• Skip to primary navigation
  • Skip to main content
  • Skip to primary sidebar

Information Systems Security Association

Los Angeles Chapter, cybersecurity, InfoSec, CISO, Privacy

  • Home
  • About ISSA-LA
    • Our Mission
    • ISSA LA Bylaws
    • Board Members
    • Advisory Board Members
    • Contact Us
  • Events
    • Upcoming Events
    • Event Archive
    • Speaker Guide
  • Security Tracks
    • Management
    • Privacy
    • Proactive
    • Reactive
    • Technical
  • Summit XII
    • Summit XI 2019
    • Summit X 2018
  • Membership
  • Become a Sponsor
    • 2019 Monthly Meeting Sponsors
    • 2019 Summit XI Sponsors
  • Good InfoSec Resources
    • Keeping Kids and Families Safe Online

Technology Director

Recap: September 2020 Virtual Chapter Meeting

November 5, 2020 By Technology Director

Topic: Inclusion Before Diversity

Abstract: For far too long, the conversation of diversity and inclusion has lacked definition. Many believe the terms are synonymous, but they are not. Diversity is simply not possible unless our cultures foster inclusion, which are the behaviors and social norms that allow diversity to happen in our workforce. Join our panel of leaders who will discuss insights on what inclusion means to diversity as well as the behaviors of inclusion our cultures need to foster in order to have a diversity of people.

We had an exciting and refreshing conversation on diversity lead by Deidre Diamond in September. Together with Marci McCarthy, Jimmy Sanders, Mari Galloway and Anu Koshy, they really spearheaded a passionate conversation on inclusion before diversity.

If you missed the conversation, you may watch the replay below.

Filed Under: Monthly Meeting Recap, Monthly Meeting Speakers

Recap: August 2020 Virtual Chapter Meeting

August 30, 2020 By Technology Director

Topic: Those who do not learn history are doomed to repeat it.
Presenter: Jack Daniel

Summary: When frustrated we may ask ourselves “where are we going and why are we in this handbasket?”, but we rarely have the time to really reflect on where we’re going as an industry and how we got here- and who led the way. The people and ideas which were the foundations of information security are not ancient history, yet few of us know much about them. We are too busy running to keep up and never have time to look back. In this talk we will meet some of the people who founded and advanced our field, and hear some of their stories.

Watch the recap below:

Sponsors: Exabeam and Semperis

Exabeam
Semperis

Filed Under: Monthly Meeting Recap, Monthly Meeting Speakers

Recap: July 2020 Virtual Chapter Meeting

July 20, 2020 By Technology Director

Topic: Hack The Vote!
Presenter: Chris Roberts

One person, one vote… that’s what we keep telling ourselves, although let’s be honest that really isn’t how it works, at least in the US because of the cockeyed electoral college thing, so it’s more like “some states, most of the votes” AND we can break that down even further by “Electoral College, ALL the votes” because they don’t have to give a damm what you think OR who’s most popular in your state…

So, face it, it really doesn’t matter what the hell you vote, it all comes down to a set of folks…

Which sucks

SO, lets change things

Let’s hack the voting systems, after all they’re controlled by three major companies who don’t give a toss about security, who, between them have more lawyers than programmers and with whom we entrust out futures….ALL secured by passwords such as “EVEREST” “ESS, Password or 1234

Splendid…

What DO we do about it? Watch the recap below:

Filed Under: Monthly Meeting Recap, Monthly Meeting Speakers

Recap: June 2020 Virtual Chapter Meeting

July 20, 2020 By Technology Director

We all need to work with board of directors. Not only do they define strategy, but they set the culture, tone, and pace an organization embraces cybersecurity. We as cybersecurity professionals need to work with the board and effectively commuicate the risks to our organization

If you missed our elite panel of CISOs, watch our recap below on YouTube. Don’t forget to like and subscribe to our YouTube channel.

  • Richard Greenberg, Moderator, ISSA-LA President 
  • Mark Weatherford, General partner at Aspen Chartered 
  • Jaclyn Miller,Chief Security/Chief Privacy Officer, Secure-24 
  • Dave Estlick, CISO Chipotle 
  • Demetrios Lazarikos, Three-time CISO, Founder, Blue Lava 

Filed Under: Monthly Meeting Recap, Monthly Meeting Speakers

Recap: May 2020 Virtual Chapter Meeting

June 4, 2020 By Technology Director

We had an extremely passionate discussion in our April 2020 meeting on Application Security with an extremely dedicated and passionate panelists and application security leaders.

Our panelists took us through the various debates on importance of security standards, application penetration testing, security as a software development lifecycles, and processes.

If you missed our spirited session, catch the replay below.

Our next virtual chapter meeting will be Wednesday, June 17, 2020 at 11:45am.

Speakers:

  • Richard Greenberg, Moderator, ISSA-LA President
  • Andrew van der Stock, Current co-lead of the OWASP Top 10 and OWASP Application Security Verification Standard
  • Holly Grace Williams Technical Director at Secarma Ltd
  • Jack Mannino, Chief Executive Officer at nVisium
  • Jim Manico, Founder, Secure Coding Instructor at Manicode Security
  • John Steven, Chief Technology Officer at ZeroNorth
  • Simon Bennetts , Security Automation Engineer at Mozilla, OWASP ZAP Project Lead
  • Tony UcedaVélez, CEO & Founder-VerSprite, Author of Risk Centric Threat Modeling & PASTA Methodology

Filed Under: Monthly Meeting Recap, Monthly Meeting Speakers

February – Joshua Jacobson

February 18, 2020 By Technology Director

February2020_SpeakerSlidesDownload

Topic: Taking The Bugs Out of Bug Bounty

Bug Bounties are the new big “thing” in infosec with a diverse group companies of all sizes jumping in. While these programs can be highly effective, it is easier said than done. Using his experience building and running Aviation’s first bug bounty program, Josh discusses his trials and tribulations implementing a first of its kind Bug Bounty program. By the end of this talk you will know what to anticipate, do, and avoid while building a Bug Bounty program to be as successful as possible right out of the gate.

Speaker: Josh Jacobson

Josh is an ethical hacker and researcher based out of Los Angeles California. He began his career as an ethical hacker with a focus on internal and wireless network penetration testing before taking on application security. In his previous role at United Airlines he designed, built, and managed aviation’s first public bounty program which subsequently won multiple awards. While at United also lead digital forensics and conducted Aircraft and Avionics research as an ethical hacker. Josh now oversees vulnerability management for Sony Pictures Entertainment.

Filed Under: Monthly Meeting Speakers

February – By Lori Cole and Kory Fear

February 18, 2020 By Technology Director

Offensive Cyber Operations Abroad – February20Download

Filed Under: ISSA Monthly Journal Articles, Management, Proactive

January – By Stephen Berk

January 20, 2020 By Technology Director

The 2019 NIST Risk Management Framework update incorporates a critical paradigm shift requiring greater C-suite involvement and oversight, bringing a formal preparation step to the process that permeates every level of the organization and requires that management drives assessment and authorization efforts going forward.

January20Download

Filed Under: ISSA Monthly Journal Articles, Management, Proactive

January – Andy Kim

January 20, 2020 By Technology Director

January2020_SpeakerSlidesDownload

Topic: All Eyes On You: Cyber security in the Age of Innovation

Digital Transformation and Innovation are profoundly impacting the way businesses operate today. Time to market, speed, and agility are necessary requirements just to stay competitive in today’s marketplace. But, just as businesses are moving  fast into the future, cyber threats continue to multiply exponentially, challenging cyber security professionals and the businesses they support. What can cyber security professionals do given these seemingly incompatible objectives and how can they position the business for success? In this session, we’ll cover the reality of digital transformation, the impact of privacy, and the importance of the customer journey among many others topics that will position your cyber security program for success in 2020.

Speaker: Andy Kim, CISO eBusiness, Allstate

Andy is a strategic business partner to the C-Suite, implementing business vision within acceptable business risk. He is an avid technologist with the understanding that cyber security risks are fundamentally a human problem. A conclusion he has drawn from successfully implementing information security programs across heavily regulated industries including banking, investments, insurance, and healthcare for the past 18 years. Andy currently serves as the CISO for the digital brands and innovation businesses at Allstate. Andy helps insurance innovators deliver their capabilities in the cloud, while managing risk within acceptable tolerances.

Previously, Andy led the Risk Solutions group at Neustar. As Director, he supported multi-million dollar anti-fraud deals involving the internet and call center consumer channels for the top 10 financial institutions in the US. As a thought leader, he has been featured on American Banker http://pages.marketing.americanbanker.com/20180208_abp_neustar_ws_lp.html?source=client and has had published thought leadership blogs on identity and GDPR: https://www.risk.neustar/blog/authors/andy-kim

Before Neustar, Andy served as Director of Technology Risk Consulting Services at FIS (NYSE: FIS), in the Risk Information Security and Compliance business, which attained the #1 ranking in the Chartis RiskTech 100, where he was responsible for leading a team of subject matter experts that provided expert advisory and consulting services focusing on fraud, digital crime and cybersecurity to hundreds of financial services clients in the U.S.  He also led the design and product marketing of CyberForce, an innovative next generation fraud and cybersecurity anomalous activity detection solution in the U.S. and EMEA markets.  

Other positions include CISO of a large regional bank in Los Angeles, CISO supporting the CTO and CIO of a major US bank, CISO and HIPAA Security Officer at a pharmacy benefit management software company, Americas Security Officer of one of largest asset management firms, and Group IT Risk Officer to the third largest insurance company in the US.

Andy is highly regarded in the industry for his subject matter expertise and thought leadership and is a frequent speaker at industry conferences.  He also holds multiple certifications such as CGEIT, CISA, CISSP, CISM, ISSAP and ISSMP. 

Filed Under: Management, Monthly Meeting Speakers, Privacy

December – Neil Daswani

December 15, 2019 By Technology Director

Topic: The Biggest Breaches And What They Mean For The Future Of Cybersecurity Investment

This talk covers the key lessons learned and root causes from the biggest mega-breaches over the past several years, and analyzes their correlation to the over $45 billion invested in cybersecurity thus far. Based on hard data of over 4,000 cybersecurity companies that have been funded thus far, and what they have focused on to-date, some hypotheses on where future investment is required will be presented. Whether you’re interested in how your current company is positioned for the future of cybersecurity, considering a job change, or even potentially starting a cybersecurity company yourself, this talk will arm you with the information that you need about the security landscape, both on the business and technology fronts. Future trends in cybersecurity will also be discussed.

Speaker: Neil Daswani

Neil Daswani is currently an Executive-in Residence at Trinity Ventures, and is a Co-Director of the Stanford Advanced Security Certification Program. He has in the past served in a variety of research, development, teaching, and executive roles at Symantec, LifeLock, Twitter, Dasient, Google, NTT DoCoMo USA Labs, Yodlee, and Bellcore. Neil has been both a security entrepreneur having co-founded Dasient which was acquired by Twitter, and has also served as a Chief Information Security Officer at LifeLock and at Symantec’s Consumer Business Unit. His DNA is deeply rooted in security research and development, he has dozens of technical articles published in top academic and industry conferences (ACM, IEEE, USENIX, RSA, BlackHat, and OWASP), and he has been granted over a dozen U.S. patents. Neil is also co-author of “Foundations of Security: What Every Programmer Needs To Know” (http://tinyurl.com/33xs6g), He earned Ph.D. and M.S. degrees in Computer Science at Stanford University, and he holds a B.S. in Computer Science with honors with distinction from Columbia University.

Filed Under: Management, Monthly Meeting Speakers, Proactive

  • Go to page 1
  • Go to page 2
  • Go to page 3
  • Go to Next Page »

Primary Sidebar

Join Our Mailing List and Meetup

Email Subscription

Follow ISSA LA

  • LinkedIn
  • Twitter
  • YouTube

Listen to ISSA-LA President Richard Greenberg Being Interviewed by Ron Burgundy (Will Ferrell)

Grant funds are now available: Get exclusive access to Information Security Leaders: ask questions and obtain guidance; get policies, procedures and governance

We are Proud to Present our Educational Sponsors

ISSA Education Foundation

ISSA Los AngelesFollow

ISSA Los Angeles
issalaISSA Los Angeles@issala·
5 Mar

Ransomware forced New Mexico hospital staff to use pen and paper. Hackers attacked Rehoboth McKinley Christian Health Care Services with ransomware earlier this year and posted stolen data about employees online. http://ow.ly/NfHb50DRrWg

Reply on Twitter 1367963142161104896Retweet on Twitter 1367963142161104896Like on Twitter 13679631421611048961Twitter 1367963142161104896
issalaISSA Los Angeles@issala·
5 Mar

Hacked back! Three Russian-language cybercrime forums were hacked recently. Hackers posted thousands of stolen usernames and email addresses from users of the Mazafaka cybercrime forum on the dark web this week. http://ow.ly/MFgy50DRrRk

Reply on Twitter 1367915789437857795Retweet on Twitter 13679157894378577951Like on Twitter 13679157894378577952Twitter 1367915789437857795
issalaISSA Los Angeles@issala·
4 Mar

Federal Microsoft warning: Government agencies using certain on-premises versions of Microsoft's Exchange Server should apply the company's patches, the Cybersecurity and Infrastructure Security Agency directed Wednesday. http://ow.ly/TUkS50DQb1W

Reply on Twitter 1367571810276036609Retweet on Twitter 1367571810276036609Like on Twitter 13675718102760366091Twitter 1367571810276036609
issalaISSA Los Angeles@issala·
4 Mar

Google says it won't use new ways of tracking you as it phases out browser cookies for ads. http://ow.ly/n00R50DQaUb

Reply on Twitter 1367509659679158272Retweet on Twitter 1367509659679158272Like on Twitter 13675096596791582721Twitter 1367509659679158272
issalaISSA Los Angeles@issala·
3 Mar

59% - The Portion of ransomware attacks that IBM’s X-Force cyber team responded to last year that used a “double extortion” technique: Hackers demanded money in return for unlocking a victim’s data and for not publishing it online. http://ow.ly/EMIs50DP7Y6

Reply on Twitter 1367203237665849348Retweet on Twitter 13672032376658493481Like on Twitter 13672032376658493481Twitter 1367203237665849348
issalaISSA Los Angeles@issala·
3 Mar

Gov. Ralph Northam, a Democrat, signed a data privacy bill into law Tuesday. The Consumer Data Protection Act gives individuals the right to sue organizations for data-privacy violations and to opt out of having their data used for targeted ads. https://thehill.com/policy/technology/541290-virginia-governor-signs-comprehensive-data-privacy-law?mod=djemCybersecruityPro&tpl=cy

Reply on Twitter 1367153636204249088Retweet on Twitter 13671536362042490882Like on Twitter 13671536362042490881Twitter 1367153636204249088
Load More...

Website Sponsors

Harassment Free Environment

ISSA-LA is dedicated to providing a harassment-free experience for everyone, regardless of gender, gender identity and expression, sexual orientation, disability, physical appearance, body size, race, age, religion, or political affiliation. We have a zero tolerance policy for harassment in any form. Violations by any registered attendee or participant at any ISSA-LA events may result in expulsion and possible ban from future ISSA-LA events.


© Copyright 2019 ISSA LA · All Rights Reserved · Privacy Policy · Terms of Use