Keynotes
"Who Survives When Disaster Strikes, and Why"
-Amanda Ripley, Senior Writer, TIME Magazine; Author of The Unthinkable


"Good Luck, Bad Luck, Risk and Probability"
-Simon Singh, Best-Selling Author, Journalist, BBC Radio Broadcaster, and BBC TV Producer and Director

Confirmed Speakers (as of July 23, 2008)
Michael Buckwell, IT Security Analyst, Progressive Insurance
Vincent LaRosa, Principal Security Architect, Office of Information Security, EMC² Corporation
Dave Nelson, Director of Information Security, Iowa Foundation for Medical Care
Ann Auerbach, Manager, IT Compliance, Cimarex Energy Co.
Mike Schiller, IT Global Asset Management Manager, Texas Instruments
Chong Ee, Director of Compliance and Accounting Process, ZipRealty
Antonio Rucci, Program Director, Collection Management and Cyber Initiatives, Global Initiatives Directorate, Oak Ridge National Laboratory
Eric Maiwald, Senior Analyst, Burton Group
Roger Herbst, Senior IT Security Specialist, The Timken Group
Steve Slater, President, Security Compliance Corporation
Dan Houser, Senior Security Architect, Cardinal Health
Kathy Kirk, CISSP, Director, Information Security, Prudential
William Boni, Corporate Vice President, Information Security and Protection, Motorola
Khalid Kark, Principal Analyst, Security & Risk Management, Forrester Research, Inc.
William C. Cross, Ph.D., CIO, Seminole Electric Cooperative Inc.
Lynne Pizzini, CISSP, CISM, CIPP, Manager, Compliance & Ethics Department,
Security and Privacy Official, Blue Cross Blue Shield of Montana
Ray Wheeler, IT Audit Manager, Federal Home Loan Bank
Todd Bearman, CISSP Chief Information Security Officer, Towers Perrin
Charles W. Mobley, CISSP, SBCI, Global Information Services Enterprise Risk Manager, Smith & Nephew, Inc.
Prof. Howard A. Schmidt, CISSP (Hon.), CISM (Hon.), (ISC)² Security Strategist and Former White House Cyber Security Advisor
David Cullinane, CISO, eBay
Gary Bojo CISSP-ISSMP, Chief Information Security Officer, Susquehanna Bancshares, Inc.

Among the Topics To Be Presented (as of July 23, 2008)

• e-Discovery Best Practices: How to Retrieve All the Tentacles of the Octopus and Still Stay Sane CASE STUDY
• Data Leakage Detection and Prevention: The Realities of an Enterprise Deployment
• Security Information Event Management (SIEM): A Real-World Case Study
• How to Deal with the Insider Threat: Proven Tools and Techniques
• How to Perform an Applications Controls Audit from Soup to Nuts
• Emerging Technologies and Their Security Implications
• Tools and Techniques for Securing and Auditing VoIP Networks
• Implementing NAC Case Study: From Evaluating Vendors to Deployment and Lessons Learned
• Successful Firewall Auditing: Key Process and Technical Controls
• The Latest Threats to Mobile Technologies and How to Avoid Them
• Maximizing the Value of IT Audit: How to Build and Maintain an Effective Internal IT Audit Function
• Tips for Auditing Functions that Have Been Outsourced, Off-Shored, Co-Located and Co-Sourced
• Staying on Top of Privacy Regulations
• How to Apply PCI
• Securing the Web 2.0 Environment
• Developing a Sound Security Sourcing Strategy
• Career Lifecycle Management: What You Got Won't Get You There
• Moving Management of Information Risk out of IT and into the Business
• How to Be a Great Security Manager
• Joining Forces: IA and Security Working Together
• How to Do More with Limited Budget, Resources and Staff
• Creating a Popular Security Awareness Program
• What Audit Expects and Needs from Information Security
• A Recipe for Security: Building a Security Program from Scratch
• Building Information Security Policies and Procedures: Integrating IS Standards and Risks into Policies