 |
Business Technology Briefings
Industry keynotes and case studies focused on the latest technologies and their impact on innovation, service delivery and business success within the enterprise. Note: These sessions are free to attend.
Note: These sessions are free to attend.
TOPICS
Inaugural Address: Time: 9:15am
Mohammed Gheyath, Executive Director Technology Development Affairs, TRA
Opening key note: Communicating the value of information security
Time: 9:30am - 9:45am
Join us for an interactive and informative opening session on clearly and accurately communicating the value of your security efforts to the rest of the C-level executives in your organisation. You'll emerge prepared to fully validate your security spending. This session will engage all participants for communication coaching and critique. You'll run through the organizational, communication and presentation skills you'll need, and learn best practices for clearly demonstrating the tangible business value of your information security and physical security initiatives.
Speaker:
Ahmad Almulla, VP-IT, DUBAL
Panel discussion: Stop Reacting. Manage People, Information and Risk
Time: 9:45am – 10:15am
You have to strive to achieve a balance with risk comprehension and management. How do you measure, communicate and agree upon definition of risks and the cost of those risks? How much risk are you and your management team willing to accept? What are the ways to measure and quantify risk, then communicate the nature of that risk? Drawing on their experiences panelists will share their perspectives on achieving that delicate balance.
This session will discuss:
- Understanding risk
- Ensuring collaboration between people, process and technology
- Security strategy and building policies that work
- The changing risk management landscape
- Security Metrics
Speaker:
Dr. Mustafa H. Qurban, Director, Computer Department, King Fahd Military Medical Complex, KSA
Eng Meshal Abdulla Binhussain, aeCERT Operations Manager
Emad Khatib, CIO, Emcredit
Bharat Raigangar, Country Head Security & Fraud (Risk)- Business Services, Middle East & South Africa, Royal Bank of Scotland (RBS)
Hossam Elkobrosy, Head of IT Infrastructure and IT Security Operations, National Bank of Abu Dhabi
Viji Mohan, Vice President, Head of Information Security, Abu Dhabi Commercial Bank
Industry keynote: Myth Busting: Is knowing your applications enough to secure them?
Time: 10:20am - 10:45am
Confusion, shock and panic are key scare tactics used to market and sell security solutions. The media hype around a breach or attack prompts many vendors to “diversify” their product portfolios to capitalise on the latest threat scare. Applications are a huge attack target – client-side applications, Web applications, social networking are all examples of applications being targeted right now. The session will examine some of the commonly attacked applications such as web and social networking applications. The session also attempts to understand whether knowing your applications is sufficient to prevent attacks on them?
Speaker:
Rohit Dhamankar, Director of Security Research (DV Labs) TippingPoint
Panel discussion: Collaborating for security
Time: 10:50am – 11:30am
This panel discussion brings together key National Computer Emergency Response Teams (CERT) from the UAE, Oman and Qatar to talk about how a regional collaborative approach helps raise the bar for security awareness in the region.
Panel members:
Tariq Abdulghaffar Mohammad Al Hawi, Director, aeCERT
Khalid N Sadiq Al-Hashmi, Cyber Safety and Security Executive Director, Q-CERT
Eng. Badar Ali Al-Salehi, Director Oman National CERT, Information Technology Authority (ITA)
11:30am - 11:45am Coffee break
Industry keynote: Managed Security Services – A Strategic View
Time: 11:50am - 12:15pm
Managed Security Services could indeed help organizations pull their security requirements together and hand over to experts to help safeguard their organisations. Understand why and how you can adopt and accordingly benefit from “Managed Security Services” concept from this session.
Speaker: Kamran Ahsan, Portfolio Architect, Managed Information Security Services, Injazat Data Systems
Speaker:
Kamran Ahsan, Portfolio Architect, Managed Information Security Services, Injazat Data Systems
Industry keynote: Security inside out
Time: 12:20pm - 12:45pm
When it comes to information security, doing nothing can cost organisations millions. But so can approaching information security piecemeal based on meeting specific regulatory requirements: SOX this week; PCI next month; HITECH next year. As recent breaches have shown, compliance with a specific law or regulation does not equate to security. In this session, you will learn how approaching information security holistically, adopting a comprehensive Security Inside Out strategy, and relying on proven integrated solutions will help ensure security, enable compliance, and save you time and money
Speaker:
Speaker: Alaa Fahmy, Sales Consulting Senior Manager , Oracle Middle East
Industry keynote: Beyond the GRC Hype – Putting the three letters into action
Time: 12:50noon - 1:15pm
Many have said that the emerging market for Governance, Risk and Compliance (GRC) solutions is the next ERM. In fact, the industry has speculated that successful GRC initiatives could well have alleviated the current credit crisis. This session will dive into the core of GRC -– the ability to manage GRC initiatives with the tools necessary to make the best decisions possible.
Speaker:
Priya Sirwani, IT Risk Manager, Emirates Group
LUNCH AND NETWORKING Time: 1:20pm - 2:00pm
Panel discussion: : Evolving enterprise attitudes toward IM and social networking
Time: 2:00pm – 2:30pm
Emerging technologies like Web 2.0 offer great opportunity for innovation and collaboration, but that opportunity comes with risk. Today's Web is dynamic. User-generated content and active threats expose employees and organizations to risks like lost productivity, regulatory non-compliance and data loss. The CSO has to coach executives and business owners on the importance of controls to mitigate risk. Therein lies the dilemma --how to capitalise on the opportunity presented by these new technologies while securing the organisation's employees and information? During this informative session, you can learn how to do just that.
Speaker:
Eng. Ahmad Hassan, aeCERT Monitoring and Response Team Leader
Mohammed Shah, Vice President Technology Infrastructure & Services, Knowledge Economic City Developer, KSA
Guruswamy Periyasamy, Manager - IT Security & Specialist Services, Emirates Group IT
Abdullah Al-Attas, Head of IT, SAMACO KSA
Lorna Trayan, Senior Information Security Specialist, IBM Internet Security Systems CEEMEA
Saeed Belhoul, Information Security Head, Dubai Islamic Bank
Industry keynote: The art of penetration testing
Time: 2:30pm - 2:50pm
Penetration Testing demonstrates how attackers can significantly impact a business and it is considered a very important exercise that helps validate the effectiveness of current security safeguards. Pen tests highlights risk to customer information, financial transactions, online applications and other critical business data and processes. This session will show us how Penetration testing Increases real-world perspective into hacker techniques and motivations and will focus on the Art of Ethical hacking and its linkage to vulnerability research. The session will also underline the efforts to achieve and maintain compliance with industry and government regulations through penetration testing.
Speaker:
Ragy Magdy, Regional Sales Manager , MENA, IBM Security Services – GTS
Industry keynote: TBC
Time: 2:55 pm - 3:15pm
Panel discussion: Understanding Business Continuity
Time: 3:20pm - 3:45pm
Business Impact Analysis (BIA) can help organisations plan better for inevitable process failures. Understanding the risk of failure on the business and the impact t may have on business continuity can help organisations comprehend and calculate levels of business risk. In this final panel we discuss how BIA helps you look at threats vulnerability, mitigation, and enabling a response framework and how that framework reduces risk to levels acceptable to management. This session will look at:
- Integrating BIA into the BC process
- Regulatory environment
- Critical processes
- Process interdependencies
- Process vulnerabilities
Speaker:
Hariharan Iyer, Head - Information Security & Business Continuity, Dubai Bank
Hazem Awni Jarar, CIO, The King Faisal Foundation, KSA
Abdulrahman Alonaizan, Assistant General Manager and Head of Business Continuity Management, Arab National Bank, Saudi Arabia
Vishwanath Nair, Emirates Group IT Continuity Manager
Alaa Fahmy, Sales Consulting Senior Manager, Oracle Middle East
Ali Alamadi, Incident Response and Threat Analyst, aeCERT
SECURITY STRATEGIST 2010 AWARDS Time: 4:00pm - 4:30pm
|
Tutorial
Session I : Identifying Applications and Attacks on Network (45 mins) 12:15pm - 1:15pm |
Speaker:
Speaker: Rohit Dhamankar, Director, DVLabs
This course offers a good theoretical and practical introduction to the development of effective intrusion detection and prevention strategies, with an emphasis on traffic identification via IDS/IPS signatures. Attendees will learn how to analyse raw network traffic, how to identify salient points in attacks, and how to effectively differentiate attack traffic from benign traffic. Practical exercises include developing signatures for live IDSes and seeing how those signatures block real attack traffic, capturing traffic, using popular exploit tools, attempting to evade IPS/IDS signatures, and using various network traffic analysis tools.
Highlights:
- A full overview of theoretical and technical aspects of traffic analysis, including overviews of the TCP/IP protocol stack and regular expressions, will be provided
- This will be a mini version of the course taught at Blackhat. Just enough to get someone’s hands dirty with the tools needed to identify traffic and patterns.
- Useful for all those people who are in need for responding in emergency times or just even watching the activities
Seats are limited. REGISTER NOW
(Reconfirmation of your attendance on the day of the event will be necessary for this session)
|
Tutorial
Session II: TUTORIAL WORKSHOP (30 minutes) 12:15pm - 12:45pm |
Speaker:
Sonia Singh, BC/DR Consultant Specialist, Injazat Data Systems
Business Continuity:
30 minutes
Every organisation today needs to not only prepare to handle disruptions to their business, but needs to ensure that processes and technology is in place to get them back in business as soon as possible.
Business Continuity Planning is fast emerging as a major practice area for regional organisations. However, executives still face challenges when it comes to drafting a strong BCP plan. This session will look at:
Highlights:
- Dealing with disruptions
- What does downtime mean to your business during the recession
- Aligning people and process
- Protecting your data
- Ensuring business information stays available
Outsourced security management could indeed help organizations pull their security requirements together and hand over to experts to help safeguard their organisations. Understand how you can benefit from Managed Services in this session.
Seats are limited. REGISTER NOW
(Reconfirmation of your attendance on the day of the event will be necessary for this session)
--> |
|