If the handout download links from within past event articles are broken, please navigate to Chapter->Downloads to obtain the document.

2012 February - Progression of a Hack

The Board of Directors of the ISACA Research Triangle Chapter is proud to announce the February 1, 2012 day training session.

Dates: February 1, 2012 1:00 p.m. to 4:30 p.m.

Material: Session 1 / Session 2

Registration: Through our website

Location: Research Triangle Foundation Conference Room


ISACA Member - $0
ISACA Partners(IIA, ISSA, Infragard etc.,) - $25
Non-Members - $40

CPEs: Upto 3

Session 1 - Progression of a hack

A demo filled exploration of how attackers move around on compromised networks with mitigation and preventive measures discussed at each step. This one might be especially interesting for auditors as it shows many configuration weaknesses and hardening oversights that end up leading to larger compromises.

So you have a firewall, AV, IDS, patch management and more. Nobody is getting in. Somehow Fake-AV and malware still rear their ugly heads from time to time, but things feel pretty safe. Others in this same situation are still making the news. This talk will look at how a single foothold can lead to the opening story on the evening news. We will look at how a motivated attacker can compromise a patched Windows box, escalate privileges on a domain, and get to the data. As each demonstration shows the techniques, we'll talk about mitigation strategies, logging guidelines, and what steps you can take to avoid being a headline.



Speaker: Ryan Linn, Sr. Security Consultant, TrustWave SpiderLabs

Ryan Linn is a Senior Security Consultant within the Penetration Test practice at Trustwave's SpiderLabs. SpiderLabs is the elite security team at Trustwave, offering clients the most advanced information security expertise available today. The SpiderLabs team has performed more than 1,200 computer incident response and forensic investigations globally, as well as over 12,000 penetration and application security tests for Trustwave's clients. Ryan is a frequent presenter at security conferences, and has contributed code to a number of open source projects including Metasploit, The Browser Exploitation Framework ( BeEF), and other tools such as Nikto and Dradis.

Session 2 - FedRAMP & FISMA

How Federal agencies will be purchasing, audit and assessing security from Cloud Service Providers under FedRAMP (Federal Risk and Authorization Management Program).  The presentation will cover FedRAMP, FISMA and the FedRAMP Baseline Security Controls tool and the Cloud Security Alliance's - Cloud Controls Matrix tool.

Speaker: Valdez Ladd, CISSP, CISA, COBIT-F, ITIL-F v3

Valdez Ladd is an IT Security Professional with over 15 years experience in telecommunication, networking and IT security and compliance. He specializes in VPN, encryption and network compliance for remote servicing of medical imaging equipment at medical facilities. He is a cloud computing advocate for security and compliance.