TIME | AGENDA |
8.30AM | Registration, breakfast & showcase discovery |
9.30AM | Welcome & Opening Address:
- Teng Fang Yih, Editor, Computerworld Singapore |
9.40AM | Keynote Presentation: “GRC: Driving the power of proactive security and risk management in 2011”
In the past few years, organisations have focused on enhancing their compliance and risk management initiatives. While they have been reaping the benefits of a more robust framework and processes to manage the organisation's risk, many worry about the sustainability and practicality of the established processes. A good security risk management program needs to be event-driven based on actual data with clear information delivered to the right stakeholders for decision making. In this presentation, we will discuss the key challenges and tenets of a proactive Governance, Risk, and Compliance initiative, and how organizations are benefiting from leveraging on technology to sustain their security risk management programs.
- Gerry Chng, Partner, Ernst & Young Advisory Pte. Ltd. |
10.10AM | Gaining Back the Edge against Security Threats: New Strategies and Technologies to Survive in Today’s Threat Landscape
All indications point to escalating numbers in malware proliferation in the last few years, with annual increases at exponential rates. Current anti-malware technologies are fighting a losing battle against an army of malware writers who are mounting the war against systems and networks worldwide in an attempt to infiltrate and then steal personal and/or business-sensitive information. Armed with readily available malware generation and attack toolkits, these malicious elements are creating malware in such volumes that traditional technologies are straining to keep up defenses. In addition, with the increased usage of social networks, cloud computing and virtualised IT infrastructures, individuals and businesses are facing ever increasing risks from exploits and loss of information.
We will analyze the threat trends that are existing currently, and also look at some of the strategies that individuals and businesses can adopt to better protect themselves against threats. We will also look at the implications that new protection technologies have on the future growth and sophistication of malware.
- Eric Lam, Sales Director Enterprise, Symantec Protection Suites, Symantec APJ Specialist Group |
10.40AM | 3D Security : Combining People, Policies and Enforcement for Unbeatable Protection
With threats such as Stuxnet, Wikileads and Operation Aurora escalating and becoming more sophisticated and targeted, how do you keep your enterprise secure? How many standalone security solutions can you afford to implement to fully protect your network, data and critical assets? To achieve the level of protection needed in the 21st century, security needs to grow from a collection of disparate technologies to an effective business process. With 3D Security, organizations can now implement a blueprint for security that goes beyond technology to ensure the integrity of all information security.
Learn how Check Point 3D Security redefines security as a business process combining policies, people and enforcement for stronger protection across all layers of security—including network, data, and applications.
- Mr. Andrew Namboka, Major Accounts Manager, Check Point Software Technologies Ltd. |
11.10AM | Refreshment Break |
11.20AM | When social networking becomes a malware vector; the trusted becomes unacceptable. Real-time Web security defense: your best clout over cybercrime.
The word is out. Cybercriminals are moving into social networking and cloud computing, hitting the most popular communications and enterprise platforms. The Blue Coat Security Report 2011 finds social networking the vector of choice for hackers while legitimate sites and acceptable Web categories have become the favorite hideouts for malware seeking to avoid traditional security solutions. At the rate today’s malware and web-based threats are shifting along with the way users are using the Internet, Enterprises are no longer safe from cybercriminals especially in the first few hours of a Web attack. Enterprises need to upgrade their Web defenses and develop the right security architecture to protect their mission critical data and infrastructure with a dedicated Web security solution. Find out how to protect your network through the Blue Coat Cloud service where 73 million users collect and analyse real-time inputs of new dynamic links and unrated content to provide best-in-class protection for aggressive Web-borne threats.
- Lee Dolsen, Chief Solutions Architect, APAC, Blue Coat Systems
|
11.50AM | Security without Compromise
Today’s networks are faster than ever, carrying more information and rich content - as well as potentially malicious payloads. The volume and sophistication of hacker-based attacks have also increased, requiring more accurate detectionmethods and the ability to block threats before they can do serious damage.Simultaneously, cost-reduction programs are forcing IT departments to consolidate network equipment and operating expenses wherever possible.
Fortinet’s consolidation security strategy and market leading technology enable you toimprove security posture while reducing your costs and simplifying your security infrastructure. Learn how we address the needs of large enterprises and telecom operators within the ever-changing security landscape, so wherever you think of security, you’ll think of Fortinet.
- Filippo Cassini, Vice President, Systems Engineering, EMEA and APAC, Fortinet
|
12.20PM | Panel Discussion / Q&A Session: “Technology, Policy, Enforcement”
In this discussion, we try to determine and/or come to agreement to just how much weight and priority we should give each of the above. Responses to the following questions shall be solicited during this session. - What can we do by way of smart technology use to secure our infrastructures and our connections with partners and customers?
- Is crowd-sourcing an option for information security?
- What can any organisation do to get the most value out of going the way of the Cloud and at the same time minimise the threats associated with it?
- Does the truly secure infrastructure really have to be one that just about totally sealed?
Participants: All Plenary session speakers, moderated by Computerworld Singapore
|
12.50PM | Lunch & Showcase Discovery |
BREAKOUT TRACK A; Zero Defence |
2.10PM | Security Information and Event Management (SIEM) for Governance and Assurance
Exploring the topic, the speaker will present on the definition and high-level overview of SIEM, including:-
- Benefits and effectiveness of SIEM
- SIEM from the Governance perspective
- SIEM from the Assurance perspective
- SIEM as a Managed Service
- Mr. Freddie Chin, Product Manager, Security Services, CITIC Telecom International CPC Limited |
2.40PM | Are we secure?
As security professionals and managers, one of the key questions that we are often asked by the management is, “Are we secure?” While there is a growing awareness of the importance of information and IT security at the senior management level, the current compliance driven approach often short-sells security as a compliance issue with little or no demonstrable value to the enterprise business strategy. The focus of this talk will examine the issues and challenges of the current approach to security, and look at how security can adopt a more business-centric approach to demonstrate its value to the organisation. Part of the session will also cover how metrics can be designed and used to better assess the dynamic information and IT security risks to enable organisations to better manage their risks.
- Tee Chun Meng, Manager, Ernst & Young Advisory Pte Ltd |
3.10PM | Zero Day Defence
With the widespread influx of new and more sophisticated network security threats, it is important for any company to be vigilant and to address the continuous development of their security infrastructure, both at the perimeter and at the user level. Security threats now not only encompasses packets coming in through the internet but, also, security threats that is brought in through external devices such as USB drives, wireless networks and the like, which brings up more problems such as data theft and data integrity. Astaro will give you a closer look at how you can enhance your network security infrastructure, may it be in hardware, software or cloud-based platform.
- Benjamin Hodge, Director for Technical Services, Astaro Asia |
3.40PM | Lucky Draw |
| 3.45PM |
End of Programme |
BREAKOUT TRACK B; Emergency Procedures |
2.10PM | Implementing Multi-layered IT security Strategy
Today’s organisations depend on email and the Internet for business-critical processes. As the importance of these vital communication channels has grown, so too have the malware threats and risks posed by cybercriminals. Malicious coders are now using more sophisticated methods to launch blended email- and web-based virus attacks. Meanwhile, as employees spend more time on the Internet accessing dynamic, user-generated content, corporate networks are more vulnerable to attack than ever before. This means it is now more important than ever for companies to have access to world-class corporate anti-malware protection for multi-platform IT infrastructures. This talk will show you the threat landscape and also how a high value solutions and cost-effective security systems can maximize business productivity and lower the Total Cost of Protection (TCP).
- Bryan Sat, Business Development Manager - SaaS/Cloud Services, SEA Region, Kaspersky Lab |
2.40PM | Protecting your Data in the Cloud
Cloud Computing has the potential to transform the IT industry by allowing governments and companies to provide better services while reducing costs. However, one major concern for many organisations wanting to move their information to the cloud is the security of their data. It may be unwise to trust the service providers and their employees to safeguard the organisation sensitive data that are residing in the cloud. In this presentation, we discuss some of the viable data protection strategies and technologies that could help to safeguard confidential information in the cloud, and allowing the businesses to fully leverage the power of cloud computing to provide the agility required to move quickly in the highly competitive business environments. - Dr Ngair Teow Hin, Founder & CEO, SecureAge Technology |
3.10PM | Check Your Checklist
We all know that planning ahead and tight organisation are key to success in operations. However, we don't always practise what we know is right and preach. And in the event of an emergency—as in the case of a security breach—there is every likelihood we will forget to do some of the most basic things required of our efforts to fix things. Here's where the all-important, but often overlooked, checklist comes in. This presentation is a run through of the items that must be on the response plans of teams handling security breaches and overall infosecurity at our organisations today.
- Teng Fang Yih, Editor, Computerworld Singapore
|
3.40PM | Lucky Draw |
3.45PM | End of Programme |
