7th Annual IT Security Automation Conference and Expo Presentations
Below is a list of presentations from the 7th Annual IT Security Automation Conference and Expo. If any presenters from the conference, or associated workshops, would like to have their presentation listed please send the presentation, presenter's name, presentation date, and track name to david.lee@nist.gov.
Please click here to download all the presentations as of 12/01/11.
Day 1 (10/31/2011)
- General Session Presentations
- Continuous Monitoring
- Software Assurance
Day 2 (11/01/2011)
- General Session Presentations
- Continuous Monitoring
- Automation Specifications
- Network Automation
- IT Security Threats
- Vendor Product Highlights
Day 3 (11/02/2011)
- General Session Presentations
- Continuous Monitoring
- Automation Specifications
- Network Automation
- Future of Global Vulnerability Reporting
Day 1 (10/31/2011)
| Presenter(s) | Presentation |
|---|---|
| Donna Dodson, Chief, Computer Security Division/Deputy Cyber Security Advisor, NIST | Opening Remarks |
| Dr. Patrick Gallagher, Deputy Undersecretary for Standards and Technology, and Director of NIST | Welcome Address |
| Tony Sager, Information Assurance Chief Operating Officer, NSA | Keynote Address |
| Plenary Session: Building Security Beneath the OS | Steve Orrin (Intel), David O'Berry (McAfee) |
| Presenter(s) | Presentation |
|---|---|
| George Moore (State), Kim Watson (NSA), Joe Wolfkiel (DISA), Tim McBride (DHS), Kelley Dempsey (NIST), Nadya Bartol (Booz Allen Hamilton) | Panel: Paradign Change - What do we need to do differently to succeed? |
| Nadya Bartol (Booz Allen Hamilton), Jamie Miller (Booz Allen Hamilton) | Maximizing ROI for Continuous Monitoring |
| Tim Keanini (nCircle) | Boyd's OODA Loop and Continuous Monitoring |
| Earnest Neal (ASG), Steve Johnston (Tripwire) | Continuous Monitoring for Federal Information Systems |
| Keren W. Cummins (nCircle) | Continuous Monitoring 2.0: Creating a Federal Benchmark Community in the Cloud |
| Matt Coose (DHS), Peter Mell (NIST), Michele Iverson (Education), Michael Jones (US Army), Rick Hill (Booz Allen Hamilton) | Panel: Strategic View of Continuous Monitoring - The Vision and How to Get There |
| Presenter(s) | Presentation |
|---|---|
| Joe Jarzombek (DHS), Tom Millar (DHS), John Banghart (NIST) | Mitigating the Risk of Zero-Day Attacks with Software Security Automation |
| Sean Barnum (MITRE) | Measure Software Security |
| Richard Struse (DHS), Sean Barnum (MITRE) | Cyber Observables eXpression (CybOX) - Use Cases |
| Richard Struse (DHS), Steve Christey (MITRE) | Workshop: Risk Analysis and Measurement with CWRAF |
| Penny Case (MITRE), Ivan Kirillov (MITRE) | Malware Attribute Enumeration and Characterization (MAEC) |
| Richard Struse (DHS) | Toward CWE Compatibility Effectiveness and CWE Coverage Claims Representation (CCR) |
| Paul E. Black (NIST) | Toward CWE Compatibility Effectiveness |
Day 2 (11/01/2011)
| Presenter(s) | Presentation |
|---|---|
| Welcome Address | |
| Holly Ridgeway (DoJ) | Plenary Session: Building a Continuous Monitoring Program at the Department of Justice with Security Automation (Unavailable) |
| Joseph Drissel (Cyber ESI) | Plenary Session: Intrusions and Incident Handling: The Big Problem (Unavailable) |
| Presenter(s) | Presentation |
|---|---|
| Joe Wolfkiel (DISA) | Gaps in Automated Situational Awareness |
| Brandon Wood (IBM) | Implementing Situational Awareness with Continuous Compliance in Federal Agencies |
| Peter Mell (NIST) | Continuous Monitoring Technical Reference Model Overview |
| Peter Mell (NIST), Kent Landfield (McAfee), Tim Keanini (nCircle), Kathleen Moriarty (EMC), Adam Montville (Tripwire) | Panel: Continuous Monitoring Technical Reference Model |
| Paul Suh (Booz Allen Hamilton) | Emerging Trends in Automated Continuous Monitoring Operations Research |
| Kevin Stine (NIST), Kelley Dempsey (NIST) | 800-137: Information Security Continuous Monitoring for Federal Information Systems and Organizations |
| Presenter(s) | Presentation |
|---|---|
| David Waltermire (NIST), Karen Scarfone (Scarfone Cybersecurity) | SCAP 1.2 Overview |
| David Waltermire (NIST), Jon Baker (MITRE), Harold Booth (NIST), Adam Halbardier (Booz Allen Hamilton), Charles Schmidt (MITRE) | Panel: SCAP 1.2 |
| Chris McCormick (Booz Allen Hamilton) | NVD CPE Dictionary Management Practices |
| Jon Baker (MITRE) | OVAL 5.10 Update |
| Charles Schmidt (MITRE) | XCCDF 1.2 Update |
| Harold Booth (NIST) | A Trust Model for Security Automation Data |
| Presenter(s) | Presentation |
|---|---|
| Paul Bartock (NSA), Steve Hanna (Juniper) | Getting the Network Security Basics Right |
| Doug Dexter (Cisco) | Automating Network Security Assessment |
| Paul Bartock (NSA), Steve Hanna (Juniper), Doug Dexter (Cisco), Kent Landfield (McAfee), Matt Webster (Lumeta) | Panel: Future of Security Compliance and Automation |
| Presenter(s) | Presentation |
|---|---|
| David O'Berry (McAfee) | The Future Landscape of IT Security Threats |
| Marc Maiffret (eEye Digital Security) | IT Security Insights: On the Frontline of the Threat Landscape |
| Pat Cain (APWG) | Anti-Phishing Working Group Adventures in Information Sharing: Now and for the Future |
| Wes Young (REN-ISAC) | The Evolution of Collective Intelligence |
| Kathleen Moriarty (EMC) | IETF MILE, Improving Incident and Information Sharing Standards |
| Marcos Osorno (JHU-APL) | Enabling Coordinated Incident Handling and Information Sharing |
| Tom Millar (US-CERT) | Enabling Distributed Incident Management |
| Paul Cichonski (NIST) | Enabling Distributed Incident Management: Identifying, Responding, Reporting and Coordinating at Scale and Speed |
| Presenter(s) | Presentation |
|---|---|
| A. N. Ananth (Prism Microsystems) | Cutting Through the SIEM/Log Management Vendor Marketing |
| Douglas Wilson (Mandiant) | Identifying & Sharing Threat Information with OpenIOC |
| Michael Tan (Microsoft) | PowerShell Support in SCAP 1.2 |
| Vlad Pigin (Microsoft) | Security Configuration Simplified with the Microsoft Security Compliance Manager (SCM) |
| Brian Marshall (Vanguard Integrity Professionals) | Using Vanguard Configuration Manager for Continuous Manager for Continuous Monitoring of NIST Security Controls on the IBM z/OS Operating System Environment |
| Marlon Gaspar (Modulo) | Using OVAL for Information Security Application Integration |
Day 3 (11/02/2011)
| Presenter(s) | Presentation |
|---|---|
| Welcome Address | |
| John Paul Chalpin (Exeter Government Services), Matthew Smith (G2), Gunnar Engelbach (ThreatGuard) | Plenary Presentation: Using OCIL to Improve Health Information Security |
| Dr. Antonio Mauro | Plenary Presentation: Cloud Computing Security for DoD/Governments (U.S.) |
| Presenter(s) | Presentation |
|---|---|
| Dr. George Moore (Dept. of State) | Effective Measures for Continuous Monitoring |
| Matt Alderman (Qualys) | New Requirements For Continuous Monitoring In The Cloud |
| Greg Decker (Booz Allen Hamilton) | NexGen Vulnerability Management |
| Eric Winterton (Booz Allen Hamilton) | SP 800-53: The Common Link Between SCAP and Common Criteria |
| Almaz Tekle (Deloitte & Touche), Christian Neeley (Deloitte & Touche) | Operational Aspects of Continuous Monitoring |
| James Park (NSA) | Providing Risk Metrics Using Security Automation, Protocols, and Standards |
| Presenter(s) | Presentation |
|---|---|
| Karen Scarfone (Scarfone Cybersecurity) | Common Configuration Scoring System (CCSS) |
| Adam Halbardier (Booz Allen Hamilton) | ARF 1.1 and Asset Identification 1.1 |
| Adam Halbardier (Booz Allen Hamilton) | SCAP 1.2 Datastream Formats |
| Mark Davidson (MITRE) | Asset-Based Summary Results Reporting |
| Adam Halbardier (Booz Allen Hamilton) | Tasking and Targeting of Assessments |
| George Saylor (G2) | Standardizing Event and Log Management with CEE and EMAP |
| William Heinbockel (MITRE) | >CEE |
| Presenter(s) | Presentation |
|---|---|
| Randy Lee (Fortinet) | From Mobile Workers to IPv6 - How to Secure Today's Networks |
| Matt Webster (Lumeta) | Security Coordination with IF-MAP |
| Stephen Hanna (Juniper) | Security: A Coordinated Approach |
| Luis Nunez (C3i Security) | SCAP for Inter-networking Devices |
| Kent Landfield (McAfee), Aharon Chernin (SCAP.com), Chandrashekhar Basavanna (Secpod) | Content Repositories: Operational Approaches and Commercial Directions |
| Aharon Chernin (SCAP.com) | SCAP.com Introduction |
| Chandrashekhar Basavanna (Secpod) | SCAP Content Repository Preview |
| Steve Tomasko (Booz Allen Hamilton) | Compliance Management for Mobile Devices |
| Presenter(s) | Presentation |
|---|---|
| Tom Millar (US-CERT), Richard Struse (DHS), Steve Boyle (MITRE), Harold Booth (NIST), Art Manion (CERT/CC), Joe Hemmerlein (Microsoft) | Panel: The State of Global Vulnerability Reporting |
| Harold Booth (NIST) | NVD Vulnerability Process |
| Art Manion (CERT/CC) | CVE |
| Tom Millar (US-CERT), Richard Struse (DHS), Art Manion (CERT/CC), Kent Landfield (McAfee), Tim Keanini (nCircle), Steve Boyle (MITRE) | Panel: The Future of Global Vulnerability Reporting |
| Tom Millar (US-CERT), Richard Struse (DHS) | Workshop: Issues in Global Vulnerability Reporting and Identification (N/A) |
| Lal Narayanasamy (McAfee) | Efficiency in Security Audits - The Standards Journey of McAfee Policy Auditor |
| Aharon Chernin (SCAP.com) | Workshop: Implementing a Standards-Based Security Automation Program Outside of the Federal Government |