ISSA April Meeting

The next chapter meeting will be on Tuesday April 4th. Registration is at 10:30 am and the meeting starts at 11:00 am and lunch will be at noon.

John Pollack, Senior Sales Engineer at Gigamon, will present ‘Harnessing the Power of Metadata for Security’. This presentation will cover; The Big Data Problem in Security, Disrupting the Attacker Kill Chain, the Case for Metadata, an example of a Metadata Engine and Consumers of Metadata.

John is a seasoned technology professional with extensive experience working with organizations ranging from Small/Medium Enterprises to Fortune 500 companies in all business verticals. He works with companies to design and implement Visibility Fabric Platforms integrating Security, Network and Application Performance, and Virtual/Cloud based solutions.

We’ll take a break around noon to grab some lunch and then Joe Wynn, President of WynnSecure, LLC and Co-founder, CEO of Seiso, LLC. will present ‘Improving Your Security Program Success with a Security Management Framework

In this session we will discuss methods for improving and running a successful security program.  A program has a hard chance of being successful if it isn’t funded.  You are not going to obtain funding if you can’t communicate to management what you need to successfully execute the security functions.  But that won’t be enough.  You also have to be able to explain what is at risk of not getting done (and probably isn’t getting done).  Finally, you will need to ensure that risks are appropriately documented and you have a way for organizational leadership to know the risks they are accepting and what risks they want to invest in.

We will talk about a way to document your security management framework to ease your efforts in demonstrating your program.

Joe founded WynnSecure, LLC in early 2016 and co-founded Seiso, LLC in 2017 to provide information security and Chief Information Security Officer (“CISO”) services to organizations of all sizes.  He is responsible for the delivery of executive level information security strategy.  He has held positions of CISO in the energy and higher education sectors where he built service-based and business-strategy aligned information security programs.

Joe has over 25 years of experience in information technology and has specialized in building information security programs, compliance, and audit and for the past 20 years.  Joe holds a BS in Computer Science from Duquesne University, a Master’s degree in Public Management at Carnegie Mellon University, and has a CISSP certification.

After the presentation we will have the drawing for $50 AMEX gift card and lunch. The winner must be present to claim the prize or we will redraw.

There will be 2 CPE given to attendees of the lunch meetings.

Meeting location: The Gulf Tower; Gulf Theater. 707 Grant Street on the 3rd floor.

Cost: $10 for members of AITP, ARMA, InfraGard, ISACA, ISC2, ISSA, OWASP, Steel City InfoSec and TRCPA with advance registration
$15 for non-members with advance registration
$5 for students with advance registration

To register in advance for this meeting contact Mike Sotace at or phone (412) 995-7342.

Deadline for advance registration is Friday March 31st, there is an extra $5.00 charge for registration after this date.

March Presentation

The March presentation, Information Security Law Update, by Dave Reis, have been uploaded on the Archive page

Forensic Fridays

Digital Forensics in the Courts
A Legal and Technical Update

Friday, March 24, 2017

1 – 4:30 p.m.
Room 204 | Duquesne University School of Law

(and ONLINE)

The evidence in today’s civil and criminal cases – both of a routine nature and as “smoking guns” – is increasingly digital. From smartphones and tablets to social media and the cloud to what is now being referred to as the “IoT,” or “Internet of Things,” the volume and importance of such evidence continues to grow exponentially.

This afternoon seminar will explore current technical, practical and legal issues in locating and acquiring digital data and meeting requirements for its admissibility in court. Speakers will include attorney David G. Ries of Clark Hill, PLC and digital forensic expert Brett Creasy of bit-x-bit, along with academic and law enforcement speakers.

This program is approved by the Pennsylvania CLE Board for 3 hours of substantive CLE credit.


Register to attend in Person

Register for Distance Learning Program

Mike Sotace, CBCP, CISSP
Security Analyst III
Education Management Corp.
1500 Penn  Ave.
Pittsburgh Pa. 15222

(412) 518-4004