Learning Labs offer in-depth learning and high interactivity before, during and after Conference. The two-hour Labs target senior security information practitioners (10+ years). Develop your skills while engaging with your peers and learning from the experts. All of the Labs will have either a webcast or pre-work in the weeks leading up to Conference—please plan to attend the pre-Lab so that you can hit the ground running at the actual Conference Lab (details will be sent to Lab registrants). Enrollment is limited to 40 attendees per Lab, and you may only register for one Learning Lab.
Attendees must be registered prior to enrolling. Learning Labs are free to Full Conference badge types. Expo and Expo Plus passholders are unable to register for these Labs.
Date & Time:
Tuesday, April 21, 2015 | 1:10 PM – 3:10 PM
A sophisticated nation state-sponsored cyber attack is in progress against our country. Multiple critical infrastructure industries are impacted and things are about to get much worse. How will government and industry work together to face the challenge? Join as a full participant in the first-ever live cyber exercise held at RSA conference, to work through the policy responses and actions. You will play a representative on one of the following 8 teams consisting of 5 people each: Financial Services Sector, Oil & Gas Sector, Cybersecurity Sector, Department of Defense, Department of Justice, Department of Homeland Security, Treasury Department, and European Governments/Industry. All teams will be presented with a realistic cyber crisis scenario and will have to debate and develop policy proposals and responses to be presented to the President of the United States (played by a well known national security policy expert), who will then decide on a course of action to implement out of all the proposed options. Participation requires deep knowledge of issues, concerns and jurisdictions, as well as preferably real-world experience in one of the industry sectors or government agencies represented by each team.
Dmitri Alperovitch - Co-Founder & Chief Technical Officer, CrowdStrike
Jason Healey - Director, Cyber Statecraft Initiative, Atlantic Council
Date & Time:
Tuesday, April 21, 2015 | 3:30 PM – 5:30 PM
This session will give you 360 degree view of the challenge of dealing with a major cyber security incident. We will start as the CERT/SOC and will need to report to executive management on a developing incident. As management and corporate affairs, we will need to brief the media and internal stakeholders. As the CEO and CIO, we will need brief the board and give evidence before US Congress.
Date & Time:
Wednesday, April 22, 2015 | 8:00 AM – 10:00 AM
Companies and organizations are increasingly using wargames to improve cyber response posture. In this session, our wargame team will lead players through a board game where they will take actions in respond to a cyber breach to mitigate damage to the company. This session is focused on incident managers who will be called on to make decisions in a crisis scenario. The objective of the game is to identify and successfully mitigate different risk categories following a breach.
Thad Allen - Executive Vice President, Booz Allen Hamilton
Mike McConnell - Senior Executive Advisor, Booz Allen Hamilton
Nicole Monteforte - Principal, Booz Allen Hamilton
Ronald Sanders - Vice President, Booz Allen Hamilton
Date & Time:
Wednesday, April 22, 2015 | 10:20 AM – 12:20 PM
As cloud and DevOps disrupt traditional approaches to security, new capabilities emerge to automate and enhance security operations. In this hands-on session, attendees will learn pragmatic techniques for leveraging cloud computing and DevOps for improving security. Through a combination of demonstrations and exercises, we will walk through a string of real-world security automation.