November 12, 2008

From the President

 

Hello All!!!

Thank you to everyone who attended last month’s meeting.  I trust that Ian and his story inspired you to accomplish great things.

Our meeting for this month will be on Wed November 12 from 7:30am to 9:30am.  Note that this meeting will be a little longer but you will receive 2 CPE instead of 1.  Please RSVP by Tues November 11th to secure your reservation.

If you are in need of CPE please be sure to review the “Need CPE Opportunities" at the bottom of this email. 

If you have not renewed your membership please do so as soon as possible.  You can do it online at www.isaca.org logon and click on renew.

If you know anyone who might be interested or if you yourself would be interested in speaking we welcome the opportunity to learn.   Remember you do get CPE for presenting.  Also, if you have ideas for meeting topics please feel free to contact me with your ideas.  Your help would be greatly appreciated.

 

Thank you and hope to see you there!

Susan Ross
434-5780 \ 818-7092

 

Meeting Details

 

CPE:  2

 

 

Date:

Topic:

Wednesday, November 12, 2008

"Threat Modeling:  Own Your System"

 

 

Place:

Agenda:

The Crescent Club

7:30am - 8:00 am  -Breakfast/Chapter  Business

6075 Poplar Ave.

8:00 am - 9:30 am  - Speaker

Memphis, TN

 

 

 

Cost:

Speaker:

$15.00  members

Dean Saxe, Managing Consultant

Foundstone

$20.00 non-members

 

 

About the Topic

 

"Threat Modeling:  Own Your System"

What if you could see your system from an attacker’s perspective – see him planning and deliberating his attack before actually launching it? With threat modeling you can! Threat modeling helps designers and developers model the system as an attacker would.

 

Join the Foundstone security experts as they share their experiences and methods used to perform Threat Modeling on some of the largest and most complex systems built. Attendees will learn the methodology and how to integrate it into their software development lifecycle. By playing attacker instead of being attacked, see how Threat Modeling can help save costs and eliminate the pain of security disclosures.

 

About the Speaker

Dean H. Saxe, CEH, CISSP Managing Consultant

Foundstone Role

Dean is a Managing Consultant at Foundstone. He is responsible for conducting web application penetration testing, threat modeling, code reviews, secure software development lifecycle (S-SDLC) design and implementation, and project management. Dean also provides client education services as a lead instructor of these Foundstone courses: Building Secure Software, Writing Secure Code: Java/J2EE, and Writing Secure Code: ColdFusion.

Experience

Dean has over ten years of software development experience in a variety of industries, including banking, education, and quality control. Since 2001, he has focused on secure software development and web application security. Prior to working at Foundstone, Dean held the position of manager of web application security for a corporate cash-management application service provider. In this position, he implemented the company’s first secure software development and deployment guidelines, development frameworks to support secure coding paradigms, tools used for the semi-automated remediation of application vulnerabilities, and static code analysis tools to expedite conducting secure code reviews. Dean co-founded and remains active in the Atlanta ColdFusion User Group (ACFUG) and is an active member of the Open Web Application Security Project (OWASP) Atlanta Chapter.

 

Additional Information

 

  http://www.foundstone.com/us/index.asp

 

ISACA News

To renew online, please login to www.isaca.org with your personalized login credentials. This will place you at the "My ISACA" area of the web site where a link to "My Renewals" is provided in the left-hand navigation menu. You will also have the opportunity to renew your certification during this process. For login assistance, please visit www.isaca.org/login.

 

Membership Department

ISACA International

This email address is being protected from spambots. You need JavaScript enabled to view it.

+1.847.253.1545 ext. 771

 

Certification Department

ISACA International

This email address is being protected from spambots. You need JavaScript enabled to view it.

+1.847.253.1545 ext. 772

 

Job Postings

 

Next Meeting

 

December 10th, 2008

January 14th, 2009

 

Need CPE Opportunities?

 

ISACA International is hosting monthly e-Symposium.  Here is the ink to register and view current and past events.   www.isaca.e-symposium.com.  Please note that individuals can earn three (3) CPE credits for participating in the e-Symposium.