Beyond Google Hacking: Web Application Security in the Age of Google

Fri, 02 May 2008 00:00:00 CST

2008-05-14 None
Google Hacking is an acknowledged threat to web applications and sensitive data including credit card numbers, social security numbers and other types of private information. However, hackers now exploit powerful search engines in new ways beyond Google Hacking. Organizations seeking to bolster their enterprise security and comply with standards and regulations including the Payment Card Industry Data Security Standard (PCI DSS) need to understand how to protect against these attack types.

Join Amichai Shulman, CTO Imperva, as he demonstrates a broader set of the most dangerous web application threats in the age of Google. Mr. Shulman will also present security strategies and techniques to protect your organization against these attacks.

Topics that will be discussed include:

Google Hacking

Masking websites from search engines

Distributing attack vectors through Google and other search engines

Corporate Governance Through Optimisation Of Security

Thu, 01 May 2008 00:00:00 CST

2008-06-05 Vinopolis, Bank End, London
With the introduction of tighter governance measures such as data protection, corporate manslaughter, SOX and critical infrastructure businesses now have a greater duty of care towards their people, assets and data.

This half day afternoon seminar will give you a thorough overview of the security challenges that businesses like yours face. You will learn how to harness technology, converge physical and logical security, as well as how to:

Implement audits and risk assessments
Develop security policies and strategies
Optimise current resources and investment
Implement integrated electronic security solutions
Benefit from the latest security technology

There will be presentations from Prof. Martin Gill, Perpetuity Group, IBM, Imprivata and a case study from Air Products. Honeywell will also be demonstrating their full suite of integrated electronic security solutions.

Security Inside the Perimeter: Confronting the Gap Between Talking About the Threat and Doing Something About It

Thu, 01 May 2008 00:00:00 CST

2008-05-15 None
Most security and IT professionals agree that the corporate network

Applying Risk Analysis to Information Security & Compliance

Wed, 09 Apr 2008 00:00:00 CST

2008-05-16 None
Enterprises use risk management practices across the board, yet information security decisions are often driven by technology, compliance initiatives and the visibility of threats rather than by the need to continuously reduce risk and do so cost-effectively.

Michael Stiglianese, until recently the chief information risk officer at Citigroup, where he performed a variety of roles including CFO of several business units, will share his best-practices and experience in this live webcast, including:

The risk reduction framework for information security
Factors such as the level of risk, speed, weight and persistence of risk reduction and their effect on IT security
Areas of technology that provide rapid risk reduction, among them database security
How compliance-driven initiatives can be combined with the risk-based framework for achieving better overall risk reduction
We hope you can join us and take advantage of this

"Security Directions: 2008's Code-Red Security Issues for Protecting the Enterprise"

Wed, 09 Apr 2008 00:00:00 CST

2008-05-14 None

Green IT Summit 2008

Mon, 17 Mar 2008 00:00:00 CST

2008-05-13 The Forum
The ITWeb Green IT Summit 2008 will help you to frame and size the challenges, to understand their significance and to reinvigorate your own green IT agenda by:
Examining the role enterprise IT is playing within the green debate

Identifying the elements of a green IT strategy and highlight best practices

Positioning green IT issues clearly within the wider corporate responsibility agenda

Demonstrating business benefits from positive action in green IT

Reviewing IT capabilities needed to support enterprise-wide green initiatives

Exploring solutions to solving environmental challenges in data centres

Understanding future legislation that will regulate the environmental impact of ICT

Seminars To Offer Insight and Guidance into Sarbanes-Oxley Compliance

Wed, 29 Aug 2007 00:00:00 CST

2008-09-17 Forsgate Country Club, Monroe, NJ
The seminars will offer CEOs, Board and Audit Committee members, CFOs and Controllers, Directors of Internal Audit, CIOs and IT managers advice on how to prepare a tailored plan of action to achieve SOX 404 compliance using a top-down risk-based strategy. Issues to be covered during the presentations include:

Understanding the new developments of the SEC and PCAOBs new auditing standard, known as AS5.

Auditor expectations and how to gain their confidence.

IT Controls and technology aids to compliance.

Best practices in corporate governance.

Financial reporting and achieving cost-effective compliance.

The firms Chairman & Chief Executive Officer Thomas A. Basilo along with Executive Vice Presidents Ray Broek and Sumit Pal will be featured presenters. The event will also feature Roland Mosimann, President & Co-Founder of BI International.

SOX Essentials for Small Public Companies

Wed, 29 Aug 2007 00:00:00 CST

2008-08-28 None
Sarbanes Oxley Compliance is wreaking havoc on small business budgets. The overwhelming costs of SOX make it difficult for small companies to compete in a global marketplace. The SEC estimates that public companies are spending as much as $1.2 billion collectively per year to comply. As a result of those costs, smaller companies are seeing their profits shrink, which damages their stock price and puts them at risk.

In this presentation, Bob Benoit, President and Director of SOX Research, Lord & Benoit, LLC will look at the challenges and best practices of SOX compliance.

What will be covered?

Current regulatory environment ,Components of Sarbanes-Oxley Section 404, IT on Sarbanes-Oxley Section 404 compliance, Components of a SOX IT assessment, Effective remediation plans and follow through
The webinar will also cover the features and benefits of the cost effective MetricStream solution for SOX implementation.

ComplianceHome: SOX Events

Beyond Google Hacking: Web Application Security in the Age of Google

Corporate Governance Through Optimisation Of Security

Security Inside the Perimeter: Confronting the Gap Between Talking About the Threat and Doing Something About It

Applying Risk Analysis to Information Security & Compliance

"Security Directions: 2008's Code-Red Security Issues for Protecting the Enterprise"

Green IT Summit 2008

Seminars To Offer Insight and Guidance into Sarbanes-Oxley Compliance

SOX Essentials for Small Public Companies