RSA 2016

PRESENTATIONS

• 91% of Cyberattacks Start with Email: Addressing "Human Firewall" Flaws

• Android Malware Pattern Recognition for Fraud and Attribution

• Are Legacy Malware Callbacks Clouding Your Security Operations Team?

• Are We Really Ready for Blockchain?

• A Technology Vision for Business Driven Security

• Barbarians at the Gate(way)

• Building a Cloud Security Solution in a Multi-Tenant Environment

• Building a Successful Threat Hunting Program

• Building Bridges: Surprising Strategies and Teammates for Infosec Success

• Connected Vehicle Security

• DDoS Is Coming--A Story of DD4BC and the Copycat Squalls

• Defeating Insider Threat with Cyber and Physical Security Convergence

• Defending the Digital Enterprise: Cyberthreat Visibility and Resolution

• Deployments of Unidirectional Communication between ICS OT and Corporate IT

• ERP Security 2016: Vulnerabilities, Threats and Trends. Expert Opinion

• EU Data Protection Regulation (GDPR): Compliance, Security for Non-EU Firms

• Evaluating Vulnerability Risk Exposure to Prioritize Remediation and Patching

• Identity as a Critical Next Step in Security

• Incident Responder's Field Guide--Lessons from an F100 Incident Responder

• Lessons Learned from Cybersecurity and Data Protection Roundtable

• Live Demo: A New Hardware-Based Approach to Secure the Internet of Things

• Machine Learning--Cybersecurity Boon or Boondoggle

• Managed Detection and Response (Next Generation of Managed Security Services)

• Maximizing Security and Compliance through Digital Third Party Risk Management

• Moving Beyond Legacy Endpoint Security Technology

• Next Generation Endpoint Security--Confused?

• Operationally Focused Pen-Testing

• Protect Your Email in the Cloud against Ransomware and Other Advanced Threats

• Ransomware in the Middle East

• Security & Disruption: Fourth Industrial Revolution Challenges & Opportunities

• Security Foundations Seminar

• Security Roundup for the Middle East: Trends and Threats

• Security @ Scale: Making Security Analytics Work for the Internet of Things

• Security Threats, Frameworks and Mitigation Efforts: How Can You Lower Your Risk

• Serious Threat Hunting: Hunting for Advanced Adversaries without IOCs

• Standardizing and Automating Incident Response and SOC: State of the Art

• Sustaining a Malware-Free Enterprise Network

• The Art and Science of Deception for Advanced Threat Detection

• The State of Security Survey 2016

• Virtual Machines vs. Containers vs. Unikernels: The Security Face-Offs

• What Governments Don't Understand about Cybersecurity

PRESENTATIONS

• Achieving e-Commerce Success through Effective Internet Security: A Primer for SMEs

• Advanced Malware and the Cloud: The New Concept of 'Attack Fan-out'

• A Global Enterprise Confronts Targeted Attacks--Case Study

• Android Serialization Vulnerabilities: Is Your Device or App Still Vuln?

• A New Security Paradigm for IoT (Internet of Threats)

• A New World, New IT, New Security

• Behavioural Analytics--A Closer Look

• Building and Sustaining an Effective Incident Response Center

• Cloud Servers, Honeypots and ELK--The Path to Attaining Cyber-Hunting Nirvana

• Cybercrime Collaboration--The Changing APAC Threat Landscape

• Cybersecurity Insurance: New Risks and New Challenges--Be Smart

• Cyber-Wargame Exercise: Operation Cyber-Monkey 2016

• Dark Web Globetrotters: Differences in Seven Underground Markets

• Data and Surveillance

• Data Breaches--Trends and Real Stories from the Trenches

• Data Science for Cybersecurity: How Can We Make It Work?

• Eastern European Black Market Economy Trends

• Encryption, Apple and Global Implications

• Exploit Zoo: The Evolution of Exploit Kits

• Export Controls and Cybersecurity Tools: Renegotiating Wassenaar

• Extending Your Security beyond Traditional Safe Borders with OpenDNS

• Eyes Everywhere: Monitoring Today's Borderless Landscape

• Fighting 'Sophisticated' Attacks with Advanced Persistent Security

• From Strategy to Tactics: Targeting and Protecting Privileged Accounts

• G2B: Cyber-Business in Myanmar, Indonesia and Thailand

• Govern Every Identity. Inspect Every Packet - Become the Department of Yes

• Hide and Seek: How Threat Actors Respond in the Face of Public Exposure

• Hiding in Plain Sight: The Growth of Cybercrime in Social Media

• I Am Divergent: EMDIVI's All Kinds of Attacks

• Identify, Contain and Prevent Threats in Smart Cities, Smart Grids and HEMS

• IOCs Are Dead -- Long Live IOCs!

• IoT Security and Risk Management

• Is the Tokenisation Framework Really Secure?

• Managing Security in Internet of Things Using API Management Platforms

• Modelling Advanced Persistent Threats

• Operationalizing the Three Principles of Advanced Threat Detection

• Quantifying and Communicating Cyber-Risk Exposure to the Board

• Ransomware: Your Worst Nightmare

• Secure at the Software Source

• Security Awareness Is Not Enough: Build Security Culture Using Science of Habits

• Security Implications of Using Blockchain Technology for More than Money

• State of Cloud Security 2016

• The Future State of Security Starts with Virtualization

• The Journey: From Right Objectives to a Measurable GRC System

• The Need for Speed: Application Security in a DevOps World

• The NIST Cybersecurity Framework -- Measuring Compliance

• The Questions You Should Be Asking Your Privacy Pro

• The Shifting Botnet Landscape: Threats and Discovery Techniques, a Case Study

• Thingbots: The Future of Botnets in the Internet of Things

• Threat Intelligence: Is It Any Good?

• Threat Intelligence Landscape in China

• Undeclared Cyberwars: Cyberthreat Actors Targeting Asia

• Web Attacks of Past, Present and Future

• Web Defacements and Data Leakages--Twin Towers Website Threats

• What Can We Do to Mitigate the Risk of Falling Victim to Ransomware?

PRESENTATIONS

• 10 Easy Steps to Building a Successful Extended Security Team

• 2016 State of Vulnerability Exploits

• 2016: The Changing Face of Cyber in the Federal Space

• 300+ Cities, Millennials and a Mobile Workforce: A Security Gauntlet

• A Conversation on Silicon Valley/DC Security Collaboration

• Active Defense: Defining the Policy, Technology and Legal Landscape

• Adjusting Your Security Controls: It’s the New Normal

• Advancing Information Risk Practices Seminar

• Agile Security—Field of Dreams

• Alerts for Digital Identity System Operation and Fraud Detection

• Aligning and Prioritizing Risk Efforts across the Enterprise

• Android Serialization Vulnerabilities Revisited

• A New, Radically Innovative US-CCU Cybersecurity Checklist

• A New Security Paradigm for IoT (Internet of Threats)

• Application and Threat Intelligence: Driving Security Offense and Defense

• Applying Auto-Data Classification Techniques for Large Data Sets

• Applying Top Secret and Military Network Grade Security in the Real World

• AppSec Awareness: A Blueprint for Security Culture Change

• Are You Thinking about IT Outsourcing? Top Reasons, Risks and Rewards

• Are You Worthy? The Laws of Privileged Account Management

• A Roundtable with Three Cyber-Wisemen

• Artificial Intelligence for Infosec: Actively Learning to Mimic an Analyst

• Aspirin as a Service: Using the Cloud to Cure Security Headaches

• Assessing Privacy before Monitoring What Your Employees Do with Your Data

• Assessing Risk: CSOs and Cyber-Insurance

• Attacks on Critical Infrastructure: Insights from the “Big Board”

• Authenticated Encryption

• Automation and Virtualization Simplify Life: Can They Simplify Security?

• Automobiles are Getting Hacked: What’s Next for Transportation Security?

• Autonomous Hacking: The New Frontiers of Attack and Defense

• Avoid Epic Fails: Elements of Successful Breach Notification and Response

• Barbie vs. the ATM Lock: Which Is the High-Security IoT Device?

• Battling Daily Cyberattacks—A Day in the Life of Orange Israel’s CISO

• Board Room Rodeo: How to Align the C-Suite and Make Better Security Decisions

• Bots—Fast Growing Bane of the Web: Crawlers, Scrapers and Account Checkers

• Braking the Connected Car: The Future of Vehicle Vulnerabilities

• Breach Fixation. How Breaches Distort Reality and How Should We Respond?

• Breaking Closed Systems with Code-Signing and Mitigation Techniques

• Breaking In Is Easy—Breaking Bad Habits Is HARD!

• Bridging Cybercrime and Cybersecurity—How Law Enforcement Battles Cyberthreats

• Bridging the Gap between Threat Intelligence and Risk Management

• Bridging the Great Minority Cyber-Divide—Social and Cultural Dynamics

• Bringing Cybersecurity to the Boardroom

• Bring Your Own Internet of Things (BYO-IoT)

• Bruh! Do you even diff?—Diffing Microsoft Patches to Find Vulnerabilities

• Building an Android Scale Incident Response Process

• Building an Effective Supply Chain Security Program

• Building a World-Class Proactive Integrated Security and Network Ops Center

• Build It In—A Proactive Approach to Securing Applications, Users and Data

• …But Now I See—A Vulnerability Disclosure Maturity Model

• Can Government Encryption Backdoors and Privacy Co-Exist? Is It an Oxymoron?

• CForum: A Community Approach for Improving Cybersecurity Programs

• CISO Success Strategies: On Becoming a Security Business Leader

• Cloud Attacks Illustrated: Insights from the Cloud Provider

• Cloud Breach – Preparation and Response

• Cloud Security Essentials 2.0

• Codifying the Brain: Automation, Alerts and a Human Resource Answer

• Collision Investigator: Aftermath of the Auto Hacks

• Combating Spoofed GPS in Forensics

• Confronting Cybercrime: Exploring the Legal and Investigative Challenges

• Confronting Cybercrime: Exploring the Legal and Investigative Challenges (Focus-On)

• Converging IT and OT for Secure, Reliable, Resilient Industrial Networks

• Critical Infrastructure Fails: Are We Doomed?

• CROWDPATCHING—It’s Time to Take Vulnerability Fixing in Our Own Hands

• Cryptanalysis of Symmetric Key Encryption

• Crypto 101: Encryption, Codebreaking, SSL and Bitcoin

• Cryptoparty: An Introduction to Secure, Usable Encryption Tools for All

• Cryptoparty: tuTORial—Learn How to Use TOR to Be Anonymous Online

• CSA Summit 2016: Cloudifying Information Security

• Customer Centric Security and Architecture—a CISO/CTO Study

• Cyber-Alarm 2016: Major Cyber-Breach Exercise

• Cyberrisk Diligence in M&A and Investing: Negotiating a Better Deal

• Cybersecurity Education and Workforce Development for the Nation

• Cybersecurity for Oil and Gas Industries: How Hackers Can Steal Oil

• Cybersecurity Insurance: The Catalyst We’ve Been Waiting For

• Cybersecurity—The View from Washington with Jim Lewis and Stewart Baker

• Cyber-Situational Awareness in ICS/SCADA Networks

• Data Breach Litigation: How to Avoid It and Be Better Prepared for Defense

• Data Classification—Reclaiming Infosec’s Redheaded Stepchild

• Data-Driven App Sec

• Data Science Transforming Security Operations

• Debunking “SOC Teams vs. Vendor” Myths in Cyber-Firefights

• Deconstructing Identity in Security

• Demystifying a Malware Attack

• Demystifying Security Analytics: Data, Methods, Use Cases

• Designing Virtual Network Security Architectures

• Detection, Prevention and Response Strategy: The Return of the Endpoint

• Developing a Cyberstrategy: Prepare Your Company before Zero Day Strikes

• DevOps Throw Down with Chris, Gary, Caleb and Shannon

• DevSecOps in Baby Steps

• DevSecOps—The Tao of Security Science

• Diffusing the IoT Time Bomb—Security and Privacy Trust Code of Conduct

• Digital Signatures with New Functionality

• Disrupting Adversarial Success—Giving the Bad Guys No Sleep

• Dissecting Bitcoin Security

• Dissecting Derusbi

• Docker: Containing the Security Excitement

• Doing Something Smart with All the Smart Things

• Domain Knowledge: How to Factor DNS into Your Security and Privacy Strategy

• DON'T Use Two-Factor Authentication...Unless You Need It!

• Do We Need Cyber-Ratings for the Auto Industry?

• Dreaming of IoCs: Adding Time Context to Threat Intelligence

• Dyre Times: Into the Mind of a RAT Operator

• Effectively Measuring Cybersecurity Improvement: A CSF Use Case

• Embedded Systems Security: Building a More Secure Device

• ENCORE When Good Devices Go Bad: Live Hacking in the IoT Sandbox

• Encryption and Information Sovereignty: Destroying the Internet to Save It?

• Encryption without Enterprise Key Management—It’s Like Icing without Cake

• End Island Hopping Hackers’ Vacation in Your Information Supply Chain

• Estimating Development Security Maturity in About an Hour

• Evolving Security Operations: The Future of Orchestration

• Exploring the Foundations of Mobile Trust

• Financial Sector and the Evolving Threat Landscape: Live Cyber-Exercise

• Finding Triggered Malice in Android Apps

• Five Infosec Lessons from the Great Generals of the Ancient World

• Five Ways to Drive Revenue by Protecting Customer Privacy

• Flaming Toasters to Crashing Cars—The Internet of Things and Mass Liability

• From Cave Man to Business Man, the Evolution of the CISO to CIRO

• From Pigtails, to Prom, to a Cyber-Career: What about Your Daughter?

• From Ukraine to Pacemakers! The Real-World Consequences of Logical Attacks

• Getting Scammed: A Security CEO’s Firsthand Encounter

• Get Your Head in the Cloud: A Practical Model for Enterprise Cloud Security

• Ghosts in the Shadows

• Giving the Bubble Boy an Immune System so He Can Play Outside

• Global Cybersecurity Laws, Regulations and Liability

• Got Coverage? Cyber-Insurance Realities Revealed

• Got Cyber? Keep Calm and Carry On at Network Speed

• Government in the Crossfire: Data Privacy in an Era of Growing Cyberthreats

• Guiding Principles to Defending Organizations

• Habits of an Effective CISO

• Hacker Marketing Strategy: How Cybercriminals Promote for Press and Profit

• Hackers Hiring Hackers—How to Do Things Better

• Hacking a Professional Drone

• Hacking Critical Infrastructure Like You’re Not a N00b

• Hacking Exposed LIVE: Attacking in the Shadows

• Hacking Exposed: The Mac Attack

• Hacking IoT: Why Security in IoT is Failing (and how to fix it!)

• Hacks Happen

• Hardware Attacks and Security

• Here, There and Everywhere: How to Harness Your Value Chain Security Beast!

• Hide and Seek: How Threat Actors Respond in the Face of Public Exposure

• Hot Topics in Privacy: A Conversation with Adobe, Google and Microsoft

• Hot Topics in Technology Law

• How Broken Is Our Crypto Really?

• How Infosec Maturity Models Are Missing the Point

• How Poorly Managed Keys and Certificates Impact the Trust Model

• How the USG’s Rule for Intrusion Software Will Kill Global Cybersecurity

• How to Analyze an Android Bot

• How to Build or Buy an Integrated Security Stack

• How to Explain Cybersecurity to the Board Using a Simple Metaphor: FIRE

• How to Get into ICS Security

• How to Measure Anything in Cybersecurity Risk

• How to Steer Cybersecurity with Only One KPI: The Cyberrisk Resilience

• How to Verify Procedures

• ICS Sec for n00bz: an Intro to ICS Defense by Defending the Death Star

• Identity Standards at Work in Google’s Mobile-Focused Future

• Industrial Cyberthreats: The Kaspersky Lab View

• Industrial Defence In-Depth

• Information Security Leadership Development: Surviving as a Security Leader

• Innovation in Network Security

• Integrated Security Operations Center (ISOC) for Cybersecurity Collaboration

• Integrating Cybersecurity into Supply Chain Risk Management

• Intelligence-Led Security: Confronting the Ever-Evolving Threat Landscape

• Intelligent Application Security

• Introducing a Security Program to Large Scale Legacy Products

• Introduction and a Look at Security Trends

• Investment in Privacy Brings Security Results

• IOCs Are Dead—Long Live IOCs!

• IoT Breaks All the Rules: How Should Developers and Organizations React?

• Is Rome Burning While Nero Fiddles?

• It’s Not Dead Yet—Email Security Matters

• It’s Personal: Attacks on the Individual

• Laboratories of Democracy: States Developing Innovative Cyber-Policies

• Lattice Cryptography

• Law and Ethics in the Cyborg Age

• Learning from Unicorns While Living with Legacy

• Lessons Learned from Real-World CISOs

• Let’s Play Doctor: Practical OS X Malware Detection and Analysis

• Leveraging Analytics for Data Protection Decisions

• Linguistic Passphrase Cracking

• Live Cyber-Exercise: Responding to National Crisis

• Local Malware for Local People—The Regionalization of Malware

• Local Malware for Local People—The Regionalization of Malware

• Looking through an Attacker’s Eye—Picture to Compromise in 30 Seconds

• Machine Learning and the Cloud: Disrupting Threat Detection and Prevention

• Make IR Effective with Risk Evaluation and Reporting

• Makers vs. Breakers: On Exploit Development and Software Engineering

• Malware as a Service: Kill the Supply Chain

• Managing Complex M&A Security Risks—A Detailed Case Study

• Measuring What Matters

• Message Authentication Code and PRF-Security

• Mobile CA State of the Union

• More Books You Should Have Read By Now: The Cybersecurity Canon Project

• My Life as Chief Security Officer at Google

• Myth Busting the Security Landscape and Development Cycle

• National Cybersecurity for Transport Networks (NCTNs)

• Nothing Lasts Forever—Trust Has an Expiration Date

• Offense & Defense: Defense in Depth, Social Engineering and Historical Lessons

• One Approach to Rule Them All—Global Privacy and Security

• One Team, One Fight

• On the Ground with Bullets Flying By—Tales from the First Security Hire

• Open-Source Security Management and Vulnerability Impact Assessment

• OpenSSL after HeartBleed

• Opportunities and Challenges to Securing the Internet of Things

• Our Brave New Connected World: Is It Already Too Late?

• Our Road Ahead: Today’s Tech Developments, Tomorrow’s Security Challenges

• Partnerships with a CFO: On the Front Line of Cybersecurity

• People-Centric Security: Transform Culture, Reduce Risk, Drive Success

• Performing Advanced Incident Response—Interactive Exercise

• Place Your Bets on Tokenization to Improve Cybersecurity

• Preserving the Privilege during Breach Response

• Preventing Cyber-Exposure: You Say Criminal, I Say Intractable

• Privacy and Cyberthreat Sharing: Bridging the Divide

• Privacy Perspectives: How It’s Lost and the Implications

• Privacy Regulatory Landscape Past, Present and Future

• Privacy Risk and Control Design: NIST’s Framework for Managing Privacy Risk

• Privacy, Security, IT and the New European General Protection Regulation

• Privacy, Selfie Sticks and Umpires: Things That Shouldn't Exist, But Do

• Proactive Measures to Mitigate Insider Threat

• Product Security at Internet Scale

• Protecting Organizations: Emerging Threats and Software Supply Chain Analysis

• Providing First-Rate Security Services with Analytics-Driven Security

• Quantum Technologies and Real-World Information Security Challenges

• Random Numbers—The Key to Security

• Realities of Data Security

• Real-World Examples of Positive Security ROI

• Responses to State-Sponsored Economic Espionage

• Rise of the Hacking Machines

• Risks, Harms and Rewards of Our and Our Kids’ Online Lives

• Rock the CASB-ah— Advanced Use Cases from Pioneers of Cloud Security

• Roles of Industry and Government in Cyber-Incident Responses

• SaaS Attacks Happen: How Cloud Scale Changes the Security Game

• Safeguarding the Digital Frontier: Balancing “Security” and “Security”

• Searchable Symmetric Encryption

• Secrets of Building the Ultimate Security RFP

• Secure Key Exchange Schemes

• Secure Multiparty Computation

• Securing Automobility: Cyborgs and the Social Network of Things

• Securing Large-Scale Socio-Technical Systems

• Securing the Industrial Internet of Things: A Deep Dive into the Future

• Securing the “Weakest Link”

• Securing Today’s Online Kids

• Security Advantages of Software-Defined Networking

• Security as a Service in a Financial Institution: Reality or Chimera?

• Security Investigative Journalists Speak Out—More Breaches, More Problems

• Security Issues in Transportation: Need for Collaboration for Solutions

• Security Monitoring in the Real World with Petabytes of Data

• Security of Public Key Encryption

• Security Program Development for the Hipster Company

• Security Recipes for the New Digital Era

• Security Startups: The CISO’s Guide to Flying High without Getting Burned

• Security Tools: An Attacker’s Dream Come True

• Serial Killer: Silently Pwning Your Java Endpoints

• Should I Stay or Should I Go? How to Attract/Retain Women in the Industry

• Side-Channel Attacks on Elliptic Curve Cryptography

• Smart Megalopolises. How Safe and Reliable Is Your Data?

• Sophisticated Attacks vs. Advanced Persistent Security

• So You Want to Run Your Own Security Business?

• State of Cybersecurity: 2016 Findings and Implications

• STIX, TAXII, CISA: Impact of the Cybersecurity Information Sharing Act of 2015

• Structure-Preserving Signatures

• Successful Managed Security Services Relationships: From Dating to Divorce

• Successful Security Practitioners: How We Evolve and Where Is the Workforce

• Tactical Survival Tips Building and Leveraging IoT Technologies

• Take It to the Cloud: The Evolution of Security Architecture

• Teaching Our Kids the Real Hacking Sklllz

• Techniques for Security Scalability

• The $100 Million Question: Were Reasonable Cybersecurity Measures Taken?

• The 90-Day Information Security Strategy

• The Aftermath of a Breach: Best Practices for Working with Law Enforcement

• The Air Up There: Wireless Beyond Wi-Fi, IoT from DC to 10GHz

• The Art of Hacking a Human

• The Cybersecurity Risk Information Sharing Program: Bi-Directional Trust

• The Dark Web and Cyberespionage: Fact, Fiction and Future

• The Data Behind How We Work with Data

• The Disconnect between Builders and Buyers: A VC’s Perspective

• The Evolution of Our Industry: 25 Years of RSA Conference Session Titles

• The Evolving Landscape of Cybersecurity: Threats, Opportunities, and Partnerships in a Changing World

• The Future of Bitcoin and Cryptocurrencies

• The Future of Privacy

• The Gamification of Data Loss Prevention

• The Measure of Success: Security Metrics to Tell Your Story

• The Newest Element of Risk Metrics: Social Media

• The Pivot

• The Rise of the Purple Team

• The Secrets of Malware Success on Google Play Store

• The Seven Most Dangerous New Attack Techniques, and What's Coming Next

• The Shadowy Cyberattack—State Sponsors of Terror and Cyberterrorists

• The Shift to a 24/7 Security Landscape: Why Cloud Security Is the Answer

• The State of End-User Security—Global Data from 30,000+ Websites

• The State of Modern Password Cracking

• The Three Principles of Effective Advanced Threat Detection

• The Ultimate Reason Why Hackers Are Winning the Mobile Malware Battle

• The Virtual Patching of Zero-Day Vulnerabilities

• They’re People—Not Data! The Human Side of Insider Cyberthreats

• Thinking Digital Enablement, Think Protection, Think Process Re-engineering

• This Doesn’t End Well: The TLD Explosion

• Threat Modeling the Minecraft Way

• Threats of Greatest Consequence Heading into 2016

• TLS Certificates on the Web—The Good, the Bad and the Ugly

• Top 10 Security Hardening Settings for Windows Servers and Active Directory

• Top 10 Things to Be Fixed at ICS Installations

• Tracking Hackers on Your Network with Sysinternals Sysmon

• Train Like You’re Going to Fight—What Kind of Exercise Meets Your Needs?

• Transforming Security: Containers, Virtualization and Softwarization

• Transforming Your Security Culture: From Awareness to Practice to Maturity

• Trends in Social Engineering: How to Detect and Quantify Persuasion

• Understanding HTTP/2

• Understanding Malware Provenance: A Federal View

• Understanding the Attack Surface and Attack Resilience of EdgeHTML

• Understanding the Security Vendor Landscape Using the Cyber Defense Matrix

• Understanding the Security Vendor Landscape Using the Cyber Defense Matrix (Focus-On)

• Understanding the “Why” in Enterprise Application Security Strategy

• Uploading Fear: Terrorists’ Use of Social Media and the Internet

• Upwardly Mobile: Looking at Evolving Cybercrime Tactics in Mobile Malware

• Using Behavioral Psychology and Science of Habit to Change User Behavior

• Using Cloud-Scale Intelligence to Address Security Challenges

• Using Cybersecurity Career Lifecycle to Get In and Stay in the Profession

• Using Deception and Forensics to Detect Threats from Within

• Using Large Scale Data to Provide Attacker Attribution for Unknown IoCs

• Vendor Security Practices: Turn the Rocks Over Early and Often

• Wake Up Call: Do Industry Analysts Actually Stifle Security Innovation?

• Web Security Smackdown: Put Your Offensive Skills to the Test

• What Is Next-Generation Endpoint Security and Why Do You Need It?

• What Is the Right Approach for Critical Infrastructure Protection?

• What IT Professionals Need to Know about Sniffing Wireless Traffic in 2016

• When Attackers Want Your IP: Valuing and Guarding Prized Business Assets

• When Good Devices Go Bad: Live Hacking in the IoT Sandbox

• When Worlds Collide: IoT Meets ICS

• Where You Are Is Who You Are: Legal Trends in Geolocation Privacy & Security

• Who Are You? From Meat to Electrons and Back Again

• Why Won't Anyone Listen to Us?

• Wireless Infusion Pumps: Securing Hospitals’ Most Ubiquitous Medical Device

• Witness the Russian Attack: Live Demos of Their Steps, Tools, Techniques

• Your SecOps Don’t Catch Bad Guys and Waste Your Money. We Know Why!