
2012 PRESENTATIONS
The following presentations are available from the GFIRST 2012 Conference.
Tuesday, August 21 | 10:30 a.m. - 11:30 a.m.
- Approaching Real-Time: Threat Information Sharing with OpenIOC
Douglas Wilson, Principal Consultant, MANDIANT
Tuesday, August 21 | 1:00 p.m. - 2:00 p.m.
- Bonded with Botnets - Hard to Capture the Beast
Dr. Richard Enbody, Associate Professor, Michigan State University
Peter Greko, Security Researcher and Consultant, Sypris Electronics
Aditya Sood, Senior Security Practitioner, SecNiche Security/Michigan State University - Hacking Your DNS Infrastructure for Security and Counter Intelligence
Scott Janik, Cyber Security Engineer, SRA International, Inc. - Demystifying Continuous Monitoring - Real World Solutions
Douglas Parry, PMP, NSA-IAM/IEM, Agriculture Security Operations Center, OCIO, USDA
Andrew Rikarts, Enterprise Visibility Program Manager, U.S. Department of Veterans Affairs
Noah Salzman, Senior Product Manager, BigFix, IBM, Inc.
Josh Stegall, Federal Business Development, BigFix, IBM, Inc.
Roy Stephan, Director, IT Architecture and Engineering, Intelligent Decisions - CERT Secure Coding Standards and SCALe
Will Dormann, Vulnerability Analyst, CERT
Tuesday, August 21 | 2:30 p.m. - 3:30 p.m.
- Vulnerability Discovery Through Fuzzing with the CERT BFF and FOE
Will Dormann, Vulnerability Analyst, CERT - Measuring Software Security
Joe Jarzombek, Director, Software Assurance Program, DHS
Robert Martin, Senior Principal Engineer, MITRE Corporation
Tuesday, August 21 | 4:00 p.m. - 5:00 p.m.
- CyberSecurity: Continuous Monitoring and Real Time Risk Scoring
Christopher Poulin, Former CISO, Q1 Labs an IBM Company and IBM Security Systems Strategist - Automated Intelligence Sharing to Improve Cybersecurity
Dr. Peter Fonash, Chief Technology Officer, Cybersecurity and Communications, Department of Homeland Security
Tom Millar, Chief, Communications, US-CERT
Kathleen Moriarty, GRC Strategy, Office of the CTO, EMC Corporation
Dr. Phyllis Schneck, VP & CTO, Global Public Sector, McAfee, Inc.
Richard Struse, Deputy Director, Software Assurance, National Cyber Security Division, Department of Homeland Security - Malware Analytics at Stream Rate: Enhancing Analyst Productivity While Reducing Threat Exposure
Dr. Harold Jones, CTO, Advanced Programs, BAE Systems
Wednesday, August 22 | 10:30 a.m. - 11:30 a.m.
- The CERT Top 10 List for Winning the Battle against Insider Threats
Dawn Cappelli, Technical Manager, CERT Program - "Capture The Flag" Data Capture Experiences
Paul Conrad, Member of the Technical Staff, CERT
George Jones, Member of the Technical Staff, CERT - Big Data, Collaborative Incident Response and Shared Situational Awareness in the Real World
Tom Millar, Chief, Communications, US-CERT
Wes Young, Principal Security Engineer, Research & Education Networking Information Sharing and Analysis Center (REN-ISAC) at Indiana University - Hey, You, Get Off of My Cloud!: Negotiate Your Cloud Contract to Get What You Want and Mitigate Risk
Sabrina Segal, Counsel to the Inspector General, Assistant Inspector General for Investigations, U.S. International Trade Commission
Wednesday, August 22 | 1:00 p.m. - 2:00 p.m.
- Analysis of SOC Incidents and Continuous Monitoring of Threat
Katsutoshi Ishisoko, Threat Manager, Security Operations Center, NASA
John Wang, Security Architect, Agency Incident Response Manager (Acting), NASA - Federal Incident Reporting Requirements and Handling Guidelines
Paul Cichonski, Information Technology Specialist, National Institute of Standards and Technology (NIST)
Tom Millar, Chief, Communications, US-CERT
Wednesday, August 22 | 2:30 p.m. - 3:30 p.m.
- Network Situational Awareness for Municipal Government
Timothy Shimeall, Senior MTS, Software Engineering Institute - Enabling the Trusted Automated eXchange of Indicator Information (TAXII)
Tom Millar, Chief, Communications, US-CERT
Richard Struse, Deputy Director, Software Assurance, National Cyber Security Division, Department of Homeland Security - CloudCERT: An Introduction and Overview to Defending the Cloud Computing Ecosystem
John Howie, Director, CloudCERT - Risk Management in 2020 - From Continuous Monitoring to the Next Generation of Risk Scoring
Kurt Van Etten, Director, Product Management, Symantec - Are We Really in a CyberWar? - The Real Dangers of Hype
Julie Mehan, VP, Cyber Security, Lunarline, Inc.
Wednesday, August 22 | 4:00 p.m. - 5:00 p.m.
- Securing the Cloud - A Cloud Provider's Perspective
Mario Santana, VP, Secure Information Services, Terremark, A Verizon Company - Analytical Tool Evaluation Framework: Providing Essential Insights on Analytical Tools and Data
Timothy Shimeall, Senior MTS, Software Engineering Institute - NSTIC Realized - The Future of Cloud Security
Jennifer Nowell, Director, Federal Healthcare & Government Solutions, Americas Public Sector, Symantec
Thursday, August 23 | 9:00 a.m. - 10:00 a.m.
- The Mobile Exploit Intelligence Project
Dan Guido, Co-Founder and CEO, Trail of Bits - OPFOR 4Ever
Tim Maletic, Senior Security Consultant, Network Penetration Testing, Trustwave SpiderLabs
Christopher Pogue, Managing Consultant, Incident Response and Digital Forensics, Trustwave SpiderLabs
Thursday, August 23 | 10:30 a.m. - 11:30 a.m.
- Massive-Scale Event Data Collection in Threat Management for Government Agencies
Joe Gottlieb, President and CEO, Sensage - Enhancing Cybersecurity Awareness and Resiliency Across the 18 Critical Infrastructure and Key Resource (CIKR) Sectors by Collaborating with the National Cyber Security Division's (NCSD) Critical Infrastructure Protection Cyber Security (CIP CS) Program
Thad Odderstol, Director, Critical Infrastructure Protection Cyber Security (CIP CS) Program, DHS - How Stuxnet Saved the SmartGrid - Lessons Learned in the Fight for Critical Infrastructure Security
Jose Iglesias, Vice President, Education and Enablement Services, Symantec Corporation - "Why Doesn't My Badge Let Me in My Building? It Worked Yesterday!"
John DiDuro, FPKIMA Security Team Lead, Protiviti
India Donald, FPKIMA Security Analyst, Protiviti
Thursday, August 23 | 1:00 p.m. - 2:00 p.m.
- Emerging Threat Landscape: 2012 and Beyond
Jeff Boerio, Senior Information Security Specialist, Cyber Incident Response Team, Information Risk and Security Group, Intel Corporation
Sean McCracken, Technical Program Manager, Information Technology - Information Sharing and Analysis Center (IT-ISAC) - Bringing Together Emergency Services Sector (ESS) Jurisdictions and Stakeholders to Strategically and Uniformly Address Cyber Risk
Sabrina Hammouda, National Protection and Programs Directorate, DHS
Jason Gates, Critical Infrastructure Protection Cyber Security Program, DHS - Operationalizing Data: An Intelligent and Systematic Approach
Gerald Derrick, Technical Manager, General Dynamics Advanced Information Systems
Cory Mazzola, Technical Manager, General Dynamics Advanced Information Systems
Thursday, August 23 | 2:30 p.m. - 3:30 p.m.
- Leveraging Governance to Enable the Transition to Continuous Monitoring
Jamie Miller, Senior Manager, MBL Technologies
Friday, August 24 | 8:00 a.m. - 12:00 p.m.
- How to Explain Today's Cyber Threats and Challenges to the Non-Technical Members of Your Organization
Steve Winterfeld, Cyber Technical Director and Senior CyberWarrior Instructor, TASC
Archived Presentations
GFIRST 2011GFIRST 2010