2019 Toronto Super Symposium
Vulnerability Management & DevSecOps/AppSec

#IANSToronto #IANSEvents

Tuesday, November 12, 2019 | 10:00 AM - 3:00 PM
Sheraton Centre Toronto Hotel, 123 Queen Street W, Toronto, Canada

Select a track to see more information:


Companies have limited resources to keep up with an endless pile of vulnerabilities and patches and need to determine what they keep getting wrong and what others are doing that’s right.

In this 5-hour Symposium, IANS Faculty member Dave Kennedy will help attendees better understand what they may be doing wrong and send them back to their organizations with better solutions that include:

  • Particular tools to use to create more automation
  • Using automation to move through the flaw-finding and patching process more quickly
  • A list of methods used by companies that have taken their programs to the next level
  • Instructions on how to use the Vulnerability Management Process Workflow
  • Instructions to ensure data within the SQL Server, DB2 and Oracle databases are secure
  • Tools like Shodan that will cast a wider vulnerability net

Audience

Anyone responsible for patch management in their organizations, particularly those who are already well on their way to surfacing and addressing these challenges.


In AppSec, a common failure point is when security teams neglect to consider the Security Hierarchy of Needs: Authentication, Asset Management, Encryption, Logging and Zoning/Containment. Together, they cover 80% of an organization’s security program.

In this 5-hour symposium, IANS Faculty member Shannon Lietz will spend an hour on each and how they directly affect AppSec and DevSecOps strategies. Attendees will learn:

  • Case studies of when orgs have ignored the hierarchy and the result
  • Case studies for properly aligning strategies
  • Using the hierarchy to measure your maturity for DevSecOps (Phase 1 to Phase 5, for example)


Audience

Security architects and engineers tasked with overseeing AppSec.


This event is for IANS clients and invited guests — there is no vendor sponsorship or presence.

Let your colleagues know you're coming!

This event has ended.

Check out our other upcoming events!

View All Events

2019 Toronto Super Symposium Facilitators

dave-kennedy

Dave Kennedy

CEO, TrustedSec & IANS Faculty

Dave is the President and CEO of TrustedSec, an information security consulting company. David was a Chief Security Officer for an international Fortune 1000 company located in over 77 countries with over 18,000 employees. David developed a global security program with a large dedicated team. He is considered a thought leader in the security field and has presented at many conferences worldwide and had guest appearances on FoxNews, BBC, and other high-profile media outlets. David is the Founder of DerbyCon, a large-scale security conference in Louisville, KY. He also authored Metasploit: The Penetration Testers Guide, which was number one on Amazon.com in security for over 6 months. David is a founding member of the "Penetration Testing Execution Standard (PTES)," the industry leading methodologies and guidelines for performing penetration tests. Dave received a BA of Arts from Malone University in Ohio. Dave has many certifications including OSCE, QSA, OSCE, OSCP, CISSP, ISO 27001, GSEC, and MCSE. Dave also served in the Marines for five years working on intelligence related missions. He enjoys scuba diving, handy work, Destiny, fine bourbons and getting away to the country without cell reception.

shannon-leitz

Shannon Lietz

IANS Faculty
Shannon Lietz is an award-winning security innovator and leader experienced in developing emerging security programs for Fortune 500 companies, including Intuit, ServiceNow, Sony, Sempra, Savvis, Cable & Wireless, 99 Cents Only, Exodus, and Bank of America, among others internationally. She received the Scott Cook Innovation Award in 2014 for developing and cultivating a world-class cloud security program for protecting sensitive data in AWS. Lietz is currently the Director of DevSecOps at Intuit responsible for driving the company’s Cloud Security Strategy and Program in support of corporate innovation. She has previous experience as a Master Security Architect, an Entrepreneur, and often volunteers to educate on security topics. Lietz is a passionate DevSecOps and Rugged Evangelist.

Sheraton Centre Toronto Hotel

123 Queen Street West, Toronto, ON M5H 2M9

Attendee Qualification

This Symposium is produced by IANS, which reserves the right, in its sole discretion, to limit or deny access to the Symposium to any entity or individual. IANS’ receipt of a registration application does not constitute acceptance. Individuals from Information Security Solution Providers (software, hardware, and consulting companies) are not eligible to attend. Symposiums are open to IANS clients that are Credential Holders and qualified Information Security Practitioners identified by IANS.

Attendee Contact

ians@iansresearch.com

Check out IANS other upcoming events