Vectra brought a special January bonus meeting this month! Thank you Vectra!
Monthly Meeting Speakers
Happy New Year Everyone! We are kicking things off with a special collaboration with our Law Enforcement counterparts. Catch it below!
With the passage of the California Privacy Rights Acts in the November 2020 elections, we are bringing you a panel discussion on the all-new California Privacy Rights Act (CPRA) and how it impacts the California Consumer Privacy Act (CCPA).
We had an amazing conversation in November on cybersecurity hiring during a pandemic. If you missed it, don’t worry. Watch below!
Topic: Inclusion Before Diversity
Abstract: For far too long, the conversation of diversity and inclusion has lacked definition. Many believe the terms are synonymous, but they are not. Diversity is simply not possible unless our cultures foster inclusion, which are the behaviors and social norms that allow diversity to happen in our workforce. Join our panel of leaders who will discuss insights on what inclusion means to diversity as well as the behaviors of inclusion our cultures need to foster in order to have a diversity of people.
We had an exciting and refreshing conversation on diversity lead by Deidre Diamond in September. Together with Marci McCarthy, Jimmy Sanders, Mari Galloway and Anu Koshy, they really spearheaded a passionate conversation on inclusion before diversity.
If you missed the conversation, you may watch the replay below.
Topic: Those who do not learn history are doomed to repeat it.
Presenter: Jack Daniel
Summary: When frustrated we may ask ourselves “where are we going and why are we in this handbasket?”, but we rarely have the time to really reflect on where we’re going as an industry and how we got here- and who led the way. The people and ideas which were the foundations of information security are not ancient history, yet few of us know much about them. We are too busy running to keep up and never have time to look back. In this talk we will meet some of the people who founded and advanced our field, and hear some of their stories.
Watch the recap below:
Sponsors: Exabeam and Semperis
Topic: Hack The Vote!
Presenter: Chris Roberts
One person, one vote… that’s what we keep telling ourselves, although let’s be honest that really isn’t how it works, at least in the US because of the cockeyed electoral college thing, so it’s more like “some states, most of the votes” AND we can break that down even further by “Electoral College, ALL the votes” because they don’t have to give a damm what you think OR who’s most popular in your state…
So, face it, it really doesn’t matter what the hell you vote, it all comes down to a set of folks…
SO, lets change things
Let’s hack the voting systems, after all they’re controlled by three major companies who don’t give a toss about security, who, between them have more lawyers than programmers and with whom we entrust out futures….ALL secured by passwords such as “EVEREST” “ESS, Password or 1234
What DO we do about it? Watch the recap below:
We all need to work with board of directors. Not only do they define strategy, but they set the culture, tone, and pace an organization embraces cybersecurity. We as cybersecurity professionals need to work with the board and effectively commuicate the risks to our organization
If you missed our elite panel of CISOs, watch our recap below on YouTube. Don’t forget to like and subscribe to our YouTube channel.
- Richard Greenberg, Moderator, ISSA-LA President
- Mark Weatherford, General partner at Aspen Chartered
- Jaclyn Miller,Chief Security/Chief Privacy Officer, Secure-24
- Dave Estlick, CISO Chipotle
- Demetrios Lazarikos, Three-time CISO, Founder, Blue Lava
We had an extremely passionate discussion in our April 2020 meeting on Application Security with an extremely dedicated and passionate panelists and application security leaders.
Our panelists took us through the various debates on importance of security standards, application penetration testing, security as a software development lifecycles, and processes.
If you missed our spirited session, catch the replay below.
Our next virtual chapter meeting will be Wednesday, June 17, 2020 at 11:45am.
- Richard Greenberg, Moderator, ISSA-LA President
- Andrew van der Stock, Current co-lead of the OWASP Top 10 and OWASP Application Security Verification Standard
- Holly Grace Williams Technical Director at Secarma Ltd
- Jack Mannino, Chief Executive Officer at nVisium
- Jim Manico, Founder, Secure Coding Instructor at Manicode Security
- John Steven, Chief Technology Officer at ZeroNorth
- Simon Bennetts , Security Automation Engineer at Mozilla, OWASP ZAP Project Lead
- Tony UcedaVélez, CEO & Founder-VerSprite, Author of Risk Centric Threat Modeling & PASTA Methodology
Topic: Taking The Bugs Out of Bug Bounty
Bug Bounties are the new big “thing” in infosec with a diverse group companies of all sizes jumping in. While these programs can be highly effective, it is easier said than done. Using his experience building and running Aviation’s first bug bounty program, Josh discusses his trials and tribulations implementing a first of its kind Bug Bounty program. By the end of this talk you will know what to anticipate, do, and avoid while building a Bug Bounty program to be as successful as possible right out of the gate.
Speaker: Josh Jacobson
Josh is an ethical hacker and researcher based out of Los Angeles California. He began his career as an ethical hacker with a focus on internal and wireless network penetration testing before taking on application security. In his previous role at United Airlines he designed, built, and managed aviation’s first public bounty program which subsequently won multiple awards. While at United also lead digital forensics and conducted Aircraft and Avionics research as an ethical hacker. Josh now oversees vulnerability management for Sony Pictures Entertainment.