment in 5 Days or Less - Day One of Two (Location: Mandalay Bay D)Risk assessment is viewed by many organizations as a long and complicated process. This two-day workshop will dispel that myth and provide the attendees the methods and tools required to complete a quality risk assessment for their own organizations (using an industry standard process) in five days or less. During the training, the students learn the components of the risk assessment process and how they can be effectively used within each organization. The strengths and weaknesses of creating a threat list by brainstorming, checklists or other means are discussed. The results are then reviewed to determine how they can be modified to meet the students' specific needs. The focus of the class is to review the current laws and standards (NIST, OMB, FISMA, FFIEC, ISO 27002, GLBA, HIPAA, SOX, ITIL, PCI DSS and others) and then learn how to map them to the student's own organizational requirements. At the end of the workshop, the attendees will take away a thorough understanding of the risk assessment process, the tools they need to perform the task at their own organization, examples of threat lists, sample control lists and a management summary letter template and other valuable tools. Course Outline This Qualitative Risk Assessment course addresses the following tasks:
Who Should Attend
You Will Learn
Speaker - Thomas Peltier, President, Thomas R. Peltier Associates, LLC
Tom Peltier has been an information security professional for over thirty years. During this time he has shared his experiences with follow professionals and because of his work has been given the 1993 Computer Security Institute?s (CSI) Lifetime Achievement Award. In 1999 the Information Systems Security Association (ISSA) bestowed its Individual Contribution to the Profession Award and in 2001 he was inducted into the ISSA Hall of Fame. Tom was also awarded the CSI Lifetime Emeritus Membership Award. Over the past decade, Tom has averaged 4 articles published a year on various computer and information security issues, including developing policies and procedures, disaster recovery planning, copyright compliance, virus management and security controls. He has had six books published on policy development and risk assessment. He co-authored four other information security books. He continues to speak and teach information security courses throughout the world. CSI Workshop
W43 Computer Forensics Kickstart (Location: Mandalay Bay B)This fast-paced one-day hands-on workshop will provide you with exposure to all the major components of computer forensics -- identification, preservation, analysis, and reporting. Instructor Mark Spencer will draw upon his extensive experience in both the public and private sectors to lead the class through applying the proper tools to a "seized" hard drive in a case involving employee wrongdoing. Commercial and open-source tools designed to forensically tackle different types of electronic data will be applied during the investigation. Computer Forensics Kickstart has been designed to prepare you to select and implement computer forensics tools that will be critical to successful investigations. This is a hands-on workshop, please be sure to bring your laptops. Course Outline
Who Should Attend
You Will Learn You will learn which tools are necessary to conduct successful computer forensics investigations and how experienced computer forensics practitioners implement them. Speaker - Mark Spencer, Vice President of Electronic Evidence , First Advantage Litigation Consulting
Mark Spencer is a Vice President of Electronic Evidence with First Advantage Litigation Consulting where he provides expert consulting and computer forensics services to corporate and government clients. In addition to his case-related responsibilities, Mr. Spencer beta tests computer forensics software and assists with client development and marketing. His professional engagements have included cases involving evidence elimination, computer intrusion, intellectual-property theft, online undercover operations, employment disputes, and large-scale electronic discovery projects. Before First Advantage Litigation Consulting, Mr. Spencer performed computer forensics investigations for EvidentData, Inc. and the Suffolk County District Attorney?s Office. He earned a Bachelor of Arts in Criminal Justice from the University of Massachusetts, Boston, successfully completed the Massachusetts Criminal Justice Training Council's Basic Course of Training for Reserve Police Officers, and holds numerous industry certifications. He has also been a regular presenter on computer forensics related topics at numerous industry events and on television. W42 Solving Vista's Security Mysteries (Location: Mandalay Bay C)While Vista has received lots of venom since its release, it has great features people have never taken the time to learn. It is still a mystery why it acts the way it does. This session will help you understand these mysteries and how to use Vista successfully. Revealed will be where your virtualized files go so repair is easy. Lock down Vista to comply with Federal regulation and stay secure. Learn where adjustment to control files can make your program Vista friendly. Add a hidden layer of security that groups can't override and few even know exits. Make a self-booting Live CD of Vista that you can easily customize (forensics, disaster recovery, and penetration testing). All this and much more! Course Outline
You Will Learn
Who Should Attend
Speaker - Brad Smith, Director, Computer Institute of the Rockies
Brad Smith (RN, ASCIE, BS-Psy MCNPS, CISSP, NSA-IAM) started his computer training in 1971 and is still going strong. Living in the North West, Brad is currently working as a private practice informatics nurse helping rural and frontier medical facilities comply HIPAA. His company, the Computer Institute of the Rockies was selected as the 2005 Microsoft Small Business Solution Partner of the Year for its innovative and cost effective business solutions. He is a frequent speaker at the national medical and security conferences, where he makes complex ideas simple to grasp. Brad is known for his high-energy style of presenting and the real-world experiences he shares during these sessions. He values an active session where everyone is encouraged to share their ideas. Workshops
Analyzing Application Performance (Location: Jasmine C)Every company has one, the slow application. Whether it started this way, or slowed down over time, it is unbearable for the customers. This workshop is intended to provide insight into what makes applications run poorly and what can be done to correct the problem. Rarely is increasing bandwidth the solution for these slow applications. In this course we will explore the difference between the bandwidth dependent application and the latency dependent application. Numerous case studies will be reviewed illustrating both well and poorly designed applications. Application analysis will be covered in detail, taking the attendee through collecting network traffic, analyzing the traffic, predicting response times, and report generation. Course Outline Who Should Attend This course is intended for anyone responsible for the development, deployment and operation of network based applications. You Will Learn Attendees will leave this presentation with an understanding of how to troubleshoot application performance problems and how to recognize an application that was not designed to run in a WAN environment. Instructor - Chris Greer, Senior Network Analyst, Network Protocol Specialists
Chris Greer is a Senior Network Analyst with Network Protocol Specialists, LLC. An accomplished network analyst, Chris brings years of troubleshooting experience to the classroom. Prior to joining Network Protocol Specialists, LLC, Chris held a variety of positions at Fluke Networks. He has also served as the Troubleshooting and Analysis Lead for the Network Operations Team at InterOp for 5 years. Instructor - Mike Pennacchi, Owner, Network Protocol Specialists
Mike Pennacchi is owner of Network Protocol Specialists, a network analysis and training company based in Seattle, Washington. His company specializes in analyzing network performance problems for companies throughout the United States. He has taught at Interop since 1997 and has received the event's Instructor Award as highest ranking instructor three of those years. Pennacchi brings his experience as a network analyst into the classroom and assists students in understanding how to fix problems in their own networks. Infrastructure Planning and Management for Wireless LANs (Location: Jasmine A)Enterprise wireless LANs are in the midst of a major upgrade as networks of stand alone access points are being replaced with centrally controlled wireless LAN switching systems. This migration is being driven by a number of factors, primarily the need to improve network control and management, centralize security, and the requirement to support voice as well as data services over the WLAN infrastructure. Each of these goals brings with it a number of challenges in the rapidly evolving WLAN space. This Workshop is designed to bring you up to speed on the latest WLAN developments and provide the background you will need to approach these decisions intelligently. Course Outline Who Should Attend Network planners, designers, and managers as well as equipment suppliers who are investigating or planning WLAN network deployments or upgrades. You Will Learn This Workshop will provide a comprehensive, vendor-neutral description of client and infrastructure requirements for WLAN voice and data networks, the management requirements, and an objective review of the major developments in this fast-moving arena. Instructor - Michael Finneran, Principal, dBrn Associates, Inc.
Michael Finneran is an industry analyst, consultant, and educator specializing in the wireless market. With over 30-years in the networking industry, he has provided assistance to a number of major firms including: IBM, AT&T, Prudential Insurance, McGraw-Hill Companies, and Merrill Lynch. For 23 years he wrote the Networking Intelligence column for Business Communications Review, and now writes for the CMP "NoJitter" site. He recently completed his first book titled Voice over WLANs- The Complete Guide. As an educator, Mr. Finneran has conducted over 2000 seminars on various networking topics in the U.S., Europe, Latin America, and Japan. He has spoken at countless industry events and is an Adjunct Faculty member in the Graduate School of Computer Science at Pace University. Michael is a member of the IEEE and has a Masters Degree in Management from the J. L. Kellogg Graduate School of Management at Northwestern University. Thursday, May 1 | | ||||
|
2 Day CSI Workshops
T52 How to Complete a Risk Assessment in 5 Days or Less - Day Two of Two (Location: Mandalay Bay D)Risk assessment is viewed by many organizations as a long and complicated process. This two-day workshop will dispel that myth and provide the attendees the methods and tools required to complete a quality risk assessment for their own organizations (using an industry standard process) in five days or less. During the training, the students learn the components of the risk assessment process and how they can be effectively used within each organization. The strengths and weaknesses of creating a threat list by brainstorming, checklists or other means are discussed. The results are then reviewed to determine how they can be modified to meet the students' specific needs. The focus of the class is to review the current laws and standards (NIST, OMB, FISMA, FFIEC, ISO 27002, GLBA, HIPAA, SOX, ITIL, PCI DSS and others) and then learn how to map them to the student's own organizational requirements. At the end of the workshop, the attendees will take away a thorough understanding of the risk assessment process, the tools they need to perform the task at their own organization, examples of threat lists, sample control lists and a management summary letter template and other valuable tools. Course Outline This Qualitative Risk Assessment course addresses the following tasks:
Who Should Attend
You Will Learn
Instructor - Thomas Peltier, President, Thomas R. Peltier Associates, LLC
Tom Peltier has been an information security professional for over thirty years. During this time he has shared his experiences with follow professionals and because of his work has been given the 1993 Computer Security Institute?s (CSI) Lifetime Achievement Award. In 1999 the Information Systems Security Association (ISSA) bestowed its Individual Contribution to the Profession Award and in 2001 he was inducted into the ISSA Hall of Fame. Tom was also awarded the CSI Lifetime Emeritus Membership Award. Over the past decade, Tom has averaged 4 articles published a year on various computer and information security issues, including developing policies and procedures, disaster recovery planning, copyright compliance, virus management and security controls. He has had six books published on policy development and risk assessment. He co-authored four other information security books. He continues to speak and teach information security courses throughout the world. T51 Executive Summit: Security and Privacy Collaboration - Day Two of Two (Location: Breakers G)Effectively addressing and coordinating Privacy and Information Security initiatives has moved to the top of the list for companies maintaining customer and employee information. However, there are often gaps in communication and collaboration between Privacy and Information Security activities. These gaps create more complexity and bigger challenges for companies to handle, as well as putting the organization at greater risk for incidents, along with contractual and regulatory noncompliance. Successful Privacy and Information Security programs collaborate together to ensure effective controls are integrated throughout the enterprise. This two-day workshop addresses key focus areas for effective collaboration between Privacy and Information Security groups. This workshop will provide knowledge and tools (supported by case studies) that can be used immediately to help business leaders successfully meet these complex and difficult challenges. Course Outline Day 1: Foundation Areas
Who Should Attend This course is intended for CISO, CSO, CPO, CIO, Legal Counsel, Director, Manager, and IT Audit Director and Manager levels. You Will Learn
Instructor - Christopher Grillo, Director, Information Security, Medica
Christopher Grillo, CPA(inactive), CISM, CISA, CIPP, ITIL is the Director of Information Security for Medica Health Plans. Chris is a business focused and technically adept leader with over 15 years of experience in information security, privacy, risk management, audit, and IT consulting in various industries. Chris has a proven track record of implementing and maintaining effective Information Security programs in various industries. Prior to joining Medica, Chris was the Director of Information Security at Pearson Education where he led the global Information Security Program. Chris also held Information Security management positions at highly diverse and regulated companies with business operations in energy, auto, finance, and software development. In addition, Chris served as Sr. Principal Consultant at Guardent and Canaudit, where he led comprehensive information security and privacy engagements. Chris is the author of several seminars such as: Handling Complex and Difficult Privacy and Information Security Issues, Enterprise Security Management, Security Awareness, Acquiring Information Security Tools, and Auditing System Development. He has published several articles and has been quoted in popular magazines such as InformationWeek, Computerworld and the CSI Alert. Chris is an active member in various Information Security and Audit Associations, Privacy groups, and has served as chairperson of the Computer Security Institute (CSI) Advisory Council. Chris can be reached at christopher.grillo@medica.com or csgrillo@gmail.com. Instructor - Rebecca Herold, Owner & Principal, Rebecca Herold, LLC
Rebecca is an information privacy, security and regulatory compliance consultant, author and instructor with her own business, Rebecca Herold, LLC, and over 17 years of experience. Rebecca is authoring her 11th book, and is the editor and primary author for the ?Protecting Information? quarterly subscription security and privacy awareness multi-media publication. Rebecca has authored chapters for dozens of books and over one hundred published articles. In 2007 Rebecca was named a ?Best Privacy Adviser? by Computerworld magazine and one of the "Top 59 Influencers in IT Security" by IT Security magazine. Rebecca is an Adjunct Professor for the Norwich University Master of Science in Information Assurance (MSIA) program. Rebecca is a frequent speaker and has been quoted in dozens of publications. Rebecca can be reached at http://www.privacyguidance.com, her blog at http://www.realtime-itcompliance.com, and rebeccaherold@rebeccaherold.com. 2 Day Interop Workshop
T50 Principles of Effective IT Management - Day One -SOLD OUT (Location: Jasmine A)This two day Tutorial focuses on specific steps you can take to improve your IT organization, business model, tools, staffing, skill levels, as well as your policies and operational procedures. In an environment of constant change, IT accountability has taken on new levels of urgency. IT departments regularly struggle with staffing levels, turnover, burnout, lack of credibility, or end-user and managerial dissatisfaction. If you're questioning how to satisfy the end user, control or cut costs, and still offer a balanced and fulfilling career progression to IT professional staff, we have answers for you. Course Outline Who Should Attend You Will Learn Principles that can develop or enhance your own IT policies, processes, organization, and practices, creating a more effective IT business unit. Instructor - Thomas Randall, Director, BT Americas
Tom Randall is a Director for BT Americas. Having been both a CIO as well as running a data center on Wall Street, he understands what it takes to make IT successful in supporting enterprise business objectives. CSI Workshop
W52 Network and Application Security For Managers (Location: Mandalay Bay C)This one-day workshop is an introduction to the state of network and application attacks and countermeasures in information security. Designed for managers with a technical (but not necessarily security) background, this class walks through key attack types, defense strategies, and corresponding management activities required to protect against these threats. Watching demos of insecure software and networks, students will see the damage potential encompassed by these attacks. Due to the students' high-level vantage point, particular emphasis will be placed on Return on Investment (ROI) for various defensive activities, as well as how to prioritize resources with a limited budget. While this is a demonstration based class, students are encouraged to bring their own laptops. Course Outline
Who Should Attend Information technology managers with a basic understanding of networks and/or applications who wish to gain an understanding of the current state of network and application-layer attacks and defenses. You Will Learn Students will be armed with an understanding of what the current threat landscape is and what the various defense strategies are with relation to network and application security. This class will allow them to make educated decisions about how to best defend against these threats. Speaker - Hugo Fortier, Security Consultant, Security Compass
Hugo Fortier is a Security Consultant with a strong background in e-commerce security. He specializes in penetration testing, source code review, and closed source application review. Hugo is a noted expert in penetration testing and reverse engineering and has delivered engagements for a variety of service offerings, including code reviews, network penetration testing, web application penetration testing, wireless auditing, and VOIP penetration testing. Hugo has been involved in the development, implementation and maintenance of a security infrastructure for a major online banking project in Canada. He is also the founder of the RECON, the Reverse Engineering Conference. Speaker - Rohit Sethi, Consultant, Security Compass
Rohit Sethi, Manager of Professional Services, Security Compass, is a specialist in threat modeling, application security reviews, and building security controls into the software development life cycle (SDLC). Mr. Sethi is a frequent guest speaker and instructor at several national conferences. He has written articles for Security Focus and the Web Application Security Consortium (WASC), and has been quoted as an expert in application security for ITWorldCanada and Computer World. At Security Compass, Rohit teaches hundreds of students various topics on web application security in cities across North America. He has also managed and performed extensive threat analysis, source code reviews, and penetration testing for clients in financial services, utilities, telecommunications and healthcare. He is often consulted for his dual expertise in information security and software engineering. W53 Windows Incident Response - SOLD OUT (Location: Breakers I)As the sophistication and threats caused by malicious attacks continue to increase, there is a need for incident responders to increase their knowledge and broaden their skills. MANDIANT's Incident Response course is specifically designed for information security professionals and analysts who respond to computer security incidents. This hands-on class uses lab exercises to cover the different phases and activities in the Incident Response process. Students will learn how to build Incident Response toolkits and automated scripts. They will also acquire process memory from suspicious binaries running in the Windows operating system. The final exercise will be performing a live response on a compromised Windows system to collect the volatile evidence present on a live system prior to the system being powered down. Course Outline
Who Should Attend
You Will Learn
Speaker - Dan McWhorter, Director, Mandiant
Speaker - Kristopher Harms, Senior Consultant, MANDIANT
Kris Harms is a Senior Consultant at Mandiant with six years experience in computer security and incident response. He has extensive experience conducting large scale incident investigations for Fortune 100 companies, e-commerce sites and financial institutions. He has also supported multiple counter-intelligence investigations at several government entities. Mr. Harms has lead investigations and conducted evidence discovery for several multi-million dollar litigations. These investigations brought attention to the lack of published information on System Restore Points, leading to Mr. Harms? authoring of ?Forensic Analysis of System Restore Points in Windows XP?, and the creation of Mandiant?s Restore Point Analysis Tool. The Restore Point Analyzer provides forensic examiners an understanding of the content found within System Restore Points which are frequently overlooked as a source for data. The article was recently published in the International Journal of Digital Investigation. Prior to joining Mandiant, Mr. Harms worked for SRA International and played a key role as an Information Assurance Engineer for the Government Accountability Office. During this time, he became the technical lead for the development and maintenance of the agency?s intrusion detection and incident response capabilities. Mr. Harms was also the technical lead for workstation security, providing secure solutions for auditors and support staff while on-site and off-site. This program included leading a successful rollout of agency-wide personal firewalls which incorporated never before implemented 802.1x capabilities. A frequent industry speaker and instructor, Mr. Harms has appeared on the CBS News program 60 Minutes and PBS?s Wealth and Wisdom. Mr. Harms holds a Bachelor of Arts degree in Applied Science and Technology from The George Washington University. Workshops
Building Magnificent Technical Presentations (Location: Breakers C)Soft Skills Development for the technical professional is often overlooked and underestimated. Like a computer system requiring both hardware and software to provide system benefits, technical professionals need hard skills and soft skills in their Professional Development. This Workshop provides an entertaining and informative set of practical tips and tricks that technical presenters can incorporate and addresses traps that they can fall prey to. This is a practical approach to integrating commonly used tools and improving both the presentation creation and delivery of technical topics. The ability to build clear technical messages and to communicate those messages is as important as the message itself. You will build magnificent technical presentations from now on! Course Outline Who Should Attend IS/IT technical staff and managers, integrators, systems engineers and technical marketing personnel. Anyone who wants to understand more about how one can create and present technical topics effectively from someone who has learned making every mistake in the book yet maintains a successful storage networking education business. You Will Learn Improved presentation creation and delivery skills using real world, personal examples of "what to do? and "what not to do?. Instructor - Howard Goldstein, President, HGAI
Howard A. Goldstein, Founder Howard Goldstein Associates, Inc. Howard Goldstein has over 30 years' experience in storage, data and telecommunications networking. His background includes positions in technology, management and education with practical technical experience in architecture, design, planning, implementation and operations. His technical focus ranges across various storage network architectures and products including IP storage, iSCSI, SCSI, Serial Attached SCSI, Serial ATA, Fibre Channel, TCP/IP, Gigabit Ethernet, Infiniband, PCI, PCI-X, PCI Express and others. Goldstein holds a B.S. in Computer Science from the University of Massachusetts and an M.S. in Telecommunications from Pace University. He is a frequent speaker at Interop and Storage Networking World. He founded Howard Goldstein Associates, Inc. an Education & Technology Company offering instructor led training. Visit www.hgai.com. He provides in-depth skills with his technology-specific classes. His job task approach in his Storage Networking Planning, Design, Performance and Troubleshooting classes provides the skill level required to perform specific job roles in the Storage Networking industry today. Howard Goldstein has expertise in many aspects of the human side of technology offering innovative consulting and education services on Professional Vitality and Career Development, Adult Learning, and Presentation Development & Delivery Techniques. Howard believes that content and context delivery is as important as content development and is a master of both. Goldstein is an active member of the Storage Networking Industry Association and serves on the SNIA Education Committee. He has helped develop the SNIA Certification Program as well as other SNIA Education initiatives. He has been active in the publications world as technical editor of Building Storage Networks and Resilient Storage Networks. Instructor - Lesa King, Author/Chief Evangelist, iStockphoto.com Lesa Snider King is on a mission to teach the world to create?and use!?better graphics. She?s a stock photographer and chief evangelist for iStockphoto, author of Graphic Secrets for Business Professionals (2007 Lynda.com) and founder of the creative tutorial site GraphicReporter.com. Lesa is also a Photoshop and Ele | |||||
