—< NORTHEAST OHIO INFORMATION SECURITY FORUM MEETING
—< Wednesday April 19, 2017
—< 6:30 PM – 8:00 PM
—< Pizza and social start 6:00 PM
—< Location: OEC at 4205 Highlander Pkwy Richfield, OH 44286
—< Open to everyone and free as always
The Northeast Ohio Information Security Forum will hold our monthly meeting at the above date and time.
Agenda:
Mental Health in Infosec – Hackers, hugs, and drugs
by: Amanda Berlin
- Amanda Berlin is currently a Network Security Engineer at Hurricane Labs. She has been working in the IT industry for around 10 years and has worked in both public and private sector as well as spending a decent time in healthcare. She managed the internal phishing campaign at a medium size healthcare facility to promote user education about phishing and hacking through an awards based reporting program. Known as ‘The InfoSystir” she is also the author of the new book, Defensive Security Handbook. She volunteers at many other conferences, and enjoys teaching others. Amanda lives at home with her three boys and “Rabbit” the cat.
Operating System Security Beyond the Fortress Mentality: A Review of Innovations in Secure Linux Operating Systems
by: Thomas Pieragastini
In the past the concept of operating system security has revolved either around the concept of building the endpoint as a fortress, with locked down permissions and strong anti-virus protections, or encasing the endpoint in network layer protections based on indicator based blocking and heuristic detection mechanisms. These methods have been bypassed, and are being circumvented with increasing frequency. As the discussion shifts away from the endpoint as fortress, and into other possible approaches, the question tends to center around which operating system is the “most secure”, a question that ignores differences in threat model and security objective. Recently operating systems, within the Linux world, have emerged that eschew this approach in favor of more specified approaches to security; amnesiac operating systems, advanced application level and process sandboxing, absolutely minimal attack surface and application level virtualization. This presentation will discuss some of the innovations in the world of secure operating systems, the threat models that they respond to and the architectural steps taken in order to achieve their intended security objectives.
- Thomas Pieragastini came to the world of information security via the circuitous route of academia, through threat intelligence and into pentesting. He is passionate about securing data, hacking things, digital rights and privacy.
Don’t forget to come early, starting at 6:00 PM, for food and soda, sponsored by TrustedSec.
Another great meeting from NEO Info Sec Forum – we hope to see you there!
– NEOISF Board –
