News

The next chapter meeting will be on Tuesday April 4th. Registration is at 10:30 am and the meeting starts at 11:00 am and lunch will be at noon.

John Pollack, Senior Sales Engineer at Gigamon, will present ‘Harnessing the Power of Metadata for Security’. This presentation will cover; The Big Data Problem in Security, Disrupting the Attacker Kill Chain, the Case for Metadata, an example of a Metadata Engine and Consumers of Metadata.

John is a seasoned technology professional with extensive experience working with organizations ranging from Small/Medium Enterprises to Fortune 500 companies in all business verticals. He works with companies to design and implement Visibility Fabric Platforms integrating Security, Network and Application Performance, and Virtual/Cloud based solutions.

We’ll take a break around noon to grab some lunch and then Joe Wynn, President of WynnSecure, LLC and Co-founder, CEO of Seiso, LLC. will present ‘Improving Your Security Program Success with a Security Management Framework

In this session we will discuss methods for improving and running a successful security program.  A program has a hard chance of being successful if it isn’t funded.  You are not going to obtain funding if you can’t communicate to management what you need to successfully execute the security functions.  But that won’t be enough.  You also have to be able to explain what is at risk of not getting done (and probably isn’t getting done).  Finally, you will need to ensure that risks are appropriately documented and you have a way for organizational leadership to know the risks they are accepting and what risks they want to invest in.

We will talk about a way to document your security management framework to ease your efforts in demonstrating your program.

Joe founded WynnSecure, LLC in early 2016 and co-founded Seiso, LLC in 2017 to provide information security and Chief Information Security Officer (“CISO”) services to organizations of all sizes.  He is responsible for the delivery of executive level information security strategy.  He has held positions of CISO in the energy and higher education sectors where he built service-based and business-strategy aligned information security programs.

Joe has over 25 years of experience in information technology and has specialized in building information security programs, compliance, and audit and for the past 20 years.  Joe holds a BS in Computer Science from Duquesne University, a Master’s degree in Public Management at Carnegie Mellon University, and has a CISSP certification.

After the presentation we will have the drawing for $50 AMEX gift card and lunch. The winner must be present to claim the prize or we will redraw.

There will be 2 CPE given to attendees of the lunch meetings.

Meeting location: The Gulf Tower; Gulf Theater. 707 Grant Street on the 3rd floor.

Cost: $10 for members of AITP, ARMA, InfraGard, ISACA, ISC2, ISSA, OWASP, Steel City InfoSec and TRCPA with advance registration
$15 for non-members with advance registration
$5 for students with advance registration

To register in advance for this meeting contact Mike Sotace at mpsotace@edmc.edu or phone (412) 995-7342.

Deadline for advance registration is Friday March 31st, there is an extra $5.00 charge for registration after this date.

March Presentation

The March presentation, Information Security Law Update, by Dave Reis, have been uploaded on the Archive page

Forensic Fridays

Digital Forensics in the Courts
A Legal and Technical Update

Friday, March 24, 2017

1 – 4:30 p.m.
Room 204 | Duquesne University School of Law

(and ONLINE)

The evidence in today’s civil and criminal cases – both of a routine nature and as “smoking guns” – is increasingly digital. From smartphones and tablets to social media and the cloud to what is now being referred to as the “IoT,” or “Internet of Things,” the volume and importance of such evidence continues to grow exponentially.

This afternoon seminar will explore current technical, practical and legal issues in locating and acquiring digital data and meeting requirements for its admissibility in court. Speakers will include attorney David G. Ries of Clark Hill, PLC and digital forensic expert Brett Creasy of bit-x-bit, along with academic and law enforcement speakers.

This program is approved by the Pennsylvania CLE Board for 3 hours of substantive CLE credit.

Registration

Register to attend in Person

Register for Distance Learning Program

Mike Sotace, CBCP, CISSP
Security Analyst III
Education Management Corp.
1500 Penn  Ave.
Pittsburgh Pa. 15222

(412) 518-4004

The next chapter meeting will be on Tuesday February 7th. Registration is at 10:30 am and the meeting starts at 11:00 am and lunch will be at noon.

Our first presenter will be Will Morton is a Sales Engineer with Gemalto, Inc. Mr. Morton will present ‘Authentication Technology…think of it as Authentication 101.

Will Morton is a Sales Engineer with Gemalto, Inc where he specializes in their IDP and Authentication product lines. In his current role, Will works with clients to help secure their networks by demonstrating how Gemalto’s products can be leveraged effectively. Will has 5+ years of IT and IT Security experience gained in IT Consulting, Telecommunications/ISP (Cox Communications), and IT Security Sales.

Will is a security enthusiast and holds the following certifications C|EH, CompTIA A+/Net+/Security+..

We’ll take a break and grab some lunch before our next presenter, Ray Pascoe. who is participant in our non-vendor presentation contest. Ray will present ‘Steps to a Healthy IT Lifestyle, Small Steps in the Right Direction’.  In this session we will discuss a couple tips for better managing infrastructure and applications.   Focus will be from a security and audit perspective.  Just like life, small steps can and do lead to healthy lifestyle changes. It’s hard to make big changes in life. The energy and time commitment just may be too great. The problem often isn’t knowing what to do; it’s about the daunting task of just getting it done. So why not approach it somewhat differently? Forget about grand goals. Instead, aim to clean up the contents of specific libraries, directories or catalogs. Pick a couple tuning changes, and see what benefit they derive.  Little tips like these can make a big difference over time.

Raymond Pascoe is a systems architect with HM Health Solutions in Pittsburgh, an Information technology subsidiary of Highmark Health.  He has been involved with information technologies for over 30 years, and specializes in security architecture in a multi-systems datacenter environment; involved with risk assessments, compliance, continuous improvement, business resiliency, and information security architecture.

A survey to rate Ray’s presentation will be handed out at the registration table before the meeting. Please make sure you complete the survey and turn it in afterwards. There is a $500 prize for the winner of our contest.

After the second presentation we will have the drawing for $50 AMEX gift card and lunch. The winner must be present to claim the prize or we will redraw.

There will be 2 CPE given to attendees of the lunch meetings.

Meeting location: The Gulf Tower; Gulf Theater. 707 Grant Street on the 3rd floor.

Cost: $10 for members of AITP, ARMA, InfraGard, ISACA, ISC2, ISSA, OWASP, Steel City InfoSec and TRCPA with advance registration
$15 for non-members with advance registration
$5 for students with advance registration

To register in advance for this meeting contact Mike Sotace at mpsotace@edmc.edu or phone (412) 995-7342.

Deadline for advance registration is Friday February 3rd, there is an extra $5.00 charge for registration after this date.

Mike Sotace, CBCP, CISSP
Security Analyst III
Education Management Corp.
1500 Penn  Ave.
Pittsburgh Pa. 15222

(412) 518-4004

AITP Greater Wheeling Chapter on Wed Jan 11th. John Sterrett is a nationally known SQL Server expert.

For details and to register see https://www.facebook.com/AITPWheeling/posts/10155056823173109:0.

Click on link below for Dave Baker’s full 68-slide presentation.

hca-aitp-who-are-you-workshop-12-16

The next chapter meeting will be on Friday December 2nd. Registration is at 10:30 am and the meeting starts at 11:00 am and lunch will be at noon. There will be more details on the presentations and presenters as I received them.

Our first presenter is the second participant in our non-vendor presentation contest, Charles Wood, Assistant Professor of Information Systems Management at Duquesne University, will be doing a presentation on Steganography.

A survey to rate Mr. Wood’s presentation will be handed out at the registration table before the meeting. Please make sure you complete the survey and turn it in afterwards. There is a $500 prize for the winner of our contest.

We will break for some lunch and during that time a Tom Bulthaupt, Senior Security Engineer from our chapter sponsor Sophos, will present  “The Threat Landscape”. Tom will present and discuss the current security threats, their impacts, and the required defense posture to combat them.

After the second presentation we will have the drawing for $50 AMEX gift card and lunch. The winner must be present to claim the prize or we will redraw.

There will be 2 CPE given to attendees of the lunch meetings.

Meeting location: The Gulf Tower; Gulf Theater. 707 Grant Street on the 3rd floor.

Cost: $10 for members of AITP, ARMA, InfraGard, ISACA, ISC2, ISSA, OWASP, Steel City InfoSec and TRCPA with advance registration
$15 for non-members with advance registration
$5 for students with advance registration

To register in advance for this meeting contact Mike Sotace at mpsotace@edmc.edu or phone (412) 995-7342.

Deadline for advance registration is Wednesday November 30th, there is an extra $5.00 charge for registration after this date.

 

Mike Sotace, CBCP, CISSP
Security Analyst III
Education Management Corp.
1500 Penn  Ave.
Pittsburgh Pa. 15222

(412) 518-4004