Menu

Monthly Meeting - August 28, 2017

Security Architecture: How to move projects forward without getting pwned

Register for Monthly Meeting

Presenter: Aaron Tikeepe

 

Description:

When discussing architecture, security professionals tend to focus on the more technical aspects of a project: which firewall to buy, what sort of encryption is in use, etc. These technical considerations are often the easiest part of a project. This presentation will cover the types of projects a security architect may encounter, specific challenges associated with each, and will provide a high level methodology for helping move projects forward.

Bio:

Aaron Tikeepe is an IT Security Architect at Kum & Go, responsible for IT Security and PCI compliance. He is currently dual enrolled in Upper Iowa's MBA program and Iowa State's Masters in Information Assurance program. When he is not studying, Aaron enjoys spending time with his family, participating in CTFs, and playing guitar.

Where:

FBL Financial
5400 University Ave
West Des Moines, IA 50266

Read more...

Monthly Meeting - July 24, 2017

TLS in practice including the road to v1.3

Download Slide Deck

Presenter: Ben Schmitt

 

Description:

Even though TLS remains one of the leading solutions to provide confidentiality and integrity of data moving across networks, it has a dubious past. We will do a quick review of its predecessor (SSL) and discuss TLS in present times including learning from our past mistakes. More specifically, we will discuss the move to v1.2 and what v1.3 has to offer for speed, implementation and perhaps most importantly, confidentiality. Best practices, analysis, evaluation criteria (including what we should expect from solutions) and cryptographic options will be covered.

Bio:

Ben Schmitt is the VP of Information Security for Dwolla leading the company’s security team and internal IT operations. Prior to this role, Ben held the position of Global Director, IT Security & Compliance at the Danfoss Group responsible for Network and Application security with a focus on ERP systems. Ben started his InfoSec career with TDS Telecom covering ISP and Enterprise security as a Security Architect.

Where:

FBL Financial
5400 University Ave
West Des Moines, IA 50266

Read more...

Monthly Meeting - June 26, 2017

Everybody says it.....Why defense in-depth is so important

 Download presentation slides here.

Presenter: Brad Beltman

 

Description:

Everybody recommends "defense in-depth", and for good reason. Many orgs implement this in the form of products: firewalls, WAFs, IPS, SIEMs, etc. These are all great things, but what are often overlooked are the details in securely configuring applications and systems. This presentation is a case study of how lower-severity configuration issues can be combined into one big vulnerability, using a real-life application as an example.

Bio:

Brad is a consultant with SecureWorks doing full time web application penetration testing.

He has a masters degree in Information Assurance from Dakota State University. Certifications include OSCP, GWAPT, GPEN, GCIH, GCED, and CISSP. When not on a computer, Brad is usually tormenting his wife, playing with his two kids, or playing guitar.

Where:

FBL Financial
5400 University Ave
West Des Moines, IA 50266

Read more...

Monthly Meeting - May 22, 2017

Managing Incident Response Teams

 

Presenter: Lieutenant Colonel Lawrence N. Yazzie

 

Description:

Lieutenant Colonel Lawrence N. Yazzie will be talking about Managing Cyber Incident Response Teams

Bio:

Lieutenant Colonel Lawrence N. Yazzie is the Commander of the 168th Cyber Operations Squadron, 132nd Operations Group, 132nd Wing, Des Moines Air National Guard Base, Iowa.  

Colonel Yazzie graduated from Window Rock High School, Fort Defiance, Arizona which is located on the Navajo reservation.  He entered the United States Air Force Academy Class of 2000.  As a recruited athlete, he played four years of Division I basketball and graduated from Cadet Squadron “Tiger” 10.  After graduation, he spent nearly eight years on active duty stationed at the United States Air Force Academy and Peterson Air Force Base, Colorado, Luke Air Force Base, Arizona, and deployed twice to Kyrgyzstan and Kuwait, supporting Operations ENDURING FREEDOM and IRAQI FREEDOM.  Colonel Yazzie joined the Iowa National Guard in the summer of 2008 and was selected for command of the 132nd Communications Flight.  While serving as a drill status guardsmen in the Iowa Air National Guard, he worked for Proctor & Gamble Iowa City Plant as a Process Engineer and Wells Fargo Home Mortgage as an Information Technology Project Manager.  In 2015, he took command of the 168th Cyber Operations Squadron.  

Colonel Yazzie is an outstanding leader with 16 years of experience in information technology and manufacturing for the United State Air Force and two Fortune 500 companies.

Where:

FBL Financial
5400 University Ave
West Des Moines, IA 50266

Read more...

Monthly Meeting - April 24, 2017

Proactive Security: Building A Successful Threat Hunting Program

 

Presenter: Chris Randle

 

Description:

Understanding the key components necessary to build a successful threat hunting program starts with visibility, the appropriate tools and automation. Skilled, experienced analysts, engineers and incident responders with analytical minds who can apply concepts and approaches to a variety of different toolsets are also instrumental to the process. Join Raytheon Foreground Security as we describe and discuss some of the most common challenges, recommended best practices, and focus areas for achieving an effective threat hunting capability based on lessons learned over the past 15 years.

Bio:

Chris Randle is currently a Principal Solutions Architect for Raytheon Foreground Security and has over 15 years of information security and leadership experience. In this role, Mr. Randle is a trusted advisor on large and complex integrated information security projects. He is responsible for supporting Raytheon Foreground's sales team and bringing the best value to services presented to customers. Additionally, Mr. Randle focuses his skills and experience on understanding customers' industries, business environments and information security needs to tailor the most appropriate solutions. He holds a MIS/CS degree from the University of Alabama, a MBA from Webster University as well as CISSP, CISA, CISM and CRISC certifications.

Where:

FBL Financial
5400 University Ave
West Des Moines, IA 50266

Read more...