North Alabama ISSA Chapter Meetings since 2003
March 15, 2011
Penetration Testing with Armitage by Raphael Mudge, a Washington, DC based penetration tester and the developer of Armitage for Metasploit. The meeting was held at SAIC in Huntsville, Alabama.
February 16, 2011
The speaker for this event was John Strand, a Certified SANS Instructor and Owner/Senior Security Researcher with Black Hills Information Security. His topic was 'Cyber Warriers and Cyber Guardians'. The meeting was held at ADTRAN in Huntsville, Alabama.
December 2010
2nd Annual NAISSA Chapter Christmas Party. Monaco Pictures, Bridgestreet Town Centre. Food was provided by the Monaco, everyone participated in the secret Santa game, and door prizes were given away.
August 17, 2010
ASIS International and ISSA Luncheon - held at Redstone Federal Credit Union on Wynn Drive The speaker for this event was Mr. Bill Johnson, President TDI. His topic was 'Insider Threats', what has been done to thwart insiders and what has been overlooked.
June 9, 2010
2nd Annual NAISSA Cyber Security Summit held at ADTRAN, Huntsville, Alabama. Keynote speaker Bob Dix, Vice President of U. S. Government Affairs & Critical Infrastructure Protection, Juniper Networks. Mr. Dix presented 'Public-Private Collaboration: National Security, Cyber Security, and Critical Infrastructure.
Presentations
February 16, 2010
Allan Watkins, Total Telecom Management.Risk Mitigation Best Practices for Session Initiation Protocol (SIP) And Voice Over IP (VOIP). Next generation Voice and Data infrastructure is here. Understand the business drivers for it and why security professional need to be proactive in these design. Best practices for risk mitigation for SIP and VOIP.
Presentation, Event Photos
December 9, 2009
1st Annual NAISSA Chapter Christmas Party. Monaco Pictures, Bridgestreet Town Centre. Approximately 36 people attended. Food was provided, everyone participated in the secret Santa game, and door prizes were given away.
November 17, 2009
Mr. Ben McGee, a Senior Systems Engineer working as a support contractor for SAIC with the Army ‘Can We Be Friends? A Social Networking Experiment.’ Social Networking and how it has become an integral part of our society today.’
Presentation
June 2009
1st Annual North Alabama Security Seminar. Keynote speaker Jonathan Pettus, Chief Information Officer Marshall Space Flight Center. Mr. Pettus presented ‘The State of Information Security at NASA’.
Presentations, Event Photos
March 24, 2009
Mr. Matt Pierce, IT Security Administrator for ADTRAN Inc., presented ‘Malware - What it is, How it works, and Why it concerns all of us.’ Malware is a constant threat to data networks and the problemgets worse each year. New threats crop up every day. Old threats getdredged up and polished off for our particular enjoyment. Why all this effort into compromising systems? What does an attacker gain? Why won't my computer boot up?
Presentation
January 13, 2009
Mr. Jeremy Conway, Senior IT Security Engineer at SAIC presented a very informative talk on “PDF – A vector for badness incognito” and demonstrated to the attendees how changes to PDF can be tracked and actually viewed with some sophisticated manipulation techniques.
Presentation
October 21, 2008
Mr. Jeff Hawkins, FBI Special Agent and Mr. Tim Fowler, NCIS Forensics Specialist, spoke at the October ISSA meeting on “Cyber Intrusions, Indicators and Responses”. Both Jeff and Tim are known experts in forensics and provide the attendees with a briefing on the latest in cyberforensics.
July 21, 2008
A joint meeting was held with the American Society for Industrial Security (ASIS) chapter at the Redstone Federal Credit Union Conference Facility to further the understanding of converged security. The speaker was Ms. Sharon Ing, NSIE Project Manager for NASA who is responsible for the NASA Integrated Services Environment (NSIE) encompassing Identity Management, Account Management and Enterprise Directory Services. Her topic was “The Convergence of Logical and Physical Security.”
May 20, 2008
Dr. Joseph Popinski, IE-Dynetics, presented the results of a recent Digital Combat Exercise held at the Southeast Software and Systems Engineering Conference (SE3). A DCE is a contest held to showcase attack skills of security consultant against a closed, and specifically designed network in a controlled environment. DCE participants are from universities, colleges and companies focusing on Cybersecurity and defenses.
February 19, 2008
Jaime Cifuentes, Network Administrator for Madison City Schools, and Tracie Higginbotham, IA consultant for GMD, presented a live demonstration of Pod Slurping and Thumb Sucking. The Thumb Sucking demo showed how an ordinary flash/thumb drive can be set up to be self booting, capture sensitive files on a PC and e-mail them to off site location. The Pod Slurping demo showed how an iPod MP3 player can be modified to become a hacking computer and launch attacks against a target machine.
November 13, 2007
Jared N. Maples, Network Consultant for Dynetics, presented a live wireless network hacking demonstration showing how to capture packets from an access point, analyze them resulting in compromise of the WEP key; then through using the WEP key accessing the data stream of the AP to effectively gain administrative control.
August 21, 2007
Howard A. Schmidt, former vice president and chief information security officer for eBay and chief security strategist for the US CERT Partners program for the National Cyber Security Division, Department of Homeland Security, present his thoughts on the International State of Cyber Security.
May 15, 2007
Mr. SA Hale, Teledyne Solutions, Inc. will discuss the results of this year's Digital Combat Exercise (DCE) held in conjunction with the Southeastern System and Software Engineering Conference. The DCE is a test that enlists teams of cyber specialist to launch a digital attack on a closed network with varying levels of security.
February 20, 2007
Ms. Paula Woodall, from ATHENA, The Training Professionals, will discuss the “Security Features of the New Microsoft Windows VISTA Operating System.”
November 14, 2006
Special Agent Todd Spiker, Huntsville FBI Office, will discuss computer forensics and the proposed FBI Regional Computer Forensic Lab.
August 15, 2006
Security experts from Dynetics Info- Engineering will give a live hacking demo on a closed network to demonstrate how systems are vulnerable to attack.
May 16, 2006
Ronald D. Hackett, Program Manager, SRS Technologies Systems Solutions Division (SSD), will discuss the hidden data threat in Microsoft Office and Adobe PDF documents including examples of incidents that exposed sensitive data.
Feb 21, 2006
FBI Special Agent Scott Baucus will provide a presentation on Identity Theft.
Nov 15, 2005
Alabama Technology Network (ATN) will provide an overview of ATN, their customers, and IT security issues confronting small businesses. The speakers will include Mr. JD Tew, Director of the Alabama Technology Network (ATN) and Mr. Greg Harris, Deputy Director, UAH Office for Economic Development.
May 17, 2005
Lisa Murphy, Ph.D., Principal Research Scientist, UAH, Center for Management of Science & Technology will present the topic “Getting the Users to Behave More Securely: What Recent Research Tells Us."
April 19, 2005
George Billman, Vice President, BigFix Inc. will address the security challenges of mobile & remote office computing.
February 22, 2005
Arxceo Corporation will present information on the changing environment of network security and methodologies for addressing many of the resulting issues. Topics such as anti-reconnaissance, protocol hardening, address authentication, and the limitations of today’s signature based protection mechanisms will provide for varied and heated debate.
December 14, 2004
Mr. Erbin Troutman, Deputy CIO for SMDC and Chief of the Information Assurance Division at SMDC, will discuss the current state of Information Security.
Nov 9, 2004
Rob Arnold, SAIC Certified Forensics Examiner, will present Forensics 101 – computer incident response and forensics best practices.
October 12, 2004
Dr. Reza Adhmani, Chair of the UAH Computer Engineering Dept, will discuss the new Information Assurance Graduate Level Certificate Program and provide a tour of the Information Assurance Engineering Lab.
July 13, 2004
Vince Delany, Info-Engineering Inc., will present a briefing on Steganography – a method of hiding data in another message. He will conduct a practical exercise to find the word “Security” hidden 20 different ways in one regular MS Word document.
May 11, 2004
Will Higdon, Dynetics, will demonstrate the Man in The Middle within your corporate walls.
April 13, 2004
Joe Popinski, Information Engineering, will provide a debrief on the six teams that participated in the Digital Combat Exercise at the Southeastern Software Engineering Conference during March TEAMS week.
March 9, 2004
Rick Koch, Miltec Systems, will provide an introduction to the DoD IT Security Certification & Accreditation Process (DITSCAP).
January 13, 2004
Joseph Popinski, Director, Network Security Consulting, Information Engineering, will discuss Ethics, Policies and Network Security Practices.
December 9, 2003
Mike Lyman, SAIC, and former member of Microsoft’s security and incident response teams, will discuss his perspective of “the Microsoft security evolution 1997 to 2003.”
November 11, 2003
Dr. Randy Clinton will discuss the Missile Space Intelligence Center’s (MISC) role in the Cuban Missile Crisis during President Kennedy’s administration. This meeting is unclassified and open to all.
October 14, 2003
Larry Leibrock, Ph.D., the founder of eForensics.com Security Consulting and a part time member of the Teledyne Solutions' Cyber Dogs. He will speak about Incident Response, Electronic Evidence, and Forensics.
August 12, 2003
Joe Savage, New World Solutions Inc., will discuss the necessary ingredients for developing a sound Information Security Policy and Donna Coleman, Palladia Systems, Inc., will provide a demonstration of The Angela Technology, an Autonomic computing based technology that integrates both Physical and IT security.
June 10, 2003
George Starcher, Cinram, Inc., will discuss use of SSH (Secure Shell) encryption and authentication capabilities for protecting remote command line sessions, copying files, port forwarding, and running graphical applications.
