January 2018

UPCOMING EVENTS

ISSA CISO Executive Forum – San Francisco, CA April 14 – 15, 2018

Join us to share ideas, learn from informative presentations, and collaborate with your peers. Topics from emerging technologies, and innovation to redefining security and cyber resilience in today’s Internet of Everything. These will include breakthrough projects such as: Trusted infrastructures, smart algorithms including machine learning and artificial intelligence, data analytics, the Internet of Things, Blockchain, Smart Cities, Data-Center-on-a-Chip, cloud computing, certification frameworks, distributed key management systems (cryptographic), security-as-a-service, and methods for optimizing security and standards in highly regulated markets.

RSA Discount Code

The discount code to use for your passes is:

$175 Discount off of Full Conference passes – 18UISSAFDD

Membership Benefits

SecurityIQ Enterprise – Get Started for Only $500

SecurityIQ is security awareness education for the entire workforce that integrates awareness training, phishing simulations and personalized learning plans in one platform. Breaking the one-size-fits-all mold, SecurityIQ uses 18 measurable security behaviors to automatically create and deliver tailored education experiences based on employees’ unique roles, security aptitudes and learning styles. The result? Security education that changes learner behavior and improves your organization’s security posture against malicious cyber threats.

All ISSA members are eligible for a three-month SecurityIQ Enterprise subscription for only $500! (valued up to $12,500).

Designed for a security awareness proof of concept or to establish your baseline phishing rate, your three-month subscription includes:

PhishSim phishing campaigns with over 200+ templates
AwareEd automated training campaigns with 100+ role-based modules
Detailed campaign analytics and graded learner progress
Security Excellence Resource Kit of reinforcement tools and a month-by-month program plan
Dedicated Client Success Manager

To claim your ISSA member price, call us at 708-813-2137 or complete this form.

20% Discount on Professional Development Programs Offered by the InfoSec Institute

Offering over 95 training courses, InfoSec Institute is the trusted choice for security and IT education. We’ll help you boost your infosec skills, achieve certification and advance your career — guaranteed. 93% of our students pass their certification exams on the first attempt!
All ISSA members receive a 20% discount on any InfoSec Institute Boot Camps including:

Check out the complete catalog of in-person and online courses at https://www.infosecinstitute.com/courses.

To claim your 20% discount, call your enrollment representative today at 708-315-6366 or complete this form.

ISSA Thought Leadership Webinar Series

A Cure for the Common SOC

Sponsored by: Jask

With cybersecurity concerns escalating, organizations of all sizes have scrambled to boost budgets, hire talent and improve security operations – all in the hopes of catching up with and defeating a sophisticated and nearly-invisible enemy. But in this rush to build the SOC according to perceived industry best practices, have we truly optimized our human, technological and procedural resources? Or are we all SOC, and no action? If we took a moment to regroup and build the whole system again from scratch, would it be better than the SOC we’ve reached today by throwing resources at the problem? And if so, where did we go wrong – and how do we course correct? Join a panel of experts to discuss their visions of the perfect SOC and its top priorities while exploring how it can be evolved to achieve them.REGISTER NOW

Presented by:

Rocky DeStefano, JASK

From the Journal

Lessons About Cloud Security from 1980s Horror Movies

Author: Kayne McGladrey, ISSA member, Puget Sound Chapter

This article discusses how businesses can apply three fundamental best practices for adapting current security programs to mitigate insider threats as applications and data migrate to the cloud.

Much to my parents’ chagrin, I watched a lot of horror movies growing up. Many of these films had roughly the same plot—the protagonists would be safe, at home or at a party, and their phone would ring. Something went wrong, and they would get another suspenseful warning phone call. The third call was inevitably from inside the house, and the body count would rise as the protagonists tried to escape or defeat the villain. The bad guy was invariably a friend with a spare key and a dark secret, or he was demonically possessed. The message was clear: be careful of whom you associate with and whom you let into your house. (Read more…) on page 16.

ISSA in the News

Cyberattacks on Hotels – What Should Hotel Owners and Operators Do?

Jim Butler, January 23, 2018 Hotel News Resource

Protecting guests’ information (and employees’ information) from hackers is one of the biggest business challenges faced by hotel owners today. Data breaches can result in loss of reputation and loss of revenue, and can trigger costly lawsuits and government investigations.

In his earlier article, Not Just Heads in Beds – Cybersecurity for Hotel Owners, my partner Robert Braun [Advisory Board of the Information Systems Security Association, Los Angeles chapter], reminds hotel owners that they are generally required to indemnify brands and managers for costs incurred, which could include the cost of a data breach. Now, in his article below, he discusses why hotel data breaches are prevalent and what owners need to do to create a secure data environment for the properties they own.…(read the entire story)

Attention Subject Matter Experts

The ISSA E-NEWS wants to hear from you! Are you looking to get published? Share your expertise with the ISSA membership, an audience of Info Security and Cyber Security professionals spanning across the globe. If you are an industry thought leader in the InfoSec community and have an article or blog that will inform and inspire our members, we encourage you to submit it for review. (500 words or less or provide a link to full article/blog) Apply today