April 20–22 • Atlanta, Georgia

Major Initiatives Resources Professional Development Community About EDUCAUSE

You are receiving this message because your browser is not JavaScript-enabled. We recommend you enable JavaScript in your browser, which is required to exploit the full functionality of the EDUCAUSE Web site, to ensure the best possible experience on our site.

Proceedings

The following sessions were held at the Security Professionals Conference 2009. Those with hyperlinks have postconference information associated with them. The information may include papers, audio/video, or PowerPoint presentations.

Monday, April 20, 2009

Session Time	Session Details
4:45 p.m. - 5:30 p.m.	First-Time Attendees: How to Get the Most Out of the Conference Experience and Introduction to the Security Task Force

Tuesday, April 21, 2009

Session Time	Session Details
8:30 a.m. - 9:00 a.m.	Welcome and Introductions
9:00 a.m. - 10:00 a.m.	General Session: Protecting Privacy in a Sea of Data
10:45 a.m. - 11:45 a.m.	Governance: Privacy and Security: The Fraternal Twins of Information Protection
	Management and Operations: A Tour of the Security Task Force's IT Risk Management Framework
	Technology - Advanced: UAlbany's IP Blocker: Elevating IDS to IPS
	Technology - Introductory: Growing Your Incident Response Toolbox
	Corporate and Campus Solutions: Deploying Tools for Cleaning Personal Information
	Policy and Compliance: The EDUCAUSE Data Classification Toolkit: A Guided Tour
1:00 p.m. - 2:30 p.m.	Governance: An Auditor's Perspective on Frameworks for Information Systems Security in Higher Education
	Management and Operations: Building a Cybersecurity Operations Center
	Policy and Compliance: Out of the Breach and Into the Fire
	Technology - Introductory: Uncovering Confidential Data and Data Loss Prevention on Campus
3:15 p.m. - 4:15 p.m.	Governance: A Fresh Look at Data Stewardship and Classification
	Management and Operations: Financial and Door-Access Threats of University ID Cards
	Policy and Compliance: Integrating FISMA and NIST into .edu (or Play NISTy for Me)
	Technology - Advanced: Root Compromise: A Spammer Hiding in Plain Sight
	Technology - Introductory: Web Application Firewalls at SCSU: Why and How
	Corporate and Campus Solutions: Using the EnCase Field Intelligence Model in Assisting with Forensics Examinations
4:30 p.m. - 5:30 p.m.	Governance: IT Governance When You Have NOT Been Breached
	Management and Operations: Together We Can Do More: Working with Distributed IT to Promote Campus Information Security
	Policy and Compliance: Conducting Internal PCI DSS Assessments
	Technology - Introductory: Building a Virtual Digital Forensics Lab

Wednesday, April 22, 2009

Session Time	Session Details
8:30 a.m. - 9:30 a.m.	Management and Operations: Common Credentials and User Maintenance of Their Attributes
	Policy and Compliance: Novel Approaches to Developing Governance, Risk, and Compliance Programs
	Technology - Advanced: Improving Security Event Correlation and Analysis Using Intelligent Agents
	Technology - Introductory: Fully Automated DMCA Processing
	Governance: Mapping the Shifting Landscape
9:45 a.m. - 10:45 a.m.	Governance: Leveraging Resources in Building Your Information Security Program
	Management and Operations: Soft-Selling Tough Issues
	Technology - Advanced: REN-ISAC and CSI2—The Security Event System
	Technology - Introductory: Virtualization and Security Architecture
11:00 a.m. - 12:00 p.m.	General Session: Practical Experiences of a Chief Security Officer

Page Last Updated: Wednesday, April 29, 2009

Need Help? | Feedback | Privacy Policy

Unless otherwise noted, EDUCAUSE holds the copyright on all materials published by the association, whether in print or electronic form. In certain cases the work remains the intellectual property of the individual author(s) (see Special Circumstances). Content from conference speeches, presentations, blogs, wikis and feeds reflect the opinions of the author, and not necessarily those of EDUCAUSE or its members.