ACS NSW Technical Presents: Creating a Cyber-Resilient Organisation
Why pragmatic measures and practical controls should be your first line of defence.
The ACS Technology & Innovation Hub, Level 27, Tower One, 100 Barangaroo Avenue, Sydney, NSW, 2000
Tue 12 Feb 2019 05:45 PM AEDT
Duration: 2.3 hours
Member-Concessional $20.00
Register by Mon 11 Feb 2019 01:00 PM AEDT
Contact Event Organiser
In Person
CPD Hours: 2
Skills Level: Information security (SCTY) -> Level 5
About this event
Denial of service attacks, corporate espionage, as well as identity and data theft, are often depicted as the stuff of movies. The reality is that organisations around the world are having information pilfered from their networks, and emerging technologies - such as the Internet of Things - will bring new threats and challenges.
With the average cybercrime attack costing an Australian business more than $400,000 and mandatory reporting required for data breaches, it’s not surprising that companies are investing in cyber security. A good cyber security policy inspires vigilance and commitment from every level of the organization - it only takes one weak link in the chain for the system to fall over.
In this ACS NSW Technical Presents session, Senior Security Consultant, Edward Li, CISSP, OSCP, and Abhishek Simkhada, Security Engineer will explore:
Organisational Factors:
Getting here
If arriving by train from Wynyard, take exit 4 towards Barangaroo from the west end of the station. Make your way through the tunnel and follow the signs to Barangaroo.
ACS is located in Tower One which is the red building.
Accessing Level 27
An ACS staff member will be in the lobby of the Tower at 5:45pm to facilitate access to level 27. If you arrive early please wait in the lobby until registration commences.
With the average cybercrime attack costing an Australian business more than $400,000 and mandatory reporting required for data breaches, it’s not surprising that companies are investing in cyber security. A good cyber security policy inspires vigilance and commitment from every level of the organization - it only takes one weak link in the chain for the system to fall over.
In this ACS NSW Technical Presents session, Senior Security Consultant, Edward Li, CISSP, OSCP, and Abhishek Simkhada, Security Engineer will explore:
Organisational Factors:
- Cyber-resilient workplace culture. Creating commitment and vigilance.
- Pragmatic security. The basics are your first line of defence.
- Threat models – what assets do you need to protect.
- What is a risk management strategy and do you have a crisis communications plan?
- Inconvenient truths: A firewall is not enough.
- ASD Essential 8
- User awareness
- Password security
- Demo Wifi cracking
Getting here
If arriving by train from Wynyard, take exit 4 towards Barangaroo from the west end of the station. Make your way through the tunnel and follow the signs to Barangaroo.
ACS is located in Tower One which is the red building.
Accessing Level 27
An ACS staff member will be in the lobby of the Tower at 5:45pm to facilitate access to level 27. If you arrive early please wait in the lobby until registration commences.
Speakers
Speaker
Edward Li
Ed has over 12 years of professional experience in information security covering multiple domains, including but not limited to security and risk assessments, security architecture, application security and security operations.
Coming from a technical background, Ed has extensive hands-on experience, blended with exceptional client consulting and team leadership skills. In previous roles, Ed has led security assessment teams in major finance and government institutions, providing security advice and consultancy services to some of the highest profile and most complex IT projects across Australia.
Ed holds a bachelor’s degree in Software Engineering (First Class Honour) and a master’s degree in Technology Management. He is certified in Certified Information Systems Security Professional (CISSP), Offensive Security Certified Professional (OSCP), and GIAC Web Application Penetration Tester (GWAPT).
Coming from a technical background, Ed has extensive hands-on experience, blended with exceptional client consulting and team leadership skills. In previous roles, Ed has led security assessment teams in major finance and government institutions, providing security advice and consultancy services to some of the highest profile and most complex IT projects across Australia.
Ed holds a bachelor’s degree in Software Engineering (First Class Honour) and a master’s degree in Technology Management. He is certified in Certified Information Systems Security Professional (CISSP), Offensive Security Certified Professional (OSCP), and GIAC Web Application Penetration Tester (GWAPT).
Speaker
Abhishek Simkhada
Abhishek comes from a web developer background with years of experience in functional testing in various web technologies. This skillset lends itself to penetration testing, where Abhishek has experience helping customers including the Department of Finance and NIB to discover vulnerabilities in their web applications.
Abhishek is proficient with penetration testing tools such as Burp, SoapUI, as well as programming languages such as PHP, Javascript, Python and SQL.
Abhishek is ISTQB qualified, focusing on security testing throughout SDLC. He is a certified eLearningSecurity Advanced Web Application Penetration Tester.
Abhishek is proficient with penetration testing tools such as Burp, SoapUI, as well as programming languages such as PHP, Javascript, Python and SQL.
Abhishek is ISTQB qualified, focusing on security testing throughout SDLC. He is a certified eLearningSecurity Advanced Web Application Penetration Tester.
Agenda
Schedule
Activity
5:45 PM - 6:10 PM
Registration & Networking
6:15 PM - 7:00 PM
Presentation
7:00 PM - 7:15 PM
Q&A
7:15 PM - 8:00 PM
Networking, Drinks & Canapes
Event Location
Read
Event Terms & Conditions
Registration
- Payment in full is required the time of booking in order for the registration to be valid.
- To avoid disappointment, ensure you pay for your booking(s) before the registration closing date. Anyone that has not received a confirmation email will not be on the event attendance list and therefore will not be admitted to the event.
- Online registration ends at the time stated on the event details page.
Cancellation and Refund
All cancellations must be processed through the website, a refund will only be considered if it is at least 3 working days prior to the event.
Disclaimer
- ACS reserves the right to change the program at any time. Every effort will be made to ensure a program of equivalent standard and members are updated with changes.
- All dietary requirements are considered, however we cannot guarantee a 100% allergen free environment.
- ACS reserves the right to prohibit entry or eject any person from an ACS event based on behaviour deemed inappropriate by ACS staff, its agents and/or others working under its authority.
- Filming or streaming by attendees is not permitted. If an attendee is found to be doing so they will be asked to leave the event immediately and further action may be taken.
- Photography and/or filming may take place during this event, by accepting these terms you consent to this. Please let a member of ACS know if you do not want your picture taken.
COVID-19 Event Attendance Compliance
By registering to attend an ACS in person event you are agreeing to the below terms and conditions
- If an attendee is displaying flu or cold like symptoms in the days leading up to the event and therefore is not able to attend, ACS will refund the registration fee.
- If an attendee comes to an event and is displaying flu or cold like symptoms they will be asked to leave
- We ask all ACS members to respect the social distancing guidelines, if an attendee repeatedly disregards these guidelines, they may be asked to leave
- ACS reserves the right to cancel the event within 24 hours' notice if either the speaker or the event host has advised us that they are exhibiting flu or cold like symptoms
- All attendees must provide a valid phone number and email address to be contacted on if there is reason to notify about a possible COVID-19 exposure
Personal information collection notice
By registering for this event, you are providing personal information to the Australian Computer Society. In accordance with the ACS Privacy Policy, ACS collects personal information through registrations and attendances at its events for the purposes of:
- organising and providing the various professional development events held by the ACS (including for example, courses, conferences, seminars, workshops, launches);
- processing and managing event registrations (including catering for dietary requirements);
- maintaining event attendance records;
- contacting registered event guests with information in regard to the event and seeking post-event feedback;
- communicating with you to in relation to future events or ACS products, courses, services, promotions or other products or services that ACS reasonably thinks may be of interest to attendees;
- processing and responding to attendee inquiries; and
- conducting research to improve its events and better understanding needs.
If the required information is not provided, we or any involved third parties, may not be able to respond to you, update you, or provide appropriate services or events to you.
We may obtain personal information directly from you or from someone who registers for the event on your behalf. If you provide us with personal information about another person, you must do so only with their consent and agree to make them aware of this privacy notice.
ACS may share your personal information with third parties for the collection purposes noted above or as set out in our Privacy Policy, where it is reasonably necessary for, or directly related to, one or more of our activities, or required by law.
When you register to participate in an overseas event, we may send personal information we collect overseas.
See our Privacy Policy at https://www.acs.org.au/privacy-policy.html for more information about our privacy practices.