Track Descriptions
Applications & Development
Applications and Development focuses on topics related to the secure design, development, implementation and operation of packaged and custom-developed applications, whether they are legacy, Web-based, or other (e.g., peer-to-peer). Related sessions include applied cryptography.
Business of Security
Business of Security covers emerging technology/business trends and market maneuvers, with strong emphasis on new developments and how the business environment will be impacted. This track will be of special interest to senior business and information security executives. Sessions also include non-implementation issues about the security industry, such as strategic trends, financing (e.g., VC investment in security start-ups) and broad service offerings such as auditing and systems integration. This track also contains forward-looking sessions that help organizations prepare for coming changes in the IT security ecosystem.
Cloud Security - NEW for 2011
Cloud Security includes cloud vendor Service Level Agreements (SLAs), security architecture in the cloud, cloud security governance, issues involved in migrating to the cloud, cloud security risks, cloud security related case studies, security architecture in the cloud, and related topics. This track also includes sessions on the security aspects of virtualization such as deployment models, VM integrity, virtualization security architecture, and other related topics.
Cryptography
Cryptography is ever-changing and this academically focused and refereed track for mathematicians and computer scientists offers presentations of the very latest papers about the science of cryptography.
Data Security
Data Security covers strategies, practices, and technologies to classify, track, and protect sensitive data. Sessions include developments in Data Leakage Prevention (DLP), new threats to sensitive data, and managing data strategically across the enterprise, with partners, with outsourcers and with users.
Governance, Risk & Compliance
This track includes talks on risk management frameworks and how to better quantify and manage risk. You will also find compliance-related sessions on standards such as PCI, Sarbanes Oxley and others. Sessions on governance cover how to effectively communicate and enforce policies and standards in the enterprise.
Hackers & Threats
Hackers and Threats sessions are technically advanced and include discussions about social engineering (spam, phishing, pharming, etc.), vulnerabilities and/or exploits that are in the wild. These two tracks also cover security research that is pushing the boundaries of IT Security. You will find sessions on the underground economy, new classes of vulnerabilities, exploitation techniques, reverse engineering and how to combat these problems.
Hot Topics
Sessions focus on late breaking news, events, and/or revelations just prior to the Conference to ensure that information presented is as current as possible.
Industry Experts
Listen to leading information security professionals talk about today's most pressing matters.
Law
Security and the battle for justice go hand-in-hand. Topics in Law range from unintended consequences due to legislation and legal rulings, to liability from negligence claims by private litigants.
Policy & Government
Policies and requirements promulgated by government entities impact information security in both the public and private sector. Topics in this track include current and emerging regulations, legislation, national security, law enforcement, and government procurement issues applicable at the federal, state, local and international levels.
Professional Development
Professional Development covers individuals’ technical and business/management training and career development, as well as staff and personnel management. This year the Professional Development track has evolved into two seminars that provide professionals at all levels insight into career advancement and strategies to achieve peak performance at work. In the Monday afternoon Professional Development seminar you will also find tabletop displays with literature and membership information on associations.
Sponsor Case Studies
Learn innovative best practices from case studies based on successful strategies, delivered and discussed by leading edge companies.
Strategy & Architecture
Strategy and Architecture covers the policy, planning, and emerging areas of enterprise security architecture and strategy. This track includes advanced sessions on the current trends in identity and access management. Topics covered are AAA, security policies, privacy, security awareness, security assessment, social networking risks, forensics and insider threat management.
Technology Infrastructure - NEW for 2011
Technology Infrastructure covers network, wireless and endpoint security, IDS/IPS and physical security. You can consider this track as focusing on the core elements of security architecture. Many sessions in this track are highly technical and are not afraid to dive deep into a particular area. These sessions will cover the latest trends and experiences in building systems that are resilient to attack.
