Home
Presentations
Agenda
Sessions
Expo
Register
Destination
Sponsors

Highlights
FOCUS at a Glance
Special Events
On-Site Resources
FAQs

OCTOBER 6 - 9, 2009
The Venetian and The Palazzo
Congress Center

Thank you for
attending FOCUS 09!

FOCUS ATTENDEES
Download presentations.

Sessions Catalog

The Sessions Catalog below is a complete listing of all FOCUS breakout sessions.

Targeted Group Meetings

Track 1 - Network Defense

Track 2 - Securing the Network: Focus on Email / Web Security

Track 3 - Protecting Every System: Focus on Endpoint

Track 4 - Protecting Every System: Focus on Data Protection

Track 5 - Transforming Business through GRC

Track 6 - Economics of Security

Track 7 - Threats & Trends

Sort By

Targeted Group Meetings

Avert Labs - Malware Experience
(By appointment only)
You've often heard that the Internet is a dangerous place and you've probably read about threats such as botnets, keystroke loggers, drive-by installations of malware through rigged Web sites. But what is malware really? How do cybercriminals launch their malicious attacks? McAfee is offering you the chance to find out with the unique and exclusive McAfee Malware Experience.

Join experts from McAfee Avert Labs at Focus 2009 where you will have a chance to create a Trojan horse, commandeer a botnet, install a rootkit and experience first hand how easy it is to modify Web sites to serve up malware. Of course this will all be done in the safe and closed environment, ensuring that what you create doesn't actually go out onto the Internet. To schedule an appointment with an Avert expert, contact Shiva Mandalam at shiva_mandalam@mcafee.com or 408.346.3866.

E-mail Security - Under the Hood
(Invitation only)
This deep-dive is hosted by the McAfee Email Security team and will cover the enterprise architectural considerations for a successful McAfee Email Gateway (formerly IronMail) deployment. Get tips and tricks on load balancing, testing and deployment of Email Gateway. Find out how to tune Email Gateway for optimal spam effectiveness. Learn about the numerous opportunities for data leakage and how McAfee Email Gateway and McAfee DLP Prevent can be integrated to address this growing problem.

The session continues with a product deep dive where you'll walk through the features in the latest version of McAfee Email Gateway. Learn what the future brings in the McAfee Email Gateway roadmap discussion. You'll end the information-packed day with an interactive "Ask the Experts" roundtable featuring the McAfee Email team. For more information, contact Anne Aarness at anne_aarness@mcafee.com or 651.628.2832.

Firewall Product Advisory Council
The Firewall Product Advisory Council will be held Tuesday, October 5 from 9:00 am - 4:00 pm.

Global Partner Day
(No fee for FOCUS 09 partner attendees)
Calling all McAfee Partners around the world! Join the McAfee executive leadership team along with the Theater Channel leadership teams for our first annual Global Partner Day. Learn about how you can leverage the McAfee Channel, Product, Marketing, Regional and Segment Strategy to drive business opportunities to your company.

Come to a full day of theater-specific market updates, panel discussions and birds-of-a-feather breakout sessions, leading up to a global general session led by McAfee CEO Dave DeWalt and our new worldwide Channel Czar.

The Partner Group at McAfee is listening, learning and affecting change to our channel operations and strategy. Let us know what you want to hear about. Submit topics or ideas for Global Partner Day to securityalliance@mcafee.com.

McAfee Design Studio
The McAfee Design Studio team has been at it again. With the valuable feedback from customers at FOCUS 08 and throughout the year, they have enhanced the GUI on McAfee ePolicy Orchestrator and added new user functionality that streamlines key administration and management processes. Find out more at this special session, and get a chance to provide your feedback directly to the team that influences product interface direction at McAfee!

Mid-Market Customers: We Want your Input
(Invitation only)
McAfee product experts would like to bring together a group of IT leaders from mid-size organizations to gather feedback—from pricing models and packaging options to user interfaces and customized templates—on current security products being created with the mid-size enterprise in mind. If you are a McAfee customer in a company of under 1,000 employees and you have responsibilities around security operations or administration, please attend this free session. Seating is limited to the first 25 registrants. Write to midmarket@mcafee.com to register.

Risk and Compliance Product Advisory Council
The Risk and Compliance Product Advisory Council will be held Tuesday, October 6 from 12:00 pm - 5:00 pm.

Securing the Mid-Market Organization - What Can You Do in 15 Minutes a Day?
IT directors and administrators in mid-sized organizations struggle to balance a lack of budget and resources with growing security concerns. Spend time with McAfee, experts from McAfee Avert Labs and key partners, and other IT leaders from mid-size organization, as they discuss security trends across data, systems and networks. Learn about the "15 Minutes to Secure a Business" practices, and find out how to streamline your security processes while reducing risks. McAfee partners and product experts will be on hand to explain how to defend every threat vector and anticipate security issues—from the gateway to the endpoint—in less time and with fewer resources. Lunch provided. Write to midmarket@mcafee.com to register.

SIA Developers Conference
The Security Innovation Alliance Developers Conference will be held on Tuesday, October 6 from 8:00 am - 5:30 pm.

Total Protection for Endpoint - Under the Hood
(Invitation only)
Come to FOCUS early for a in-depth technical session hosted by the McAfee R&D team. Learn how to configure new McAfee ePolicy Orchestrator 4.5 features for effectively deploying McAfee Host Intrusion Prevention System and Network Access Control.

The training is hosted by technical leads from McAfee's Endpoint security team, and is focused on deployment, configuration, use cases, best practices and security trade-offs. You won't want to miss this informative event.

Web Security - Under the Hood
(Invitation only)
Join the McAfee Web Gateway team for an in-depth technical session focused on enterprise architectural and deployment best practices for a successful web gateway solution. Find out what technical requirements you need to consider in high availability and multiple environments. Get load balancing techniques and real-world deployment methodologies.

Get a rich understanding of Web 2.0 page design and implications for web gateway security including malware detection and reputation. Learn where to begin troubleshooting when pages don't load properly. Learn about the numerous opportunities for data leakage through the web and how McAfee Web Gateway and McAfee DLP Prevent can be integrated to address this growing problem.

Still want to learn more? The session continues with a product deep dive where you'll learn how to customize your McAfee Web Gateway block pages. Hear what's on the McAfee Web Gateway horizon with a roadmap discussion and end the information-packed day with an interactive "Ask the Experts" roundtable featuring the McAfee Web team. For more information, contact Anne Aarness at anne_aarness@mcafee.com or 651.628.2832.

Track 1 - Network Defense

Birds-of-a-Feather: The Porous Network Perimeter - People, Policies and Politics
Manish Gupta, Vice President, Product Management, IPS, McAfee, Inc.
This open forum for customers, partners and McAfee product managers will explore the evolution of the network perimeter as networks open up, enabling agile business with partners, third parties and others. Topics will include the place of technology, the politics of who should be allowed access, best practices regarding establishing policies and the overall dynamic business environment driving this evolution.
Somewhat Technical

Cerner and McAfee: Defending High Availability Networks and Data Centers
Gary Long, Director, Information Security, Cerner Corporation
Vinay Anand, Director Product Management, McAfee
This session will emphasize the unique challenges and opportunities associated with defending high availability networks and critical data centers and will center around an extensive case study presented by McAfee customer Cerner. The session will also explore best practice deployments and configurations of IPS sensors, controllers, signatures and dashboards.
Somewhat Technical

eBay and McAfee: Securing Virtual Data Centers and Network Consolidations
Liam Lynch, Chief Security Strategist, eBay, Inc.
Chris Sather, Network Defense Business Unit, McAfee, Inc.
The growing trend toward virtualization is creating new challenges in security. Many organizations reduce their security posture without even realizing it when they deploy virtual environments and reduce segregating boundaries within these environments. This session illustrates how to best utilize McAfee Host Intrusion Prevention System, McAfee Firewall Enterprise, Mcafee Network Access Control and other solutions to re-establish best practice network security in the virtualized network environment.
Somewhat Technical

Forrester Research and McAfee: A Metrics Driven Approach to Network Security ROI
Bob Cormier, Principal Consultant, Forrester Research
Mike Nielsen, director, mktg, McAfee
Calculating hard return on investment (ROI) for security investments has always been a mine field. This session provides an elegant and simple ROI construct to help you collect and communicate compelling security ROI inside your organization.
Somewhat Technical

Hacking Exposed: Network Security
William Boyle, Product Line Executive, Network Security, McAfee, Inc.
Greg Day, Principal Security Analyst, McAfee, Inc.
Learn how McAfee network defense technologies prevent the hacks demonstrated during Tuesday’s Hacking Exposed's demonstration with George Kurtz and Stuart McClure. Hear about the effectiveness of McAfee solutions—from Network Access Control and Network IPS to Network User Behavior Analysis and Firewall Enterprise—in preventing today's hacker attacks.

McAfee: Applying Global Threat Intelligence to Your Network's Defenses
Rees Johnson, GM/SVP Network Defense, McAfee
Greg Brown, Senior Director - Network Defense Business Unit, McAfee, Inc.
This highly technical session covers an assortment of important topics, including a dissertation on the McAfee vulnerability engine; the anatomy of recent threats; mapping exploits to vulnerabilities to McAfee solutions, including Global Threat Intelligence; and why exploit-based solutions fail and effective countermeasures.
Extremely Technical

McAfee: Defending Against the Insider Threat
Jose Caldera, Dir Product Management, NSBU, McAfee
Sangram Dange, Director, Product Management, McAfee
Dan Wolff, Network Defense Business Unit, McAfee, Inc.
In today's ever-changing network environment, how do you most effectively monitor and control access for users inside the network? This session showcases McAfee network access control, user behavior analysis and identity-based access control, and illustrates how these solutions can be used to achieve best-in-class security and compliance inside the network.
Somewhat Technical

McAfee: McAfee Firewall (Sidewinder), Profiler and UTM - A Technical Deep Dive
No abstract available.

McAfee: McAfee Firewall (Sidewinder), Profiler, and UTM - A Technical Deep Dive
Dave Bull, Product Marketing Manager, McAfee
Josh Archambault, Senior Network Engineer, McAfee, Inc.
Chris Sather, Network Defense Business Unit, McAfee, Inc.
Designed for customers who have either already deployed McAfee Firewall and UTM or who are strongly evaluating it, this session features McAfee technical product experts and will dive deep into McAfee Firewall (Sidewinder), the new Profiler technology, and McAfee Unified Threat Management (UTM). Also includes a session of 'stump the Firewall expert'.
Extremely Technical

McAfee: Network Intrusion Prevention System - A Deep Dive
Ravindra Balupari, Sr. Security Research Engineer, McAfee
Zheng Bu, Director of IPS research, McAfee
Srinivas Loke, Technical Product Manager, McAfee
Designed for customers who have already deployed McAfee Network IPS, or those that are strongly evaluting it, this session outlines the benefits of the new M-series McAfee Network Intrusion Prevention appliances, along with a product demonstration and real-world case studies of how this product is deployed. Hear how this solution is backed by McAfee's Global Threat Intelligence and integrates with McAfee ePolicy Orchestrator.
Somewhat Technical

McAfee: The Future of Network Security with Next-Generation Technologies
Greg Brown, Senior Director - Network Defense Business Unit, McAfee, Inc.
Dave Diehl, Chief Architect - Network Defense Business Unit, McAfee, Inc.
Steve Woo, Network Defense Business Unit, McAfee, Inc.
Exploding management costs, increasing business demands and archaic protection technologies are stretching today’s traditional network security solutions. Imagine a perfect world in which a firewall can dynamically map to your business practices, providing “perfect protection.” Join the McAfee Network Defense product team to find out how close we really are to making this vision a reality.
Somewhat Technical

Oracle and McAfee: Best Practices for Network Intrusion Prevention System Deployment
Bruce Parelskin, Director, Western Region, McAfee
Leonid Stavnitser, Director, GIT Security Solutions Center, Oracle Corporation
Learn how Oracle—a customer of McAfee Network Intrusion Prevention System (IPS) for many years—has been able to deliver a state-of-the-art intrusion prevention and detection solution. Hear about Oracle's security objectives, and learn how the company justified the business case and implemented IPS without "breaking the business." Find out more about the integration of IPS with other security components to provide simplified reporting and remediation.
Somewhat Technical

Trisept Solutions and SynerComm: Network Security Beyond Compliance
Kirk Hanratty, CTO, SynerComm Inc
Mark Sollazo, CEO, SynerComm Inc.
Tim Guy, Director of Security and Technical Architecture, Trisept Solutions
In today's market and economy, not all organizations have the expertise and resources to proactively trend attack patterns and understand complex attack vectors. Replacing resources with partners and technology is a great way to achieve high standards beyond PCI. The session centers on a real-time example: being a level-2 Merchant of Record, having to jump to a Level One Service Provider, and being right from technology to audit in a single year. With McAfee Network Defense products, proxy with Application Intelligence and Intru-shield's real time defense systems, the visibility and performance provided by these platforms ensured success and integration with processes and partners.
Somewhat Technical

Track 2 - Securing the Network: Focus on Email / Web Security

Birds-of-a-Feather: Web 2.0 - Allow, Deny or Ignore?
Tim Roddy, Sr. Director Product Markeing, McAfee
Chris Cinnamo, Product Management, McAfee, Inc.
Grant Murphy, Vice President - Enterprise Solutions, McAfee, Inc.
Join us for a lively, interactive conversation about Web 2.0 in the enterprise. We’ll discuss your Web 2.0 use and concerns and then compare the opinions and findings from the session to results from a recent Forrester study. Copies of the Forrester study will be available for all attendees.

Ciphent and McAfee: Websense to McAfee Web Gateway in the Click of a Button
Paul Dant, Managing Principal, Ciphent
Corby Laverty, Senior Security Architect, Ciphent, Inc.
Tim Roddy, Sr. Director Product Markeing, McAfee
McAfee Web Gateway (formerly Webwasher) enables security administrators to wrangle the Internet back into compliance with internal security standards and protection against spyware, targeted attacks and blended threats. McAfee and Ciphent join together in this session to demonstrates advanced configurations and implementation best practices. Learn technical specifics on how to quickly migrate from Websense to McAfee Web Gateway without disrupting the user experience or environment. Key topics include reputation-based URL filtering tuning techniques, certificate tips tricks, scaling architectures for new and expanded capabilities, intrusion prevention correlation and user management.
Somewhat Technical

Citrix Systems and eBay: Securely Enable Business and Web 2.0
Kurt Roemer, Chief Security Strategist, Citrix
Liam Lynch, Chief Security Strategist, eBay, Inc.
Internet security has traditionally been a binary approach that either allowed or blocked traffic. In today's highly connected, Web 2.0-enabled world, this approach has quickly become outdated. Discover how technologies built for today's Internet gateways can securely enable business and the enterprise while transforming your IT department from the “no” team to the “yes” team. Learn how the investment in Web 2.0 and Web 2.0 security can pay dividends for years to come.
Business / Management

EJ Gallo Wineries and McAfee: Internet Gateway - Deployment Best Practices
Jody Tyrus, Manager, Data Security, E. & J. Gallo Winery
Scott Wilson, Director - Professional Services, McAfee
Session details to come.
Somewhat Technical

Hacking Exposed: Web and Email Security
Erik Elsasser, Sales Engineer, McAfee, Inc.
Jon Paterson, Enterprise Solutions Architect, McAfee, Inc.
Learn how McAfee's email and web technologies prevent the hacks demonstrated during Tuesday’s Hacking Exposed's demonstration with George Kurtz and Stuart McClure. Hear about the effectiveness of McAfee solutions—from Web Gateway and Email Gateway to Network DLP—in preventing today's hacker attacks.

McAfee: Did Your Signature Arrive in Time?
Jon Paterson, Enterprise Solutions Architect, McAfee, Inc.
Widely deployed reactive security solutions—such as signature-based anti-virus—are still important for blocking “known bad behavior“ and content. These reactive techniques, however, cannot combat the growing Web 2.0 exploits specifically designed to evade signature-based detection or attacks that hide malicious code within seemingly good HTTP or HTTPS traffic. Learn how your organization can proactively block these signature-evading exploits and zero-day attacks.
Somewhat Technical

McAfee: Harnessing the Cloud - Providing Web and Email Protection While Reducing Costs
Ryan Walsh, SaaS Business Unit, McAfee, Inc.
Web 2.0: The playground for the next generation of hackers and malware authors. Despite its inherent benefits, the Internet also has a dark side. It is a breeding-ground for email- and Web-based threats that expose your business to network security breeches, wasted time and unnecessary costs. Learn how web protection in a Security-as-a-Service (SaaS) model can provide the most comprehensive protection over the web vector regardless of where the user is connecting——from inside your network, an airport hotspot or from a home office. Find out how email SaaS can dramatically reduce the risk on your network, while providing a business continuity solution to maintain your employees’ productivity in case your internal mail server goes down.
Somewhat Technical

McAfee: Intelligence to Predict and Protect
Paula Greve, Director - Web Security Research, McAfee, Inc.
Grant Murphy, Vice President - Enterprise Solutions, McAfee, Inc.
The Internet threat landscape is quickly evolving. To effectively secure the enterprise, Internet gateways need to stay one step ahead of threats by predicting what's going to happen next and providing protection. Learn how reputation-based filtering proactively protects the enterprise. Understand the difference between global and local intelligence and why both forms are critical in today’s threat landscape. Discover the power of predictive reputation in action.
Somewhat Technical

McAfee: Web 2.0 - Social Networks - Friend or Foe?
Greg Day, Principal Security Analyst, McAfee, Inc.
Social networks are today’s platform for developing and maintaining relationships — from getting and staying connected to conducting business and attracting new customers. The more connections you have, the better. But the upside of social networking is often countered with serious concerns: Can social networking sites ever be secure enough for widespread enterprise use? Can we put faith in our employees’ online judgment? Join us for a lively panel discussion on the risks and the rewards of social networking.
Somewhat Technical

Mercy Hospital: What's In Your Mailbox?
Roger Norfolk, Systems Education Coordinator, Mercy Hospital
This session will present a case study of how McAfee products have been used at Mercy Hospital in Iowa City, Iowa, to protect the company from viruses and reduce employee time required to handle spam messages.

Norfolk Southern: A Web Protection Case Study
Eric Mathieu, Information Security Analyst, Norfolk Southern
Lynden "Tony" Samms, Director, Norfolk Southern
Learn how Norfolk Southern's concerns about emerging internet threats led the company to McAfee Web Gateway. Discover the eye-opening internet-based malware traffic Norfolk Southern gained visibility into - from thousands of malware blocks per week to issues with previously white listed sites. In this session, you will learn how advanced protection, reporting and streamlined administration have helped Norfolk Southern, its Information Security department and its business partner customers.
Somewhat Technical

Qualcomm: Walking a Thin Line - Securing Web Use in an Academic Environment
Jamy Klein, Security Engineer, Qualcomm, Inc.
A case study of the implementation of secure web gateway technology in an academic style environment. Innovation is key at Qualcomm; this presentation will cover how Qualcomm implemented a proxy malware solution in a an environment concerned with privacy and freedom of information.
This presentation will not be available for download.
Somewhat Technical

WPS Health Insurance: Protection Across the Spectrum
Jim Hwang, Director - Enterprise Network Systems, WPS Health Insurance
Duane Linkert, Sr. Security Engineer, WPS Health Insurance
Learn how WPS Health Insurance protects its customers’ sensitive information and complies with strict regulations while staying within its budget. McAfee Email Gateway (formerly IronMail) and McAfee Web Gateway (formerly Webwasher) plus McAfee endpoint products create a security environment that is easy to manage and provides the security WPS Health Insurance requires. In this session, WPS Health Insurance will share the decision making and procurement process, the results achieved, and will provide advice to others on lessons learned.
Somewhat Technical

Track 3 - Protecting Every System: Focus on Endpoint

Aditya Birla Minacs, BAE Systems and McAfee: Uncovering the Value of Cross Product Integration
Michael Iseyemi, Global Chief Security Officer, Aditya Birla Minacs
John Fulmer, Director - IT Security, BAE Systems, Inc.
Julia Link, Sr. Manager, McAfee
George Younan, Systems Engineer, McAfee, Inc.
How does an integrated product offering across network, endpoints, data and compliance solutions strengthen protection and achieve efficiencies? McAfee facilitates a discussion with a panel of experts on optimized security, using examples to highlight synergies of security products that are integrated through a single platform.
Somewhat Technical

Arizona State University, Citrix Systems, McAfee, Puerto Rico Office of Management and Budget and Thermo Fisher: Unlocking the Value of Total Protection
Scott Banks, Information Security Officer, Arizona State University
Ricardo Bonefont, IT Governance and Compliance Manager, Citrix Systems
Edward Metcalf, Group Product Marketing Manager, McAfee, Inc.
Thomas Watson, Director - Global IT Risk Management & Security, Thermo Fisher Scientific
In today’s uncertain economic environment, companies are looking to achieve greater results with fewer IT resources. At the same time, the increasing pace and complexity of malicious attacks on corporate networks by organized cybercriminals is pressuring businesses to manage security more proactively. As companies deploy more security tools to combat these growing threats, the cost to manage multiple solutions increases while the IT’s availability to focus on more pressing business issues becomes more difficult. In this panel discussion, McAfee will join key customers to outline best practices for increased operational efficiency and reduced total cost of ownership.
Somewhat Technical

BAE Systems, Ciphent, McAfee and Tyco Electronics: Host Intrusion Prevention - Life After Deployment and Real-World Best Practices
John Fulmer, Director - IT Security, BAE Systems, Inc.
Kevin Harriford, Chief Technology Officer, Ciphent
Doug Vandemark, Managing Principal Consultant - Commercial Division, Ciphent
Kevin LeBlanc, Director of Product Marketing - Endpoint and Data Protection, McAfee, Inc.
Howard Bullock, Systems Analyst, Tyco Electronics
In a tough economy, cybercriminals are more financially motivated to exploit vulnerabilities, and companies must find ways to increase security while cutting costs. McAfee Host Intrusion Prevention (IPS) is a key technology to meet both of these goals. Find out how McAfee Host IPS can save your company time, resources and headache by reducing the urgency and frequency of patch cycles while granting you the necessary time to plan, prioritize, test and deploy patches and protection—all on your schedule. Learn the best practices of fine-tuning McAfee Host IPS, firewall and application control functionality to take the already powerful zero-day protection to the next level of security.
Somewhat Technical

Birds-of-a-Feather: Hot Topics in Endpoint Security
Join your peers and a McAfee moderator to discuss a series of hot topics in endpoint security. Roundtable topics will range from new industry buzz words to Avert Labs and McAfee ePolicy Orchestrator. Select product managers will be on hand for in-depth discussions, along with some key Security Innovation Alliance partners.
Somewhat Technical

BMC and McAfee: Converging IT Security and Operations Mgmt.
Darryl Burns, Senior Product Marketing Manager - BMC BladeLogic Client Automation, BMC
Roger Wood, Director - Product Management, McAfee, Inc.
The areas of IT endpoint security and IT operations management have undergone a substantial transformation over the past few years. Organizations increasingly strive to bring these functions together under a single ITIL-driven process that will help govern standards and ensure endpoint consistency. Learn how BMC and McAfee are leveraging business service management to help make these objectives truly achievable.
Somewhat Technical

Ciphent, Honeywell and McAfee: McAfee ePO 4.5 Architecture and Deployment
James Foster, CEO, Ciphent
Paul Lesniak, IT Manager, Honeywell
Torry Campbell, Strategic Security Engineer, McAfee, Inc.
This session illustrates how to design and use McAfee ePolicy Orchestrator 4.5 (ePO). Learn how ePO’s new features can be implemented to gain better performance, greater scalability and better enterprise reporting. Topics will include agent handler design and implementation, multi-server reporting, policy management and agent management.
Extremely Technical

Citrix Systems, EDS and McAfee: The True Cost of Free!
Richard La Bella, Manager - Corporate IT Security, Citrix Systems, Inc.
Shawn Chaillou, Director, EDS, an HP Company
Bruce Snell, Sr. Technical Marketing Manager, McAfee
Information security is not immune to decisions based purely on cost, especially in tough economic times. Many companies are offering solutions at bargain-basement pricing, leaving the security team to justify retaining an existing solution rather than switching to a discounted product. In this session, hear from companies who have faced these challenges and learn what they did to illustrate the value of McAfee.
Somewhat Technical

GM Fellow: Full Spectrum Endpoint Security - The Black, The White and The Grey
Lynn Trent, GM Fellow Retired, GM
Despite companies investing significant time and money securing their environments, the security problems they face seem to multiply. The reason is straightforward: Exploiting flaws in operating systems and applications continues to be a viable way for bad guys to make a lot of money. Security vendors and their customers alike recognize that we will have to alter and extend approaches to thwarting cybercrime. Traditional anti-virus helps administrators identify the known bad applications, while listing helps them catalog the known good, and behavioral technologies catch the unknown applications that could be one or the other. This session explains how a combined security approach allows administrators to reduce the amount of time spent cleaning and controlling the damage done by a) users who install unauthorized software, b) web-borne malware that exploits trusted applications and c) users accessing unauthorized sites.
Somewhat Technical

Hacking Exposed: Endpoint Security
Shesh Gorur, Senior Product Manager, McAfee, Inc.
Madhu Reddy, Group Manager, Business Development, McAfee, Inc.
Find out how McAfee's endpoint technologies prevent the hacks demonstrated during Tuesday’s Hacking Exposed's demonstration with George Kurtz and Stuart McClure. Learn about the effectiveness of McAfee solutions—from Host Intrusion Prevention, Host Network Access Control and ePolicy Orchestrator to Viruscan Enterprise and Artemis—in preventing today's hacker attacks.

Intel: Hardware Platform Innovation for Endpoint Security
Steve Grobman, Director, Cyber Security Technology and Initiatives, Intel
Craig Owen, Senior Architect, Intel
Securing PC platforms requires a combination of hardware and software technology to maximize the defense and security management of the PC. This session will describe innovative hardware technologies that can reduce the latency of security updates and enable out of band management for security capabilities such as encryption. This session will also describe exciting hardware innovations that will be released in Intel's 2010 vPro(tm) client platform to enhance security and manageability.
Somewhat Technical

McAfee: ePO Uncovered - Tips and Tricks
George Younan, Systems Engineer, McAfee, Inc.
Did you know that most administrators are only using 50% of the functionality of McAfee ePolicy Orchestrator (ePO)? Learn how get the most out of ePO in your environment and improve operational efficiency by extending the power of ePO. Learn some key policy optimization techniques, and find out how to tweak performance of your clients and create custom reports for your environment. Learn advanced automation techniques on how to streamline your daily processes and reduce the hours required to manage ePO on a daily basis. Hear about key techniques that will minimize the number of infections in your environment by automating key tasks in ePO.
Extremely Technical

McAfee: Securing your Apple Environment
David Beveridge, Research Scientist, McAfee, Inc.
Edward Metcalf, Group Product Marketing Manager, McAfee, Inc.
Threats have no boundaries and with the recent iBotnet Trojan, Macintosh is no exception. As we see a growth in the adoption of Macintosh platforms, we will also see a growth in threats that target them. This session examines how to secure your Macintosh environment with the lowest total cost of ownership through a comprehensive new suite centrally managed by McAfee ePolicy Orchestrator.
Somewhat Technical

McAfee: Security-as-a-Service - Grow your Business, Not your Costs!
Lillian Wai, Product Marketing, McAfee
Marc Olesen, Senior Vice President and General Manager, McAfee, Inc.
With tighter IT budgets and declining security personnel, companies are looking to reduce licensing and operational costs for endpoint security. Find out how you can grow your business without growing your costs with a Security-as-a-Service solution—an affordable, always-on-guard alternative to protecting your systems. By harnessing the cloud, your company can get smarter endpoint protection through product consolidation, speed up installation to all users regardless of location, automate updates and upgrades and simplify management through an online console. Learn about the adoption of Security-as-a-Service and evaluate if a cloud-based solution to can help your organization outsource systems security, eliminate on-premise capital expenses up to 50% and reduce daily endpoint maintenance and management.
Somewhat Technical

Track 4 - Protecting Every System: Focus on Data Protection

Adobe and McAfee: Securing Data Always on the Move
John Carione, Senior Product Marketing Manager, Adobe, Inc.
Stefan Backstrom, Senior Product Manager, McAfee, Inc.
Hovav Bornstein, Senior Product Manager - Data Loss Prevention, McAfee, Inc.
Raj Dhesi, Product Manager, McAfee, Inc.
This deep-dive session will discuss McAfee technologies for protecting data on removable media: McAfee Device Control, McAfee Endpoint Encryption for Removable Media, and McAfee Encrypted USB. Learn how to use these offerings together to form a solution that enables the continued use of USB devices, but with controls that protect your most sensitive information assets.
Extremely Technical

Arizona State Univ. and Georgia State Univ.: The One Class We Can't Skip - The Impact of Data Breaches on Higher Education
Scott Banks, Information Security Officer, Arizona State University
Tammy Clark, Chief Information Security Officer, Georgia State University
This panel discussion will explore the unique challenges facing higher education institutions in protecting their data against breaches.
Business / Management

Birds-of-a-Feather: Day-in-the-Life Experiences with Encryption at the Endpoint
Simon Hunt, Vice President and CTO - Data Protection, McAfee, Inc.
This session is an opportunity for Endpoint Encryption customers to discuss the impact encryption of laptops/desktops has had on businesses, and how they have dealt with user acceptance issues and other topics.
Somewhat Technical

Converge Net: Best Practices for the Destruction of Digital Data
Ryk Edelstein, Partner, Converge Net Inc.
This session defines the proper practice for decommissioning end-of-life hard drives. With more concern than ever over information lifecycle management, the means to properly decommission hard drives has become a very significant concern for all public and private sector organizations. In this session, Converge Net illustrates how to address decommissioning by data class, as well as implementing the appropriate handling procedures for each type of hard drive interface.
Business / Management

FishNet Security: Application Security Update 2009.5
Joey Peloquin, Director of Application Security, FishNet Security
Application security is a moving target; it's a discipline within information security that's growing so fast that innovative, "knock-your-socks-off" tools are released and deprecated within months. Standards, regulations and laws can't evolve fast enough to keep up. So where does that leave the security practitioners charged with protecting Layer 7? We have to keep our eyes on the ball. We have to be agile. We have to be aware of the constantly-changing components that comprise application security. This session will explore web application security full disclosure and security breaches—some that resulted from poor application security practices. Hear about follow-up on some breaches that occurred around the time of application security update.

Hacking Exposed: Data Security
Stefan Backstrom, Senior Product Manager, McAfee, Inc.
Hovav Bornstein, Senior Product Manager - Data Loss Prevention, McAfee, Inc.
Raj Dhesi, Product Manager, McAfee, Inc.
Learn how McAfee's data protection technologies prevent the hacks demonstrated during Tuesday’s Hacking Exposed's demonstration with George Kurtz and Stuart McClure. Hear about the effectiveness of McAfee solutions such as Endpoint Encryption and Host DLP in preventing today's hacker attacks.

Jones Day: Understanding the Impact of Data Privacy Regulations from a Legal Perspective
Shawn J. Organ, Partner, Jones Day
Most in the security industry really do not understand all of the potential legal ramifications that have arisen due to the recent passing of a patchwork of data privacy, notification and governance laws. These regulations vary from state to state and among different government agencies, and in some cases, can even conflict with one another. This session explores these legal issues and discusses how you should be thinking about them to ensure your organization avoids a regulatory minefield.
Business / Management

McAfee: Eliminating Data Amnesia
Trey Wafer, Sr. Product Manager, McAfee
Ratinder Ahuja, Vice President - Reconnex Technology, McAfee, Inc.
Howard Price, Group Product Manager, McAfee, Inc.
This deep-dive session explores McAfee's Data Loss Prevention suite. Learn about the power of McAfee's unique capture technology on the network, as well as fingerprint technology on the host. Hear how McAfee provides the necessary memory to continuously protect all of your data.
Extremely Technical

McAfee: McAfee's Vision for Total Data Protection - From Endpoint to the Network
Gerhard Watzinger, EVP, Corp Strategy & Business Development, McAfee
Chris Parkerson, Group Product Marketing Manager, McAfee, Inc.
Michael Siegel, Senior Director, Product Management for Data Protection, McAfee, Inc.
This session provides an overview of McAfee's data protection strategy and roadmap. Learn what makes McAfee's approach unique and provides our customers with the flexibility to adapt to the constantly changing regulatory compliance, governance, IP protection and privacy threat environment.
Somewhat Technical

McAfee: Understanding your Data is the Key to Protecting It
Howard Price, Group Product Manager, McAfee, Inc.
The hardest part of protecting your data is knowing what it is that you need to protect. Data is everywhere, some meaningless or out-of-date - but the rest of it has to be cared for. It's the data that can cost you customer loyalty, competitive advantage or expose you to the risk of heavy fines and penalties. Effective data protection must be built on a solid understanding of how data is used, where it's stored and who needs access to it. Without the right tools gaining that understand could take a lifetime. In this session, you will learn about McAfee's solutions to help you know where your data is, learn about how it's used, gain understanding about its role and value and allow you to create policies to effectively protect it as it is used, stored and manipulated.
Somewhat Technical

Purdue University: Creating a Secure, Mobile, Bootable Environment Coordinated through ePO and Using McAfee Biometric USB Drives
Nathan Heck, IT Security Engineer, Purdue University
Greg Hedrick, Director, Information Security Services, Purdue University
Scott Ksander, CISO and Executive Director, IT Networks and Security, Purdue University
Purdue University has been a leader in deploying innovative solutions to address complex security issues. Learn how Purdue has created a secure, mobile, bootable environment coordinated through McAfee ePolicy Orchestrator (ePO), using the McAfee Biometric USB drive. This type of environment was originally motivated by a work-at-home requirement in Purdue’s pandemic flu planning, but it was soon extended to more general applications for mobile users, remote office users and general work-at-home scenarios. Hear how coordination through ePO makes this a very effective and well-coordinated approach to this difficult security problem.
Somewhat Technical

Qualcomm, The Doe Run Company and McAfee: Protecting the Crown Jewels - Your Intellectual Property
Rob Amezcua, , McAfee, Inc.
Chris Parkerson, Group Product Marketing Manager, McAfee, Inc.
Joshua Davis, CISO, Qualcomm
Craig Williams, Information Security Officer, The Doe Run Company
Hear from a panel of McAfee customers who have used data loss prevention technologies to directly protect the biggest contributor to their ongoing business and revenue success—their intellectual property.
Somewhat Technical

SanDisk, South Carolina Dept. of Probation, Parole and Pardon Services and McAfee: Privacy Darwinism - Only the Adaptable Survive
Simon Hunt, Vice President and CTO - Data Protection, McAfee, Inc.
Chris Parkerson, Group Product Marketing Manager, McAfee, Inc.
Doron Dreyer, Director, SanDisk
David O'Berry, Director of Information Systems and Services, South Carolina Dept. of Probation
Hear a panel of customers discuss the ways in which they are dealing with the constantly changing environment in data privacy.
Business / Management

Track 5 - Transforming Business through GRC

Alcon Labs and McAfee: The Role of Countermeasures in Effective IT Risk Management
Scot Miller, Manager - Global IT Security, Alcon Laboratories, Inc.
Gary Davis, Senior Group Manager, McAfee, Inc.
Brian Robison, Product Manager, McAfee, Inc.
Organizations are continually challenged as new threats and vulnerabilities are exposed. Companies must be able to determine quickly where they are most at risk and prioritize the protection of key assets. This session explores how organizations have streamlined risk management while reducing costs and improving IT efficiencies over the last 12 months.
Business / Management

BAE Systems, Kaiser Permanente, McAfee and Qualcomm: CIO/CISO State of the Union Panel
Bernie Tomasky, VP & General Manager, BAE Systems
Patrick Heim, CISO, Kaiser Permanente
Martin Ward, Sr Director, McAfee
George Kurtz, Senior Vice President and General Manager, McAfee, Inc.
Norm Fjeldheim, CIO & Senior VP, Qualcomm, Inc.
This panel will discuss key drivers and the changing landscape that CIOs and CISOs face as security threats become more measured and multi-vectored. The panel includes industry luminaries with their fingers on the pulse of what's current and relevant with managing risk and compliance.
Business / Management

Birds-of-a-Feather: Payment Card Industry Compliance
Evelyn DeSouza, Senior Product Marketing Manager, McAfee, Inc.
Raj Rajamani, Senior Product Manager, McAfee, Inc.
PCI compliance, its costs, applicability to new and emerging technologies, and effectiveness in improving the security posture of continues to be a hot button issue with our customers. This session explores common myths/pitfalls in PCI compliance initiatives, best practices to follow while dealing with technologies like Virtualization and Cloud computing and how best to leverage the PCI initiatives to improve the overall security in your organization.
Somewhat Technical

BMC: Closing the Loop on Policy Compliance
Josh Sirota, Solutions Architect, BMC Software
This session provides an overview of the technology integration between BMC BladeLogic Client Automation and McAfee Policy Auditor. Learn how this joint solution enables customers to automatically bring endpoints into compliance with a full range of security policies automatically, effectively closing the loop on policy compliance and virtually eliminating manual effort.
Somewhat Technical

Forrester Research and McAfee: Fact or Fiction - Security Metrics Boost Compliance Efforts
Chris McClean, Analyst, Forrester Research
Charles Ross, Director Sales Engineering, Federal, McAfee
Evelyn DeSouza, Senior Product Marketing Manager, McAfee, Inc.
Metrics are those key security indicators—representing people, process and technology—that track IT controls. Recently, there has been a lot of hype and promise about the role of metrics in the quest for IT compliance. Surveys show that security metrics are a desired functionality within IT government, risk and compliance solutions. But are there actual cases that prove metrics have demonstrated added value? This session explores the use of security metrics in compliance efforts.
Somewhat Technical

G2, NIST and McAfee: Security Automation – Convergence That Matters
George Saylor, Director, Emerging Technologies, G2, Inc
Kent Landfield, Director - Risk and Compliance Security Research, McAfee, Inc.
John Banghart, Program Manager - SCAP Validation Program, NIST
David Waltermire, SCAP Architect, NIST
Security automation technologies seek to remove proprietary information and communication barriers that exist across large enterprises to ensure that mission critical security information concerning software vulnerabilities, patch status, host configuration, and policy compliance can be collected, correlated, and remediated in a standardized and timely manner. The Security Content Automation Protocol (SCAP) has been developed and implemented via a number of public private partnerships in an effort to provide a ground-up approach to enable platform agnostic security automation. This session presents the public and private viewpoints on SCAP, its use cases and the value it brings to these sectors.
Somewhat Technical

GM Fellow and McAfee: Thriving in an Operationalized Security Environment
Lynn Trent, GM Fellow Retired, GM
Rosen Sharma, VP of Technology, Risk and Compliance, McAfee
Kishore Yerrapragada, Director, Product Management, McAfee
After every major earthquake or hurricane, home insurance sales peak. Similarly, a CSOs opportunity to gain budget for security solutions typically depends on an "exceptional" event or a regulation which mandates the use of security. However, a new paradigm is being adopted by Fortune 100 organizations, where the line between the functions and benefits of security and operations is blurring. This new way of thinking presents a great opportunity for CSOs to expand both their roles and their influence in the organization, as well as to secure budget allocations. This is especially important as budgets tighten. In this session, learn how to leverage this trend and thrive in an “operationalized” security environment.
Somewhat Technical

Hacking Exposed with George Kurtz and Stuart McClure
Few can deny the fact that "threats" drive both security and compliance. When you understand the malware, vulnerabilities and attacks being spawned from the hacker cesspool, you can begin to defend yourself. Until then, you will forever be a victim. If you ignore the warning signs up ahead, you do so at your own peril.

Tuesday’s Hacking Exposed session will demonstrate a number of brand new hacks—from Layer 2 to Layer 8 (the "user" layer)—that drive your security countermeasures.

Throughout the remainder of the week during FOCUS track sessions, the McAfee product teams will demonstrate how McAfee product suites combat these threats and protect your vital digital assets.

Hacking Exposed: Governance, Risk and Compliance
Raj Rajamani, Senior Product Manager, McAfee, Inc.
Brian Robison, Product Manager, McAfee, Inc.
Find out how McAfee's risk and compliance technologies prevent the hacks demonstrated during Tuesday’s Hacking Exposed's demonstration with George Kurtz and Stuart McClure. Learn about the effectiveness of McAfee solutions—from Solidcore and Risk Advisor to Policy Auditor and Vulnerability Manager—in preventing today's hacker attacks.

McAfee and Ryder Truck Rental: Managing Risk while Enabling Compliance with Regulatory Mandates
Byron Holt, Security Engineer, McAfee
Julio Gonzalez, Senior Manager - Telecommunications and Enterprise IT Security, Ryder Truck Rental, Inc.
Now more than ever before, organizations feel overwhelming pressure to manage risk while juggling multiple regulatory mandates. In understanding how to thrive in this environment, this session will explore quantitative and qualitative analysis techniques to model risk and compliance. This session will also present case studies of how global corporations are balancing the demands and implementing best practices to comply with multiple regulations as the risk landscape changes and evolves.
Somewhat Technical

McAfee: The Game of Life - The People Factor of Security and Compliance
Lal Narayanasamy, Senior Product Manager, McAfee
Kim Singletary, Risk & Compliance Product Marketing, McAfee, Inc.
In their efforts to balance governance, risk and compliance, organizations also strive to grow revenue. However, much like the Game of Life, organizations face challenges and hurdles that make attainment of their governance, risk and compliance (GRC) goals difficult. This session explores how change management and file integrity monitoring help ensure compliance and provide a positive solution to implement as part of your GRC program. Hear about customer examples that highlight the benefits of providing visibility and control both for managing infrastructure and for modifying behavior and possible negative effects of a potential insider threat.

Network Frontiers: Preparing for the Auditor or Disaster... Whichever Is Worse
Dorian Cougias, CEO, Network Frontiers
There’s got to be an easier way, right? Isn’t there a way to streamline the process so that many requirements are satisfied at once, instead of in piecemeal fashion every time a new rule comes out? In this session, Network Frontiers describes how to harness the power of a unified compliance framework, making it possible to maintain and prove compliance with multiple regulations in a more efficient and less onerous way. Learn how to free yourself from the trappings of an alphabet soup.
Somewhat Technical

Scottrade and McAfee: Leveraging Scans to Optimize Patch Efforts
Jamshed Khan, Director of Product Management, McAfee
Ryan Bachman, Manager-Enterprise Information Security and Data Privacy, Scottrade
Most large enterprises struggle to optimize their patch efforts. This fact—combined with threats coming at break-neck speed from multiple vectors—makes it more important then ever for companies to balance their scan and patch efforts. Learn cohesive strategies that you can leverage to balance your scanning and patch efforts to ensure the best security posture for dynamic business environments.
Somewhat Technical

Tyco Intl. and McAfee: Compliance Approaches in a Down Economy
Martin Ward, Sr Director, McAfee
Gene Fredriksen, CISO, Tyco
Today's unprecedented economic conditions have pushed organizations to reach new levels of efficiency, while simultaneously meeting the demands of a multitude of regulations. In this session, Tyco International discusses how the organization has consolidated its number of tools and vendors to optimize IT security, comply with regulations and greatly reduce cost.
Somewhat Technical

Track 6 - Economics of Security

Absolute Software, ArcSight, McAfee and SignaCert: Visibility and Velocity - Unlocking the Value of Integrated Solutions
Bill Hunka, Director - Business Development, Absolute Software
Jeff Scheel, VP, ArcSight
Ed Barry, Sr. Director Security Innovation Alliance, McAfee
Wyatt Starnes, Founder and CEO, SignaCert, Inc.
Companies that use standalone products in today’s heterogeneous IT environment must juggle separate consoles, alerting and reporting, and therefore increase operational costs, complexity and the time it takes to resolve incidents. In contrast, integrated products allow administrators to simplify operational workflow, consolidate alerting and reporting and implement an end-to-end solution more powerful than any offered by any single vendor. In this session, learn how McAfee works with multiple vendors to integrate products to: lower the cost of ownership and operation through integration; provide an open platform for security integration; and leverage an open platform to deliver cross-product integration benefits.
Somewhat Technical

Aditya Birla Minacs and eIQnetworks: Saving Time and Reducing Costs Through Proactive Security
Michael Iseyemi, Global Chief Security Officer, Aditya Birla Minacs
John Linkous, Security & Compliance Evangelist, eIQnetworks, Inc.
Businesses today utilize a broad range of point solutions to manage information security and compliance. Unfortunately, point solutions are reactive. Most security and audit events require correlation of data and critical information across a myriad of products and disparate tools. This process can result in breached data, heavy fines or worse. This session presents an analysis of the real cost of reactive security and compliance and examines how the convergence of security data into a single platform can turn reactive efforts into proactive disciplines. Learn about security and compliance use cases and find out how to calculate real return on investment by proactively addressing threats and compliance drivers.
Business / Management

Alcon Labs and McAfee: 30,000 to 30 Alerts - How Much You Save
Scot Miller, Manager - Global IT Security, Alcon Laboratories, Inc.
Gary Davis, Senior Group Manager, McAfee, Inc.
Brian Robison, Product Manager, McAfee, Inc.
It is the perfect storm: businesses are freezing or throttling back on security spending in this turbulent economy, threats are materializing at break-neck speed and executives and security teams are frustrated by not knowing exactly how new or evolving threats will impact business. To navigate these turbulent waters, businesses and security leaders need to know with absolute certainty where, when and how to focus their efforts to ensure business continuity. This session highlights real-world scenarios in which companies have turned to security analytics and instrumentation to balance business productivity needs with just the right amount of security.
Business / Management

Birds-of-a-Feather: Cost-Effective, Comprehensive Data Protection
Howard Price, Group Product Manager, McAfee, Inc.
Have you got data loss anxiety but fear that Data Loss Prevention is too much for your organization to take on? There are ways to protect your data quickly, cost effectively and comprehensively. This discussion allows DLP customers to discuss the data protection issues faced by all companies, regardless of their size and to share their experiences on ways to easily remove the threat created by mis-managed data. This session will put you back in control and give you the peace of mind you crave!

Darwin Allied World Assurance Company: Assessing Data Privacy and Network Risk Liability
Adam Sills, Lead Underwriting Specialist for Technology, Darwin Allied World Assurance Company
Hear from an underwriting specialist on an assortment of security topics, including assessing data privacy liability and network risk insurance; insights into claim trends and costs associated with breaches; and assessing the probability of network security and data privacy risks. As no two companies are the same, this unique view balances the challenges of event frequency and the unpredictability of liability.
Business / Management

Kaiser Permanente: Balancing Patient Care, Privacy and Increased Legislation
Jing Wang, Dir, Care Delivery Info Security, Kaiser Permanente
Philip Cantu, Manager - Data Security Services, Large Healthcare Provider
In this session, one of the countries' largest healthcare providers and early adopter of a fully electronic health record system discusses the challenges posed by the increases in State and Federal privacy, as well as security legislation and its impact on healthcare providers. Also covered are the implications of the HITRUST common security framework on securing healthcare systems.

McAfee: How Optimized Security Can Improve your Business
Colin Dover, Snr. Director Product Marketing, McAfee
Bradon Rogers, Senior Director, McAfee
Greg Day, Principal Security Analyst, McAfee, Inc.
Michael Fey, Senior Vice President - Sales Engineering and Consulting Services, McAfee, Inc.
How does optimized security help businesses become more agile, improve protection and reduce the total cost of ownership? In this session, a panel of McAfee experts discusses optimized security and highlight how the integration of security products can reduce operational overhead and enable resources to be focused on areas where they are most needed.
Business / Management

McAfee: SaaS - Optimize Budgets without Compromising Protection
Scott Chasin, CTO, SaaS Business Unit, McAfee, Inc.
Learn how companies can increase their level of security while staying within the financial constraints of a tight economic climate. This session uses real-world examples to illustrate how Security-as-a-Service provides an increased level of security while saving money on infrastructure and personnel. Hear how Security-as-a-Service also helps optimize budgets by deploying protection faster and reducing the need for capital investment.
Business / Management

McAfee: Secure your Business in Just 15 Minutes a Day - How to Balance Security with Limited Resources
Brett Golden, Director, Pre-Sales Engineering, McAfee
Darrell Rodenbaugh, Senior Vice President - Worldwide Mid-Market Business Unit, McAfee, Inc.
Statistics show that medium-sized companies have an average of two IT staff members, whose time managing security is limited to one hour a week. With restricted IT time and resources, how can organizations balance security with the increasing number and sophistication of threats, all during a tough economic environment? Learn how you can use McAfee’s proven methodology for managing security for endpoint, data, email, web and network in just 15 minutes a day.
Somewhat Technical

Monetary Authority of Singapore and McAfee: The Economic Incentive of Cybercrime
Dave Marcus, Director - Avert Labs, McAfee, Inc.
Tony Chew, Director, Monetary Authority of Singapore
Hear law enforcement, financial regulators and McAfee’s own threat researchers share their unique insights into how cybercriminals are profiting in today’s Internet age. Learn about the malware marketplace, where credit card numbers are not the only thing for sale; understand the scope of fraud; and learn about the costs to business from real cybercrime examples.
Business / Management

Network Frontiers and McAfee: Reducing the Total Cost of Compliance
Evelyn DeSouza, Senior Product Marketing Manager, McAfee, Inc.
Dorian Cougias, CEO, Network Frontiers
So many regulations, so little time, and so few resources. There is relief in sight! By cross-mapping IT controls against multiple regulations to a foundational standard such as the Unified Compliance Framework, organizations can yield substantial savings as they consolidate the number of potential separate audits. Learn how a single, comprehensive policy can be used both to account for all the regulations organizations need to address and to make internal policy compliance the key driver.
Business / Management

Perot Systems: Securing Offshore Operations
James Motes, CISO/CPO, Perot Systems Corporation
U.S. and European appetites for offshore workforce augmentation continue to increase in parallel to requirements for stronger data security and compliance with privacy regulations. The common myth among consumers, the media and some security practitioners is that delivering a secure environment using an offshore workforce is extremely difficult. This viewpoint could not be further from the truth. Find out how an offshore enterprise can implement a successful information security strategy by incorporating cultural differences, as well as the strengths and weaknesses of each geographic area of operations. Hear how this strategy should include executive sponsorship and combine training, policies, procedures and tools to bring about a common global standard.
Business / Management

SANS Institute: Application Whitelisting - Enhancing Host Security and Lowering IT Costs
Dave Shackleford, GIAC Technical Director, SANS Institute
Learn why application whitelisting is important and understand the benefits of the two approaches to application control (whitelist vs. blacklist). With the rise of ever-increasing intelligent malware—such as the Storm worm and Conficker—that use adaptive signature-morphing methods to outpace the endpoint’s ability to adapt, it is essential to have lighter, more agile prevention techniques. Find out where application whitelisting is most useful in your organization and how it can be applied on dedicated systems and in enterprise cases, and examine compliance and cost implications.
Business / Management

Track 7 - Threats & Trends

Advanced Auto Parts and McAfee: The Battle Against Malware
Joel Yonts, CISO, Advanced Auto Parts
Dmitry Gryaznov, Advanced Research Manager, McAfee, Inc.
Igor Muttik, Senior McAfee Labs Architect, McAfee, Inc.
McAfee Avert Labs has a wealth of knowledge about malware. This session describes the threats that plague both corporate and retail customers. Learn what has changed in the last year—hear examples of 2009 data broken into geographical, environmental and temporal variables—and find out what Avert Labs researchers see happening in the year to come. Learn how Avert Labs protection mechanisms deliver intelligence to McAfee endpoint and gateway products.
Somewhat Technical

Allen Corporation: Live Evidence Collection Using McAfee
Bill Fanelli, Principal Architect, Allen Corporation of America
Carlton Jeffcoat, VP, Cyber-Security Division, Allen Corporation of America
Hear why Digital Investigations are important to Operational Security, and why live evidence collection is critical. Learn how live investigations are conducted; how to leverage McAfee Encrypted USB tokens for live acquisition; and learn about the advantages of managing McAfee USB Tokens under ePO.

Birds-of-a-Feather: Critical Infrastructure Protection
Dr. Phyllis Schneck, VP and Director, Threat Intelligence, Americas, McAfee, Inc.
Electronic communications form the nexus of all critical infrastructure, making us dependent on these systems. The U.S. Department of Homeland Security has defined 18 “critical infrastructures,” each enabled and made more intelligent by computing. October 2009 will see the first global congress on critical infrastructure protection. How are leading nations addressing their systems and their embedded cyber vulnerabilities? What will be the threats of tomorrow and of 20 years from now? This session addresses the latest developments of the first global strategic plan for critical infrastructure protection. Central to the session are the cyber and international themes that run through the global discussions, which represent a paradigm shift from earlier formats. Join us for a collaborative dialog with some of the key players.
Business / Management

Hacking Exposed: Threats and Trends
Toralv Dirro, McAfee Labs EMEA Security Strategist, McAfee, Inc.
Learn how McAfee's Threats and Trends Team helps prevent the hacks demonstrated during Tuesday’s Hacking Exposed's demonstration with George Kurtz and Stuart McClure. Find out how McAfee solutions help prevent today's hacker attacks using Global Threat Intelligence.

Law Enforcement Agency and McAfee: Fighting Russian Cybercrime Mobsters - A Report from the Trenches
Law Enforcement Agent, , Law Enforcement Agency
Dmitri Alperovitch, Vice President, Threat Research, McAfee, Inc.
What are the Feds doing about cybercrime? McAfee joins forces with a law enforcement specialist to present an in-depth, insider’s view of the most prominent cases against online crime syndicates during the past half-decade. Hear what they have learned while pursuing major international cybercriminals.
This presentation will not be available for download.
Business / Management

McAfee: Data Mining for Threats - How Trusted Source Determines Reputation
Sven Krasser, Senior Director - Data Mining Research, McAfee, Inc.
Network security threats today are global and inherently blended, spanning geographies, protocols and attack vectors. Spam email campaigns, for example, advertise Web links to malware samples that infiltrate corporate networks and attempt to connect back to the Internet. This session explores McAfee’s work on behavioral detection of such campaigns, using global correlation of behavioral data traces based on email, Web, firewall and malware intelligence. Learn how mining these data sets for malicious patterns is an effective tool to mitigate threats proactively at the gateway and on the endpoint.
Extremely Technical

McAfee: Head in the Clouds - How Artemis Boosts Malware Detection in Endpoint and Gateway Products
Chris Barton, Research Scientist, McAfee, Inc.
Alex Hinchliffe, Anti-Malware Research Manager, McAfee, Inc.
This session takes a fast-paced flight through the evolution of McAfee's cloud-based anti-malware detection feature, Artemis. Find out how this technology is applied to network and email products. Learn how Artemis has evolved into a predictive security solution that tackles the ever-changing malware landscape. Hear directly from the researchers who manage the Artemis technology.
Somewhat Technical

McAfee: How to Protect Against Threats at the Network Level
Chris Jordan, Vice President, Threat Intelligence, McAfee, Inc.
What are the leading threats at the network level? Today’s blended attacks primarily target application vulnerabilities. This session explains how these threats have evolved and where they’re headed. The virulence of these assaults makes it vital to detect them at the network and protocol level, before they reach desktops. This presentation also describes techniques used for IP reputation, malware detection at the network layers and the technologies that deliver this intelligence into McAfee network products.
Somewhat Technical

McAfee: Inside a Scareware Company
Dirk Kollberg, Malware Research Lead, McAfee, Inc.
Are you annoyed by those fake “alert” pop-ups telling you that your anti-virus software has expired, your machine is infected or that protection can only be activated by buying a subscription? This session goes behind the scenes of a company that employed these “scareware” tactics, but was eventually caught. Using animation and detailed statistics, the presentation covers the sequence of distribution, purchases and recorded support calls to show the sophistication and well-established operation of such companies.
This presentation will not be available for download.
Somewhat Technical

McAfee: Researchers Panel
Paula Greve, Director - Web Security Research, McAfee, Inc.
Chris Jordan, Vice President, Threat Intelligence, McAfee, Inc.
Dave Marcus, Director, McAfee Labs, McAfee, Inc.
Igor Muttik, Senior McAfee Labs Architect, McAfee, Inc.
Francois Paget, McAfee Labs Researcher, McAfee, Inc.
Craig Schmugar, Threat Researcher, McAfee, Inc.
Join our panel of Avert Labs researchers for an engaging discussion on the advances in threat research, the risks we face from these threats and recommended best practices to mitigate exposure.

McAfee: The Morphing Threat Landscape - Drawing Connections between Malware, Money and Equities Markets
Anthony Bettini, Avert Product Manager, McAfee, Inc.
Craig Schmugar, Threat Researcher, McAfee, Inc.
The threat landscape is often presented with facts and figures that describe attack vectors and volume. This session provides a more complete picture of the attacker ecosystem by illustrating how attackers operate using recent, real-world examples. Topics covered include the cause-and-effect relationship of new technology, defensive positioning and counter strikes, attacker risk/reward considerations and the cybercrime underground. This session also offers a glimpse into what may lie ahead and covers the impact of zero-day vulnerabilities on the stock market.
Somewhat Technical

McAfee: The Wild West of Web 2.0 and the Evolution of the Messaging Ecosystem
Paula Greve, Director - Web Security Research, McAfee, Inc.
This session covers the interconnected threat landscape of the Web 2.0 and messaging worlds. Find out what are today's most insidious web and mail threats and how they spread. There's no going back: Web 2.0 is a requirement for critical business applications. Learn what new risks it introduces. This presentation discusses recent changes in web and mail threat vectors, analyzes the newest forms propagation, and lays out predictions for next year. Find out how McAfee’s Because Global Threat Intelligence technology can protect your networks and systems against malware threats.
Somewhat Technical

McAfee: Threat Research for Predictive Security
Dave Marcus, Director - Avert Labs, McAfee, Inc.
At FOCUS 08, you learned about Artemis and TrustedSource. This year, hear how McAfee threat research now focuses on delivering “predictive” security. Find out about the developments of the past 12 months and see how McAfee’s approach to identifying malware, web, mail, Internet threats and vulnerabilities has evolved to tackle the Web 2.0 world.
Somewhat Technical

Verizon Business: 2009 Data Breach Investigations Report - Evolutions in Cybercrime
Bryan Sartin, Vice President - Investigative Response, Verizon Business
Leveraging lessons learned from the Verizon Business 2009 Data Breach Investigations Report, this presentation provides a forensics investigator’s perspective into the most recent trends in cybercrime. Hear real-world metrics and statistics—taken from actual data theft investigations—exposing the most recent shifts in attack strategies, vectors, methods, threats and underlying points of information security exposure. Walk away with a unique insight into the evolutions of cybercrime and an understanding as to how those evolutions affect one industry versus the next.

FEATURING Keynotes:
Gen. Colin Powell, USA (Ret.);
McAfee CEO Dave DeWalt;
and more.

Over 90 informative
track sessions

CPE credits and
certification opportunities

Dedicated time with partners
at the Sponsor Expo

Targeted networking
activities and special events

Hacking Exposed sessions
with George Kurtz and
Stuart McClure

Opportunities to see the
McAfee Avert Labs research
team in action

And much more.