In this IT compliance training learn about real-world examples and how you can use the malicious mindset to look beyond the technical weaknesses and view your information security from a broader perspective that takes the entire business in account.
Many organizations test their information systems for security vulnerabilities on an ongoing basis. The problem is that’s only half the issue. There’s also security documentation, users, and various IT-related business processes that affect overall information risks just as much. In this presentation, learn about real-world examples and how you can use the malicious mindset to look beyond the technical weaknesses and view your information security from a broader perspective that takes the entire business in account. This will enable you to find many vulnerabilities in your organization you haven’t thought about or have overlooked and get to the root of many information security issues that technical controls only serve to cover up.
Areas Covered in the seminar:
- Understanding the malicious mindset from the perspectives of a rogue insider and external attacker
- Looking at information risks differently
- Operational security issues you haven’t thought about
- Techniques you can use to uncover weaknesses
- Real-world examples
Who Will Benefit:
Anyone responsible for the ongoing compliance and IT governance needs of within their business - regardless of the size of the organization:
- IT managers
- Information security managers
- Compliance officers/managers
- Business executives ultimately responsible for compliance
- Information security consultants
- Information security auditors
Instructor Profile
Kevin Beaver, CISSP, is an independent information security consultant, author, and expert witness with over 18 years of experience in IT. He focuses his work on performing information security assessments related to compliance and IT governance. Kevin has authored or co-authored six books on information security including the highly successful ethical hacking book Hacking For Dummies, 2nd edition and Hacking Wireless Networks For Dummies (both by Wiley) as well as, The Practical Guide to HIPAA Privacy and Security Compliance (Auerbach). In addition, Kevin is a contributing author and editor of the book Healthcare Information Systems, 2nd edition by Auerbach Publications, technical editor of the book Network Security For Dummies by Wiley Publishing, and technical editor for over a dozen books and whitepapers for Realtimepublishers.com.
In addition to his books, Kevin writes and produces practical information security advice called Security on Wheels for IT professionals on the go. He is also a regular columnist and information security advisor for various TechTarget websites including SearchWindowsSecurity.com, SearchSQLServer.com, and SearchStorage.com. In addition, his information security work has been published in Information Security Magazine, SecurityFocus.com, and CSI’s Computer Security ALERT newsletter. Kevin is a frequent and top-rated speaker on information security at various conferences for RSA, CSI, TechTarget, IIA, and SecureWorld Expo.
