May 2016 Chapter Meeting Arrow to Content

Chapter Business

Denise Simons kicked off the Chapter Business portion of the meeting with:

  • Request to let the Board know of any job announcements for posting to our website.
  • July meeting will be at Launch Consulting and will combine a social with BBQ, weather permitting, and one presentation.
  • Board elections will be this fall. Look for nomination requests the and of August beginning of September, stump speeches at the September meeting and the election during the October meeting.

Meeting Presentations

Steve White, Century Link, Director Security and Compliance

“The NIST Cybersecurity Framework in the Real World”

Abstract:  Discussion of ways to apply the NIST Cybersecurity Framework and associated maturity models as part of an organization’s overall cyber risk management program and using the framework to help in funding and prioritization decisions.

About:  Steve White is the Director, Security and Compliance for Platform CenturyLink at their headquarters in Bellevue, WA. Steve is responsible for real-time security and all compliance efforts for the cloud product and 20 other products delivered by the organization. He oversees security architecture/engineering, attack detection, response/investigation, and incident recovery. Steve is also responsible for ensuring the services offered meet compliance requirements for various US and international security and privacy standards.

Security Program Assessments

Russ McRee, Microsoft, Director WDG Security Response & Investigations

“Red Teams vs. Blue Team with Demos and Details”

An attacker’s goal is to remain undetected, running in memory as often as possible, and limiting file system exposure whenever possible. We’ll explore defensive techniques for these dark arts.

Attack: Phishing, Veil, Metasploit, PowerSploit

Detect: WinPmem, Rekall, PowerForensics

About:  Russ McRee, GSE, MSISE, directs the Security Response and Investigations team for Microsoft’s Windows & Devices Group (WDG). He writes toolsmith, a monthly column for information security practitioners, and has written for numerous other publications including Information Security, (IN)SECURE, SysAdmin, and Linux Magazine.

Russ also speaks regularly at events such as DEFCON, Derby Con, BlueHat, Black Hat, SANSFIRE, RSA, and others, and is a SANS Internet Storm Center handler. He serves in the Washington State Guard as a joint forces operator and planner on behalf of the Washington Military Department’s cyber and emergency management missions. Russ advocates a holistic approach to the practice of information assurance and, as such maintains holisticinfosec.org. IBM’s ISS X-Force cited Russ as the 6th ranked Top Vulnerability Discoverers of 2009.

Red Team vs. Blue Team

.

Page Dividing Line