Gartner Information Security Summit

Gaylord National Resort & Convention Center
Washington, DC - United States

Despite rapidly advancing threats and new technology solutions, it’s relatively easy planning for the next year or two. But peering out 5-10 years is far more challenging. The Gartner Information Security Summit will provide insight and a vision of how things will evolve over the long term and provide road maps on how enterprises and solutions providers will get there.
This Summit will address the challenges and issues at the forefront of business today. You’ll get the answers to these and many more questions at the 2009 Gartner Information Security Summit:

• What must I know about the evolving technologies of information security and related disciplines?
• How do I become a more effective security/privacy/risk manager?
• How do I technically secure applications, or handle security for my industry-specific requirements?
• What is my career path within or outside my current company/agency?
• How can I communicate my value to the business more effectively?

NEW for 2009 Summit

• Keynote presentation on “Your Role in Information Security”
• Panel of CIOs, CISOs and Business Managers on “The Role of Information Security”
• Uniquely qualified experts on the cool jobs in information security and the best career path to the C-Level
• Interactive Workshops on evaluating security outsourcers, security metrics and organizational issues (Limited attendance)
• Evaluating the security issues of Cloud Computing
• MORE Interactive Gartner Analyst/User Roundtables (End-users only, attendance limited)
• Insightful and entertaining guest keynote presentations
• Case studies

Agenda

TRACK A: The CISO’s Role: Information Security Management Planning
The job of Chief Information Security Officer has evolved. Sometimes you came up through the ranks, maybe from network security, maybe from the audit department. You may know something about “the business” or maybe you’re focused – too much – on technological solutions to infosec problems. You’ll learn how to round out your knowledge and skills to meet the challenge of the job.

TRACK B: The Network Security Professional
Connectivity. Without it we’re isolated and can’t do business. The perimeter is porous, the challenges growing, the threats mutating and the bad guys are getting more and more creative. Keeping up means understanding how the tools are evolving, where they fit, where they overlap and where they truly show value.

TRACK C: Applications and the Security Role
Applications run the business. The first task is to make sure they work and meet the requirements. Too often, the question “is it secure?” is an afterthought. You can learn to fix that.

TRACK D: Security and Risk in Your Industry
Each industry sector is a little bit unique. Some industry initiatives are specific, some more general, but all offer something from which other businesses can learn.

TRACK E: Privacy and Data Security: Working with the Chief Privacy Officer
Privacy is the consumer version of security, but it also applies to corporate privacy, i.e. protecting intellectual property and the data your company or agency has been entrusted to protect. How can privacy be addressed within the information security domain?

TRACK F: Professional Effectiveness Workshops
Combining tutorials and interactive exercises, the sessions in this track will provide the tools and techniques needed for personal, individual success in your information security and risk management programs.

Key Topics

• Data and Application Security
• Privacy policies and privacy protection tools
• Hype Cycles for Information Security
• Magic Quadrants for Security Technologies
• How to be economical and safe through efficient security operations
• Facing budget crunches while under security and compliance mandates

Analyst/User Roundtable Topics

Retail Security Issues: Fraud, Shrinkage and PCI
Avivah Litan
Mon, June 29, 5:30-6:30 pm

Authentication Trends
Ant Allan, PhD
Mon, June 29, 5:30-6:30 pm

IPS and Firewall Management
Greg Young
Tues, June 30, 9:15-10:15 am

Threats and Vulnerability Management in Financial Services and Other Industries
Mark Nicolett
Tues, June 30, 9:15-10:15 am

IAM Issues in Government and Other Industries
Ray Wagner
Tues, June 30, 10:30-11:30 am

Security Organizational Structures
Chris Byrnes
Tues, June 30, 10:30-11:30 am

SSO and Password Management
Ant Allan, PhD
Tues, June 30, 2:45-3:45 pm

Key Management and Data Loss Prevention
Eric Ouellet
Tues, June 30, 2:45-3:45 pm

Security Awareness Training
Perry Carpenter
Tues, June 30, 5:15-6:15 pm

Forensics Tools, Technologies, Techniques
Jay Heiser
Tues, June 30, 5:15-6:15 pm

E-Discovery
Andrew Walls
Wed, July 1, 11:00-12:00 pm

Security, Operations and Facilities and BCM
Roberta Witty
Wed, July 1, 11:00-12:00 pm

Secure Software Development
Joseph Feiman
Wed, July 1, 1:30-2:30 pm

IAM War Stories
Perry Carpenter
Wed, July 1, 1:30-2:30 pm

Register Now