Security and Compliance
In Person Session
7 CPE
Agenda:
8:45 - 9:00 - Welcome message - Ray Payano / Rodrigo Suzuki
9:00 - 10:00 - Enhance Your Online Application Security Using Client-Side Signals
10:00 - 10:15 - Coffee Break
10:15 - 11:15 - Uncover the complexities behind cybersecurity in the SaaS era
11:15 - 11:30 - Coffee Break
11:30 - 12:30 - Passkeys
12:30 - 14:00 - Lunch & Networking
14:00 - 15:15 - Roundtable: Building a Robust and Adaptable Security Architecture for the Future
15:15 - 15:30 - Final messages
Pricing:
ISACA Central Florida Chapter Members: $25
ISACA Central Florida Chapter Student Members: $10
ISACA Global Members (non-Chapter): $35
Non-Members: $50
Directions & Parking
Use Google Maps to get directions
Free parking on-site. Please park in the Reserved Parking section of the main parking area on the East side of the building and follow sidewalks with signage around the south end of the building to the Visitor Entrance. Attendees should not park in the Visitor lot at the front of the building.
All visitors must bring photo identification to be granted access past security and to the meeting space
Registration
This event will use cVENT for registration. (Chapter Members should use the invite sent directly to your email address for discount pricing)
Click to register now (using cVENT)
.
Session Details & Speaker Bio:
1. Enhance Your Online Application Security Using Client-Side Signals - Udo von Blücher
Udo von Blücher applies his 20+ years of global experience in a broad range of domains, including application security, network security, access management, incident response, and vulnerability assessment/penetration. He currently focuses on web and mobile application security strategies and is recognized as one of F5’s leading Fraud and Abuse prevention experts. Udo holds a CISSP certification and has an MBA from USP, Brazil.
2. Uncover the complexities behind cybersecurity in the SaaS era - Jonathan Haas
Want to delve into the intricacies of Software as a Service (SaaS) and its impact on security? Explore with us, as Jonathan uncovers the complexities behind cybersecurity in the SaaS era.
The "Navigating SaaS Security in 2024" presentation by ThreatKey emphasizes the critical need to secure SaaS (Software as a Service) applications, which are increasingly essential to business operations due to their cloud-based nature. It covers the shared responsibility model, explaining how providers secure the infrastructure while users must secure their data and access. The presentation addresses the unique challenges posed by SaaS security, including varied threats across different providers and the complexities of managing third-party risks, such as plugins and integrations. It highlights the importance of continual vigilance through regular audits, strong access control, data protection, and the adoption of best practices and frameworks. Additionally, it advocates for fostering a proactive security culture by leveraging emerging technologies like AI and Zero Trust architecture and ensuring robust vendor assessment and management.
Jonathan Haas is a Canadian-born American entrepreneur who co-founded and serves as CEO of the security posture management company ThreatKey, a company that provides organizations with tools to protect their data from cybersecurity threats. Jonathan has a background in computer security and has been working in the cybersecurity field for over 10 years. He is a recognized expert in the field and has been featured in Forbes and as a keynote speaker at multiple security conferences. Jonathan is passionate about helping businesses stay safe online, and he and his team are constantly innovating new ways to keep businesses secure. Jonathan is also a member of the Forbes Technology Council, an invitation-only community for world-class CIOs, CTOs, and technology executives.
3. Passkeys - Alberto Wilson
Can you imagine a future where we don't need to use passwords to login to our apps? When people don't need to stick post-its to their monitors on their work computers? Can you imagine phishing being a thing of the past? Things are in motion that may turn this into a reality sooner than later.
Enter passkeys, a promising solution developed by the FIDO Alliance and W3C, aiming to revolutionize authentication by leveraging modern technologies and eliminating the need for passwords. This talk will delve into the shortcomings of traditional passwords and how passkeys offer a seamless, phishing-resistant, and more secure authentication method.
Passkeys represent a new era in cybersecurity, utilizing public key cryptography to provide strong, multi-factor authentication without the need for specialized hardware. They are designed to work across devices and platforms, offering users the convenience of biometrics like FaceID or USB keys for logging in. This presentation will explore how passkeys work, their benefits in mitigating common attack vectors, and their potential to replace passwords entirely. Attendees will gain insights into the implementation and future impact of passkeys on both user experience and application security.
Co-Founder and Lead Consultant at Refactor Security, a cyber security company focused on application security and penetration testing. With over 15 years of experience in consulting and penetration testing, specializing in application and cloud security, he has helped uncover critical vulnerabilities, and implement complex security solutions to a diverse array of clients, including Fortune 500 companies and small-scale startups across various industries.
4. Roundtable: Strategies to Manage Today's Threat Landscape - Udo / Jonathan / Alberto / Moderator: Rodrigo
Interactive questions and answers session
#NorthAmerica
#InPerson