[SingCERT] SingCERT Security Seminar

Last Updated on Friday, 07 August 2009 07:06

SingCERT Security Seminar - Cloud Computing Security (15 July 2009) 

This event is jointly organised by SingCERT and Zscaler.

Clould Computing Security

15 July 2009 (Wednesday)

2:00 pm to 5:00 pm

IDA Multi-Purpose Hall, Level 14

Synopsis

‘Cloud’ has become the favored buzzword among IT vendors rushing to deliver more for less in a tight economic environment. Security vendors have certainly not failed to miss this opportunity and a variety of security solutions once available from product vendors are now being delivered as services in the cloud. Tough economic times are a selling point for such services, but what are the true costs? Are short term cost savings outweighed by the hidden costs associated with outsourcing security?

Cloud based security services are a relatively new phenomenon and as such, enterprises typically have a variety of concerns that need to be addressed prior to committing to such an approach. Attendees can expect to understand the pros and cons of cloud security services and leave with the questions that need to be answered upfront by all enterprises considering such offerings.

In addition, Michael will investigate the tools, techniques and motivations of modern attackers. He will spend time walking through real world web based attacks that target end users to better understand how cloud based security can address emerging threats. Attendees can expect to learn what they're are up against and understand how best to defend against such attacks.

Bio-Data of the speaker

Michael Sutton, Vice President, Security Research           

Michael Sutton has spent more than a decade in the security industry conducting leading-edge research, building teams of world-class researchers and educating others on a variety of security topics. As VP of Security Research, Michael heads Zscaler Labs, the research and development arm of the company. Zscaler Labs is responsible for researching emerging topics in web security and developing innovative security controls, which leverage the Zscaler in-the-cloud model. The team is comprised of researchers with a wealth of experience in the security industry.

Prior to joining Zscaler, Michael was the Security Evangelist for SPI Dynamics where, as an industry expert, he was responsible for researching, publishing and presenting on various security issues. In 2007, SPI Dynamics was acquired by Hewlett-Packard. Previously, Michael was a Research Director at iDefense where he led iDefense Labs, a team responsible for discovering and researching security vulnerabilities in a variety of technologies. iDefense was acquired by VeriSign in 2005.

Michael is a frequent speaker at major information security conferences; he is regularly quoted by the media on various information security topics, has authored numerous articles and is the co-author of Fuzzing: Brute Force Vulnerabilities, an Addison-Wesley publication.

He was the guest speaker on the Black Hat DC 2009 Briefings held at Hyatt Regency Crystal City, February 16 to 17. 

Schedule

2:00 - 2:30 pm               Registration

2:30 - 3:30 pm               Part I – Cloud security and what it implies to IT administrators

3:30 - 4:00 pm               Tea Break      

4:00 - 5:00 pm               Part II – Attackers’ Techniques, Tools & Motivation

5:00 - 5:15 pm               Q&A

Pre-registration required. Please register through http://www.quantiqint.com/qievents/Zscaler-SingCert/Zscaler-SingCert-Registration.htm

Seats are limited; please register by 13 Jul 2009.

For more details on this seminar, kindly contact SingCERT at 62110911.

[*Early Birds Gifts will be given to the first 20 attendees. While stocks last.  

*Attendees are advised to bring their business card on the day of the seminar as there will be a lucky draw conducted.]