Information & Registration: https://isaca-gwdc.org/event/secure-behaviors-seminar-jan-2019/#.XDf1qOJRfb1
Technology offers the promise of a better future. More than most, ISACA’s members understand how much of the world depends on technology and the data that drives it.
Despite billions of dollars spent for security and tools, we continue to see large scale breaches in government and commercial IT systems, which result in losses that include: money, reputation, trust, national security, intellectual property, integrity of functions, and the veracity of data.
Organizations throw technology at the problem. Employees are offered “awareness training,” which explains the dangers, what to look for, and addresses some behaviors--against the more obvious threats. Breaches continue on a broad scale, so what is missing?
Threats have become increasingly sophisticated and organizations make a fundamental mistake in understanding the employee part of the problem. The people risk component doesn’t start when people walk in the door at work. It starts in their personal life and spills over into the workplace, which most “awareness training” does not address.
This seminar will focus on employees, their behaviors, and improving their understanding of the information domain, how their behaviors put them at risk, and how they are targeted.
The seminar is divided into four blocks:
- Understanding Privacy: This block will review the legal basis for privacy in the United States, what identity attributes are, data collection and aggregation, data compromises and their impact, why critical thinking is important, and privacy takeaways.
- Dark Web: This block explains the concept of the Deep and Dark Web, tools of the trade (apps, networks, browsers, and anonymizers), and entity resolution.
- Individual Data Rights & General Data Protection Regulation (GDPR): This block explains what Europe’s General Data Protection Regulation (GDPR) is, its core components and application, penalties, individual data rights, and GDPR takeaways.
- Personal Security & Identity Awareness Tradecraft: This block explains how people are targeted, identity awareness, behavior focused personal security concepts, determining vulnerability, and personal security tradecraft.