Cloud Security Alliance Summit
Cloudersize: A cardio, strength & conditioning program for a firmer, more toned *aaS
CLoud Security Alliance Summit
Cloudy with a chance of miss-information
Cloud Security Alliance Summit
CSA Application Security Findings
Cloud Security Alliance Summit
Security and compliance in the Amazon cloud
Cloud Security Alliance Summit
Hacking the Hypervisor 2010
Cloud Security Alliance Summit
The Cloud is Made of Software
Cloud Security Alliance Summit
The "Unpanel Royale" : The Yin and Yang of Cloud Abuse
MyTwitFace is a social networking service. Militant head of security buys Ambiguous Manage monitoring software for the company to monitor every employee’s laptop, but the software is exploitable (similar to Lower Marion school software, Absolute Manage).
Coder on open source competitor hacks into the CEO's computer, and captures video/screenshot, and then exposes CEO's personal life in an embarrassing way via chat roulette - plus CEO is exposed as writing he does not care about his user's privacy. Lots of opportunity for funny videos and photos.
Information passed to a journalist. The CEO reads article, call local FBI, but too small a case. Then calls REACT task force, now this a priority, and journalist is raided, computers seized.
Prosecution for 2511 (wiretap), 1030 (CFAA). Issues are wiretap act via-a-vis audio, video, for profit of 1030 in context of open source, and screen shot wiretap issue.
Motion to suppress raided computers, asking for exclusion (fails).
MyTwitFace is a social networking service. Militant head of security buys Ambiguous Manage monitoring software for the company to monitor every employee’s laptop, but the software is exploitable (similar to Lower Marion school software, Absolute Manage).
Coder on open source competitor hacks into the CEO's computer, and captures video/screenshot, and then exposes CEO's personal life in an embarrassing way via chat roulette - plus CEO is exposed as writing he does not care about his user's privacy. Lots of opportunity for funny videos and photos.
Information passed to a journalist. The CEO reads article, call local FBI, but too small a case. Then calls REACT task force, now this a priority, and journalist is raided, computers seized
Prosecution for 2511 (wiretap), 1030 (CFAA). Issues are wiretap act via-a-vis audio, video, for profit of 1030 in context of open source, and screen shot wiretap issue.
Motion to suppress raided computers, asking for exclusion (fails).
The information security profession is becoming increasingly competitive. In the employment market place of the future, certifications and education alone will not be enough to ensure achievement of your long term career goals. The increasing popularity of the profession and the competence of your competition will require that you take the reins of your career.
As companies focus more on profits and revenues, they are diverting resources away from the development of their employees. This attitude has greatly impacted the shared loyalty between employee and employer. In the future, the more effective you are in the management of your information security career, the greater the likelihood that you will achieve professional satisfaction. In essence, your career will be your business, and you will be the CEO.
The goal of this session will be to provide you with a framework for managing your information security career. By relating the different components of career management to traditional business functions, you will get a detailed understanding of how your career should be managed and how you can move past your peers by more than just luck. Subjects covered will include career planning, career investments, effective career marketing and branding, position selection and compensation negotiation.
You will leave the session with a solid foundation to enable you to better achieve your long term career goals and increase your satisfaction with both your current job and with the jobs you select in the future.
In this unique two hour guided session, The InfoSecLeaders, Mike Murray and Lee Kushner will provide Black Hat attendees with an open forum to ask questions relating to the management of their own information security career. The information shared will be pulled from their real world experiences in coaching and advising information security professionals on career related topics over the past decade as well as the questions they have received and answered in their Career Advice Tuesday column on their InfoSecLeaders blog.
Since the audience drives the program, questions will range across the entire gamut of all things that concern the Blackhat attendee and their career as an information security professional. Topics will include career planning, position selection, effective networking and personal branding techniques, and analysis of the information security employment market. In addition, tips will be provided on the topics of resume preparation, interviewing techniques, compensation negotiation and employee/employer relations.
This session is designed to provide Black Hat attendees with an alternative from the highly technical presentations. There will be an open door policy and is designed for attendees to have their personal career questions answered. Attendees can stay for 10 minutes or the entire 2 hours.
The goal is to deliver career content that the Black Hat attendees can apply and utilize to improve their personal information security career.
