http://agendabuilder.gartner.com/SEC14/RSS/SessionList.aspx Security professionals from every IT area, industry and sector can't afford to ignore the latest developments and their potential impact. The issues cut across every aspect of business. You need the objective insights you'll get at Gartner IT Security Summit. en-US Copyright 2009 Gartner, Inc. All rights reserved. Agenda Builder RSS Feed Generator v.3.10.0.12090 Gartner, Inc. kiosk.admin@gartner.com Sun, 22 Nov 2009 07:53:39 GMT 300 http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=782 Sunday, June 01, 2008 12:00 PM - (7 hr) Gartner Wed, 07 May 2008 10:09:01 GMT Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=784 Sunday, June 01, 2008 04:15 PM - As mobility permeates society, enterprises must remain vigilant in making sure that corporate policies, expenses and security practices remain updated. Disasters and downtime result when “office style thinking” is applied to mobile work style management and security. These sessions look at every aspect of keeping enterprise information secure while keeping costs and risks in line with benefits – all while keeping an eye toward future investment. (1 hr) John Girard Wed, 14 May 2008 22:23:05 GMT Pre-Conference Tutorial http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=785 Sunday, June 01, 2008 04:15 PM - It is well-established that the more mature an organization's risk-based processes are, the more proactive their approach to risk management and the more resilient they can be in the face of incidences. Please join us in learning how to assess the overall process maturity of your risk program using Gartner's risk maturity program assessment tool. (1 hr) Jeffrey Wheatman Wed, 14 May 2008 22:24:23 GMT Pre-Conference Tutorial http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=786 Sunday, June 01, 2008 04:15 PM - To enable clients to make the best decisions, Gartner analysts spend a great deal of time independently analyzing products and services and the companies that provide them. This session explains the process, and describes how Gartner research products should be optimally used in making choices. Hint: Sometimes the upper-right companies are not the most suitable for your circumstances. (1 hr) John Pescatore Wed, 14 May 2008 22:27:15 GMT Pre-Conference Tutorial http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=787 Sunday, June 01, 2008 04:15 PM - The markets for security products and services in Europe and Asia are exploding, and local vendors are moving rapidly to satisfy customer demand and build market share. There are security companies based outside of North America that are doing sizable business outside of North America. Some of these vendors are innovative; some are less expensive than the North American market leaders but provide similar – and often better – customer service. (1 hr) Andrew Walls Wed, 14 May 2008 22:29:26 GMT Pre-Conference Tutorial http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=788 Sunday, June 01, 2008 05:30 PM - Virtualization isn’t inherently insecure; however, most virtual servers are being deployed insecurely. This tutorial will discuss the specific security issues related to virtualization, and provide specific guidance for secure virtual server deployments. (1 hr) Neil MacDonald Wed, 14 May 2008 22:31:48 GMT Pre-Conference Tutorial http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=789 Sunday, June 01, 2008 05:30 PM - What does the ideal RFP or tender contain for identity and access management systems? What kind of questions should be asked before buying a system? Are there best practices for deploying user provisioning? Once a system is installed, what organizational structure is best-suited for ensuring the best use of the system can be realized? These and other questions will be explored in a survey of customer experiences. (1 hr) Earl Perkins Wed, 14 May 2008 22:33:57 GMT Pre-Conference Tutorial http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=790 Sunday, June 01, 2008 05:30 PM - Content monitoring and filtering/data loss protection technologies are becoming more and more common place in the arsenal of compliance tools for many organizations. However, many continue to struggle when it comes to selecting and deploying meaningful CMF/DLP solutions and achieving their intended compliance goals. (1 hr) Eric Ouellet Wed, 14 May 2008 22:36:15 GMT Pre-Conference Tutorial http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=791 Sunday, June 01, 2008 05:30 PM - The presentation begins with market sizing, marketshare and the forecast, then explores the SMB security requirements that are very different from enterprise solutions. Vendors and buyers are learning painful and expensive lessons when they try and scale down an enterprise product or supersize an SMB product for an enterprise. SMBs have very different options, budgets, buying patterns, expertise levels and technical requirements for security that services their IT landscape. (1 hr) Adam Hils Wed, 14 May 2008 22:38:06 GMT Pre-Conference Tutorial http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=956 Sunday, June 01, 2008 06:30 PM - (2 hr) Optenet Tue, 27 May 2008 10:57:07 GMT Special http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=792 Monday, June 02, 2008 07:00 AM - (11 hr, 30 min) Gartner Wed, 07 May 2008 10:10:32 GMT Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=793 Monday, June 02, 2008 07:00 AM - (1 hr) Gartner Mon, 05 May 2008 11:01:49 GMT Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=794 Monday, June 02, 2008 08:00 AM - (15 min) Vic Wheatman Mon, 12 May 2008 20:50:00 GMT Keynote Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=795 Monday, June 02, 2008 08:15 AM - To kick off the conference, Gartner Vice President and Fellow Ken McGee provides an overview of the economic and business issues affecting Gartner clients and how they will impact their information security profile and security planning over the next decade. Further, he’ll review the security questions most frequently asked of Gartner, and project which questions will become important over the next several years. Finally, Gartner’s predictions for the origin of future growth in the IT and Information Security industry will be presented. (1 hr) Ken McGee Tue, 29 Apr 2008 09:49:38 GMT Keynote Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=797 Monday, June 02, 2008 09:30 AM - When a new technology emerges, businesses grow up to leverage it, and bad guys learn to exploit it. New technologies, Internet growth and Web 2.0 have created security problems. But they have also created new ways of making users and business more productive. This session will describe the changing security landscape and will discuss how the old models of traditional security don't directly apply. This session will also show how Google sets security strategy and addresses security issues throughout the product development and delivery life-cycle. (1 hr) Scott Petry Fri, 16 May 2008 16:51:20 GMT Keynote Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=796 Monday, June 02, 2008 10:45 AM - Discussion points will revolve around “what can information security learn from science fiction?” This award-winning panel will address: What issues in privacy, reliability, data integrity and network security have been explored by sci-fi authors, and is there any relevance to today’s infosec practioner. Hear from members of the SIGMA panel which is advising the U. S. Department of Homeland Security on anti-terrorist and anti-cybercrime scenarios. (1 hr) Arlan Andrews, Greg Bear, Robert Sawyer, Bruce Sterling Wed, 14 May 2008 22:41:06 GMT Keynote Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=798 Monday, June 02, 2008 11:45 AM - (2 hr) Gartner Thu, 22 May 2008 14:10:23 GMT Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=957 Monday, June 02, 2008 11:45 AM - (20 min) Ant Allan Tue, 03 Jun 2008 10:00:00 GMT Analyst in a Box http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=947 Monday, June 02, 2008 11:45 AM - Traditionally, computer security starts and ends with the computer. More recently, researchers have come to realize that security encompasses so much more: not just user interface, but economics, psychology, sociology and the all-important "security theater" that gives people the feeling of trust that allows them to rely on the security in the first place. This session looks at the big-systems picture of security, and shows how lessons from the social sciences translate into hard security requirements. (45 min) Bruce Schneier Wed, 21 May 2008 08:31:27 GMT Sponsor Lunch Address http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=958 Monday, June 02, 2008 12:10 PM - (20 min) Kelly M. Kavanagh Tue, 03 Jun 2008 10:00:48 GMT Analyst in a Box http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=881 Monday, June 02, 2008 12:35 PM - There is a growing needs for Secure Remote Working driven by Teleworking, Business Continuity and partner collaboration requirements. True flexibility and significant cost benefits can be achieved by allowing the use of machines not managed by the Enterprise. However, the level of trust that can be placed in these machines is limited and the threats resulting from their use are significant. This presentation examines approaches to creating a secure computing environment on unmanaged machines. (20 min) Marc Hocking, Dr Bernard Parsons Fri, 08 Aug 2008 14:14:32 GMT Solution Provider Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=898 Monday, June 02, 2008 01:00 PM - New technologies are converting compliance with IT management mandates such as FDCC, DISA STIG, etc. from a potentially disruptive and labor-intensive process to a smoothly running management discipline. Citing real-world experiences, the presentation will discuss how real-time visibility into compliance status, automated policy enforcement, and unified coverage of heterogeneous environments is already reducing compliance friction points and assisting with IT compliance initiatives. (20 min) Jonathan Fan Fri, 08 Aug 2008 14:14:32 GMT Solution Provider Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=904 Monday, June 02, 2008 01:25 PM - (20 min) Chris Leach Fri, 08 Aug 2008 14:14:32 GMT Solution Provider Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=799 Monday, June 02, 2008 01:45 PM - Encrypt it all, inspect it all, block it all, don’t slow it down at all -- the network gets increasingly more critical and difficult to secure. But as the network gets more application- and user-aware, network security can make some major steps forward. Beyond appliance litter and a parade of emerging vendors, there are steps that can be taken to both better-secure the network today and make better leverage of new network security capabilities to reach higher levels of security without breaking the budget. (1 hr) John Pescatore, Greg Young Wed, 14 May 2008 22:43:35 GMT Track Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=808 Monday, June 02, 2008 01:45 PM - Federation technology and practices have matured, and implementations are increasingly common. However, today’s federations are confined to well-defined communities of interest, and federations don’t completely address ease-of-use and privacy protection among disparate business contexts. The future identity architecture must include the best of today’s federations and the evolving user-centric identity frameworks. (1 hr) Gregg Kreizman, Ray Wagner Wed, 14 May 2008 22:58:04 GMT Track Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=966 Monday, June 02, 2008 01:45 PM - To view/download audience polling results for this session you must be an attendee of the Gartner IT Security Summit. Please log-on to Agenda Builder and enter the conference documentation key for access. (1 hr) Gregg Kreizman, Ray Wagner Mon, 14 Jul 2008 14:21:35 GMT Audience Polling Results http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=801 Monday, June 02, 2008 01:45 PM - IT GRCM is a set of capabilities that can improve an IT organization's external audit posture, reduce compliance reporting costs, and improve an organization’s ability to effectively address IT risks. Technology selection and deployment advice is provided for this emerging market. (1 hr) Mark Nicolett, Paul E. Proctor Mon, 05 May 2008 11:06:32 GMT Track Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=810 Monday, June 02, 2008 01:45 PM - This presentation briefly traces the controversial history of encryption, through public key cryptography and public key infrastructure (PKI), and ultimately projects the future challenges enterprises will face when quantum cryptoanalysis becomes a reality. (1 hr) Eric Ouellet Wed, 14 May 2008 23:00:11 GMT Track Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=803 Monday, June 02, 2008 01:45 PM - Web X.0 will be an enormous challenge to enterprises’ security. Individuals will become developers and get free access to attack machines, theft enablers and enterprise-strength technologies, as well as to advice, training, mentoring and technical support from global communities. This presentation analyzes Web X.0 security threats and vulnerabilities, ways to protect enterprises’ and individuals’ applications, and changes that enterprises should undergo to meet security challenges. (1 hr) Joseph Feiman Wed, 14 May 2008 22:50:31 GMT Track Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=804 Monday, June 02, 2008 01:45 PM - An IT risk management program is related to enterprise or operational risk management, as well as to other IT-related risk functions. While many issues stay the same as in the traditional information security approach, there are benefits as well as new issues that arise. This presentation introduces the themes that are built on in the remainder of this Boot Camp track. (1 hr) F. Christian Byrnes Wed, 14 May 2008 22:53:44 GMT Track Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=983 Monday, June 02, 2008 01:45 PM - To view/download audience polling results for this session you must be an attendee of the Gartner IT Security Summit. Please log-on to Agenda Builder and enter the conference documentation key for access. (1 hr) F. Christian Byrnes Mon, 14 Jul 2008 14:53:03 GMT Audience Polling Results http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=882 Monday, June 02, 2008 03:00 PM - You can't eliminate risk, but you can become more resilient to it. Great risk resilience brings business strength and sharpens competitive edge. BT Manages one of the most complex and secure communications networks in the world. Our experience is your opportunity. (30 min) Mark Danton, Jeff Schmidt Fri, 08 Aug 2008 14:14:32 GMT Solution Provider Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=908 Monday, June 02, 2008 03:00 PM - Information risk management provides a methodology for recognizing, assessing and mitigating the risk exposed to information throughout its lifecycle. Securing data is a challenge, and is why we control access, challenge identity, and manage security information and events. This session will address a data security system that enables organizations to discover and monitor sensitive information; enforce controls - such as encryption and data loss prevention - and report and audit to prove that sensitive data is secure. (30 min) Bret Hartman Fri, 08 Aug 2008 14:14:32 GMT Solution Provider Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=911 Monday, June 02, 2008 03:00 PM - Symantec continues to expand our strategy in line with the demands of today’s growing security needs; gleaning insight from customers, press and analysts. Through this process, we’ve focused our Security 2.0 strategy around three main areas of security: IT Policy Compliance, Data Loss Prevention, and Endpoint Protection. We believe security should be policy-driven, information-centric, and operationalized over a well managed infrastructure. With this approach, companies can transform security from inhibitor to business enabler. (30 min) Brian Foster, Steve Roop Fri, 08 Aug 2008 14:14:32 GMT Solution Provider Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=913 Monday, June 02, 2008 03:00 PM - The fall of the physical perimeter increases the burden on security infrastructure and resources dramatically. The rise of virtualization, tapping into existing unused or under-utilized network resources, and cloud computing, the idea of services delivered via the Internet or “in the cloud”, offer businesses incredible power and flexibility, but not without a whole new set of security challenges. HP Chief Security Strategist, Chris Whitener, will share 5 practical tips for securing these emerging environments. (30 min) Chris Whitener Fri, 08 Aug 2008 14:14:32 GMT Solution Provider Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=919 Monday, June 02, 2008 03:00 PM - In a world where change is the only constant, businesses need an easy and cost-effective way to guard against release, misuse or abuse of critical information assets – while at the same time assuring that information is continually available to those who need it, on demand. Today, holistic information risk management represents the mechanism by which businesses can effectively balance security and compliance control with seamless access to mission critical information assets and systems. (30 min) TBD Fri, 08 Aug 2008 14:14:32 GMT Solution Provider Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=883 Monday, June 02, 2008 03:35 PM - Learn how Novartis is able to stay focused on core business while reaping the benefits from BT’s Managed Security Network of Services. A candid presentation detailing the high points and the pitfalls, and what the partnership is going to face between the next 5 to 10 years. (25 min) Andreas Wuchner Fri, 08 Aug 2008 14:14:32 GMT Solution Provider Case Study http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=912 Monday, June 02, 2008 03:35 PM - Learn why a leading healthcare organization selected the Vontu Data Loss Prevention solution from Symantec to protect its confidential data. In this session, you will get the opportunity to hear first hand what their selection criteria was, how they are using Data Loss Prevention, and what business benefits they are seeing. You’ll also learn: (*) Requirements for a Data Loss Prevention solution (*) Evaluation and decision making processes (*) Business benefits and lessons learned (25 min) Ken Patterson Fri, 08 Aug 2008 14:14:32 GMT Solution Provider Case Study http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=914 Monday, June 02, 2008 03:35 PM - This Fortune 50 company will discuss its Information Classification and Data Handling project performed through risk analysis to meet regulatory guidelines and view data trends without disrupting business and IT. Data discovery measured compliance policies against terabytes of content sprawl and corporate information. Using RSA® DLP Datacenter provided required accuracy, performance, scalability and TCO. Phase two plans are to monitor and enforce the transmission of sensitive information on the network to help prevent data loss. (25 min) Olav Opedal Fri, 08 Aug 2008 14:14:32 GMT Solution Provider Case Study http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=920 Monday, June 02, 2008 03:35 PM - Abstract to follow (25 min) Bill Kowaleski Fri, 08 Aug 2008 14:14:32 GMT Solution Provider Case Study http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=878 Monday, June 02, 2008 04:15 PM - This session provides an overview of the benefits of converging IT security and compliance initiatives within the organization. The session outlines how the software-as-a-service (SaaS) delivery model makes this complex initiative feasible and economical – On Time–On Budget–On Demand. (30 min) Philippe Courtot Fri, 08 Aug 2008 14:14:32 GMT Solution Provider Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=879 Monday, June 02, 2008 04:15 PM - “It takes years to build up trust, and only seconds to destroy it.” In today's computing environment, it takes even less time than that. Join Charles Renert, Principal Reseacher at Websense, to explore how Web 2.0, increased collaboration and social networking pose major hurdles to traditional reputation and trust models. (30 min) Charles Renert Fri, 08 Aug 2008 14:14:32 GMT Solution Provider Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=892 Monday, June 02, 2008 04:15 PM - With the myriad of regulations that organizations face, they require solutions that optimize their security posture while proving compliance. McAfee delivers industry-leading compliance auditing and policy management capabilities, enabling companies to demonstrate compliance while maximizing their return on investment (ROI). By providing a single management console from which to deploy, manage and report from, McAfee eliminates having to rely on disparate technologies from multiple vendors. (30 min) Brian Kenyon Fri, 08 Aug 2008 14:14:32 GMT Solution Provider Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=909 Monday, June 02, 2008 04:15 PM - The pervasiveness and criminal nature of cyber threats is a phenomenon that the public appears to have either accepted or just disregarded. This sanguine view belies the serious danger that cybercrime has put members of the public in. A panel of law enforcement, industry and system experts will discuss the possible outcomes of this trend, and the need to protect not only the data at risk, but the lives and businesses behind the data. (30 min) David Perry Fri, 08 Aug 2008 14:14:32 GMT Solution Provider Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=916 Monday, June 02, 2008 04:15 PM - As compliance requirements increase in scope and complexity, security professionals must implement flexible solutions that accommodate an ever-changing security landscape without unduly taxing existing infrastructure, personnel, and other resources. This session will highlight best practices for achieving and maintaining compliance through a fluid strategy based on building a Compliance Foundation – programs, policies, procedures, and access controls – and Compliance Management and Monitoring–ongoing tracking and monitoring to ensure changes are addressed in the compliance program. (30 min) Branden Williams Fri, 08 Aug 2008 14:14:32 GMT Solution Provider Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=893 Monday, June 02, 2008 04:50 PM - In facing this challenge of meeting a multitude of compliance mandates, organizations have typically deployed myriad point products, leaving them without a consolidated and consistent approach to demonstrate compliance. By implementing McAfee solutions that are tightly integrated via a single console, it results in efficient approach that can lead to real ROI. New auditing capabilities in McAfee's latest product releases enable enterprises to prove compliance while optimizing security posture. (25 min) Darren Guarino Fri, 08 Aug 2008 14:14:32 GMT Solution Provider Case Study http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=900 Monday, June 02, 2008 04:50 PM - The evolution of the web has changed the world, so why would you prevent your employees from taking advantage of the evolution? You can enable your business to build an environment of trust and freedom with your employees, enabling them to utilize the latest and greatest the web has to offer – but do it securely. Listen to how one Websense customer is successfully doing it. (25 min) Tony Lippert Fri, 08 Aug 2008 14:14:32 GMT Solution Provider Case Study http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=907 Monday, June 02, 2008 04:50 PM - With over 300 offices worldwide, Cisco’s extensive network is a prime target for potential attackers. Learn how Cisco utilizes a best-practices approach to proactively identify and remediate threats via an on-demand SaaS solution integrated with internal systems. (25 min) Doug Dexter Fri, 08 Aug 2008 14:14:32 GMT Solution Provider Case Study http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=910 Monday, June 02, 2008 04:50 PM - Georgia-Pacific is one of the world’s largest manufacturers of building materials, and paper products. Its growth has fueled an increase in the scope of its security requirements, including more than 30,000 desktops, 2500 servers, an increasingly mobile workforce, and a range of communications and collaboration tools. Gary Hill, Georgia-Pacific’s CTO, will detail the security issues confronting the company, strategies being implemented to counter current threats, and forward-looking plans to address future challenges. (25 min) Gary Hill Fri, 08 Aug 2008 14:14:32 GMT Solution Provider Case Study http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=915 Monday, June 02, 2008 04:50 PM - The proliferation of regulatory requirements has made it difficult to focus on broader objectives beyond simple compliance. This session highlights a real-world compliance initiative that focused on implementing a flexible solution to accommodate the frequent changes in the threat landscape. The session will include information about the business drivers behind the project, the approaches that were considered, details of the actual project, and the challenges and lessons learned from which the audience can benefit. (25 min) Timothy Mitchell Fri, 08 Aug 2008 14:14:32 GMT Solution Provider Case Study http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=807 Monday, June 02, 2008 05:30 PM - Wireless and mobile technology continue to conjure up fears about how technology will be used to exploit people and to disrupt business. This session introduces attendees to Gartner's methods for identifying and reality-checking future threats. (1 hr) John Girard Mon, 05 May 2008 11:08:14 GMT Track Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=963 Monday, June 02, 2008 05:30 PM - To view/download audience polling results for this session you must be an attendee of the Gartner IT Security Summit. Please log-on to Agenda Builder and enter the conference documentation key for access. (1 hr) John Girard Mon, 14 Jul 2008 14:09:59 GMT Audience Polling Results http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=800 Monday, June 02, 2008 05:30 PM - Although grid computing has been a resource in research and higher education for years, it has only recently emerged as a resource for corporations. The distributed and shared nature of grid computing promises strong benefits in terms of computational power, but is accompanied with strong risks to data confidentiality, integrity and availability. (1 hr) Andrew Walls Wed, 14 May 2008 22:44:59 GMT Track Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=830 Monday, June 02, 2008 05:30 PM - We have seen sweeping changes in the security and risk landscape over the last 10 years; focus has moved from buying tools and being reactive, to developing processes and being proactive. The key to this successful turn of events has been putting the right leader in place to steer the ship. During this presentation, we will review the characteristics of a good leader and how we were able to cull our current leader from the masses. (1 hr) Jeffrey Wheatman Wed, 14 May 2008 22:08:49 GMT Track Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=971 Monday, June 02, 2008 05:30 PM - To view/download audience polling results for this session you must be an attendee of the Gartner IT Security Summit. Please log-on to Agenda Builder and enter the conference documentation key for access. (1 hr) Jeffrey Wheatman Mon, 14 Jul 2008 14:30:22 GMT Audience Polling Results http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=802 Monday, June 02, 2008 05:30 PM - Has Microsoft's Windows OS has become too monolithic and bloated? Is it an inhibitor to security innovation and difficult to deploy? Much like the switch from Windows 9x to Windows NT architecture, we believe that Microsoft developers must and will break with application compatibility and radically change their approach to security. Here we explore the requirements of what the next-generation secure client OS will look like, and the opportunity for other vendors to deliver this instead of Microsoft. (1 hr) Neil MacDonald Wed, 14 May 2008 22:47:59 GMT Track Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=975 Monday, June 02, 2008 05:30 PM - To view/download audience polling results for this session you must be an attendee of the Gartner IT Security Summit. Please log-on to Agenda Builder and enter the conference documentation key for access. (1 hr) Neil MacDonald Mon, 14 Jul 2008 14:37:51 GMT Audience Polling Results http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=811 Monday, June 02, 2008 05:30 PM - With a mix of constituencies and varied requirements, the university is an interesting environment for managing technology. Dr. Akpose discusses the challenges of securing the modern enterprise, examining lessons learned from enterprise architectural frameworks and developmental methodologies. (1 hr) Gartner Wed, 14 May 2008 23:01:30 GMT End-User Case Study Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=812 Monday, June 02, 2008 05:30 PM - In perfect world, security controls, policies, processes and behaviors become fully integrated into the fabric of the enterprise. In the real world, technical, environmental and organizational practicalities mitigate against this. (1 hr) Tom Scholtz Tue, 06 May 2008 13:46:13 GMT Track Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=813 Monday, June 02, 2008 06:30 PM - (2 hr) Gartner Tue, 13 May 2008 11:23:40 GMT Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=872 Monday, June 02, 2008 06:30 PM - In his presentation, Matt Moynahan, CEO at Veracode will discuss the current challenges enterprises face related to insecure code from off-the-shelf software and applications developed off-shore. Moynahan will describe five best practices for secure procurement that will enable enterprises to obtain a practical understanding of risk related to external code as well as specific steps to secure their organization. (20 min) Matt Moynahan Fri, 08 Aug 2008 14:14:32 GMT Solution Provider Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=877 Monday, June 02, 2008 06:55 PM - Network threats evolve on a daily basis, and determining a perimeter security plan sometimes gets lost in the distraction of tuning bells & whistles. This session explains how perimeter security remains a critical piece of defense, covers recent technical innovations in firewalls, and evaluates business and technical consideration best practices. (20 min) Kathy Trahan Fri, 08 Aug 2008 14:14:32 GMT Solution Provider Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=814 Tuesday, June 03, 2008 07:00 AM - (11 hr, 15 min) Gartner Tue, 13 May 2008 11:24:21 GMT Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=815 Tuesday, June 03, 2008 07:00 AM - (1 hr) Gartner Tue, 13 May 2008 11:24:52 GMT Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=823 Tuesday, June 03, 2008 08:00 AM - Security infrastructure must become adaptive -- to changes in business policy and to changes in the environment. Why can't our security infrastructure quickly adapt to changes in the threat environment from zero day and targeted attacks in ways similar to the human immune system? Why can't our security infrastructure quickly adapt to changes in business and regulatory policy? We believe it can; however, significant change is required both from IT security vendors and IT security departments. This presentation will explore this vision and what is necessary to see it realized. (1 hr) Neil MacDonald Mon, 05 May 2008 11:15:03 GMT Keynote Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=828 Tuesday, June 03, 2008 09:15 AM - The prospect of implementing security controls via vendor-owned and managed technology offers several potential benefits with attendant risks. This session offers Gartner's view on the present and future role security as a service plays in enterprises and the vendors that will deliver security as a service. (1 hr) Kelly M. Kavanagh Mon, 05 May 2008 11:18:21 GMT Track Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=829 Tuesday, June 03, 2008 09:15 AM - Breaches of credit and debit card data has led to substantial fraud losses at major retailers. Combined with legal, communications and investigation costs, companies have spent millions cleaning up the wreckage. Pressure to comply with the Payment Card Industry Data Security Standard has increased but more than four years after the deadline, compliance remain low. This presentation highlights Gartner's best practice recommendations to protect customer data and demonstrate PCI compliance. It will also explore the future of payments security, and the fact that PCI will become an outdated standard by 2018. (1 hr) Avivah Litan Wed, 14 May 2008 22:05:33 GMT Track Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=809 Tuesday, June 03, 2008 09:15 AM - Gartner predicted that the role of the chief information security officer would transition from operations to strategy and governance. Participate in a discussion with the Chief Information Security Officer, Vanderbilt University and Medical Center who has experienced this transition first hand. (1 hr) Mark Johnson Mon, 05 May 2008 11:21:44 GMT End-User Case Study Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=831 Tuesday, June 03, 2008 09:15 AM - Much like other enterprises, Gartner will be relying on SOA designs as a way to quickly and effectively meet Gartner's information processing need. Unlike past architectural changes, Gartner is attempting to identify security issues before development and deployment. In this session, we will be reviewing Gartner's web services security objectives and programs. Additionally, we will be providing an analysis of strengths, weaknesses and rationale for how resources have been allocated to create safe SOA designs. (1 hr) Michael R. Zboray Wed, 14 May 2008 22:19:35 GMT Track Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=832 Tuesday, June 03, 2008 09:15 AM - Our databases are where much of the value and risk in our future enterprises will reside. Historically we have not done a good job protecting the data that sits in these critical repositories. If we are going to continue to improve our security posture and limit our risks, we need to follow the steps outlined in this presentation. (1 hr) Jeffrey Wheatman Wed, 14 May 2008 22:15:50 GMT Track Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=980 Tuesday, June 03, 2008 09:15 AM - To view/download audience polling results for this session you must be an attendee of the Gartner IT Security Summit. Please log-on to Agenda Builder and enter the conference documentation key for access. (1 hr) Jeffrey Wheatman Mon, 14 Jul 2008 14:46:48 GMT Audience Polling Results http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=833 Tuesday, June 03, 2008 09:15 AM - Business interruptions that impact day-to-day operations frequently occur and can have serious, long-lasting consequences. Organizations must counter and respond to them in a pro-active manner that ensures organizational resiliency is cost-effective and sustained. This presentation will discuss how business continuity management (BCM) can be used to reduce operating costs, drive revenue, maintain brand and promote community reputation. (1 hr) Roberta J. Witty Tue, 06 May 2008 13:47:39 GMT Track Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=984 Tuesday, June 03, 2008 09:15 AM - To view/download audience polling results for this session you must be an attendee of the Gartner IT Security Summit. Please log-on to Agenda Builder and enter the conference documentation key for access. (1 hr) Roberta J. Witty Mon, 14 Jul 2008 14:54:37 GMT Audience Polling Results http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=834 Tuesday, June 03, 2008 10:30 AM - Interest in NAC remains high, but adoption has been slow. In this session, we review common technical, political and operational obstacles to NAC and how to overcome these challenges. We also explore how building identity awareness into networks will impact NAC during the next 10 years. (1 hr) Lawrence Orans Wed, 14 May 2008 22:39:27 GMT Track Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=964 Tuesday, June 03, 2008 10:30 AM - To view/download audience polling results for this session you must be an attendee of the Gartner IT Security Summit. Please log-on to Agenda Builder and enter the conference documentation key for access. (1 hr) Adam Hils Mon, 14 Jul 2008 14:11:50 GMT Audience Polling Results http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=835 Tuesday, June 03, 2008 10:30 AM - By 2018, digital identities will constitute the bulk of a person’s complete identity, so much so that a person’s civil identity, attributed by the State, will likely be founded in cyberspace. Organizations managing workers’ and customers’ digital identities will increasingly rely on trusted (digital) identity providers. (1 hr) Ant Allan Wed, 14 May 2008 22:06:48 GMT Track Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=967 Tuesday, June 03, 2008 10:30 AM - To view/download audience polling results for this session you must be an attendee of the Gartner IT Security Summit. Please log-on to Agenda Builder and enter the conference documentation key for access. (1 hr) Ant Allan Mon, 14 Jul 2008 14:23:20 GMT Audience Polling Results http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=836 Tuesday, June 03, 2008 10:30 AM - If you thought e-discovery of internal ESI (electronically stored information) was bad, just wait. The problems posed by e-discovery are worsening as litigators and regulators focus on the digital persona of e-discovery custodians well beyond the firewalls of their organizations. This means that personal e-mail accounts as well as social networking sites and virtual reality may become the targets of litigators and regulators if it can be established there is a relation to their work and that there may be information relevant to the cause for action at hand. (1 hr) John Bace Mon, 05 May 2008 11:27:37 GMT Track Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=972 Tuesday, June 03, 2008 10:30 AM - To view/download audience polling results for this session you must be an attendee of the Gartner IT Security Summit. Please log-on to Agenda Builder and enter the conference documentation key for access. (1 hr) John Bace Mon, 14 Jul 2008 14:32:09 GMT Audience Polling Results http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=837 Tuesday, June 03, 2008 10:30 AM - The computer criminal community is getting more cunning, innovative, and productive every day. Malware proliferation and diversity is at an all time high and the incidence of targeted attacks and zero day threats are increasing. Attackers are advancing the state of the art in malware faster than traditional AV vendors are improving defenses and considerably faster than enterprises are adopting new HIPS and firewall technologies. (1 hr) Peter Firstbrook Wed, 14 May 2008 22:13:22 GMT Track Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=976 Tuesday, June 03, 2008 10:30 AM - To view/download audience polling results for this session you must be an attendee of the Gartner IT Security Summit. Please log-on to Agenda Builder and enter the conference documentation key for access. (1 hr) Peter Firstbrook Mon, 14 Jul 2008 14:39:33 GMT Audience Polling Results http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=838 Tuesday, June 03, 2008 10:30 AM - Application legacies, packaged systems, and production databases (such as ones from Oracle, SAP, IBM), are enterprises’ most valuable assets. They should be protected against external attacks, as well (sadly!) against insider attacks. They have thousands of distributed users, and are no longer confined to a secure data center. The importance of protecting these assets cannot be overestimated. (1 hr) Joseph Feiman Wed, 14 May 2008 22:16:52 GMT Track Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=839 Tuesday, June 03, 2008 10:30 AM - Companies are struggling to manage myriad privacy regulations and concerns related to their customers and employees in the United States and worldwide. This session details emerging privacy issues, governance models and best practices. (1 hr) Arabella Hallawell Tue, 06 May 2008 13:47:14 GMT Track Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=817 Tuesday, June 03, 2008 11:30 AM - (2 hr) Gartner Tue, 13 May 2008 11:25:18 GMT Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=960 Tuesday, June 03, 2008 11:30 AM - (20 min) Avivah Litan Tue, 03 Jun 2008 09:42:42 GMT Analyst in a Box http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=961 Tuesday, June 03, 2008 11:55 AM - (20 min) Nicole S. Latimer-Livingston Tue, 03 Jun 2008 09:52:11 GMT Analyst in a Box http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=871 Tuesday, June 03, 2008 12:20 PM - The perimeters of a corporate network are expanding. Uninhibited information flow is critical to business continuity; however, as information flows freely, the task of securing that information becomes increasingly difficult. Loss of sensitive information can put an organization at risk of non-compliance, hamper competitive advantage, and bring risk to an organizations brand and reputation. The session will identify content awareness as a major cornerstone of information protection. (20 min) Chris Ford Fri, 08 Aug 2008 14:14:32 GMT Solution Provider Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=899 Tuesday, June 03, 2008 12:45 PM - Threats to corporate networks have become more complex and require solutions tailored to protect against multiple vulnerabilities. In addition to protecting against many entry points, a solid threat management solution must have the capability to evolve and maintain robust protection from the growing number of complex threats. During his presentation, Steve Hurst will discuss the importance of using best practices for developing, scaling, and deploying advanced networking and security solutions. (20 min) Steve Hurst Fri, 08 Aug 2008 14:14:32 GMT Solution Provider Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=880 Tuesday, June 03, 2008 01:10 PM - Flash storage capacity and performance has increased to a level where a USB Flash Drive will no longer be used just for storing files. SanDisk TrustedFlash® technology enabling HW encryption and strong authentication capabilities along with Virtualization technology provides a giant leap towards a business mobility vision, where a Virtual workspace will be carried on a USB Flash Drive, boosting productivity of the enterprise worker while reducing total cost of ownership. (20 min) Dror Todress Fri, 08 Aug 2008 14:14:32 GMT Solution Provider Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=869 Tuesday, June 03, 2008 01:30 PM - Join this interactive discussion to understand why traditional security strategies are failing today and what leaders are doing to ensure the security of their most important assets – their information technology and data-- using proven Business Software Assurance approaches to stay ahead of constantly evolving cyber threats. Learn how to elevate your security initiatives into critical business initiatives and then successfully roll them out with sustainable support from executive management, IT and development organizations. (30 min) Barmak Meftah, Tony Spinelli Fri, 08 Aug 2008 14:14:32 GMT Solution Provider Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=884 Tuesday, June 03, 2008 01:30 PM - Applications are the battleground for data security. This interactive discussion will highlight real-world, practical steps that security managers are taking to address the threat to data in their source code. The panel will focus on pinpointing the vulnerabilities in code that impact data security and how organizations are building the processes and metrics to reduce those risks in a measurable and manageable way. (30 min) Jack Danahy, Fred Donovan, Christopher Smith Fri, 08 Aug 2008 14:14:32 GMT Solution Provider Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=889 Tuesday, June 03, 2008 01:30 PM - Mr. Bromberger will be highlighting PG&E’s use of SecureWorks SIEM and will be sharing PG&E’s experiences in migrating to a Managed Security Service Provider (MSSP). He will also present ideas surrounding metrics development for threat and vulnerability management and will show how an effective security incident monitoring program provides critical support to all aspects of a well-defined security program. (30 min) Seth Bromberger Fri, 08 Aug 2008 14:14:32 GMT Solution Provider Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=890 Tuesday, June 03, 2008 01:30 PM - Today’s threat environment is simply too dynamic for any point solution to provide effective protection. What’s needed is “iron onion” endpoint security, with core functionality that lets you add incremental protective layers that leverage the same client-side management agent, server, infrastructure and administrative console. Plus integrated process automation tools let you build and execute repeatable IT security management workflows to save time and money and maintain compliance. Attend this LANDesk session to learn more. (30 min) Stewart Christensen Fri, 08 Aug 2008 14:14:32 GMT Solution Provider Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=923 Tuesday, June 03, 2008 01:30 PM - Learn how Enterasys can ensure only the right users have access to the right information from the right place at the right time through identity-based “What You Need, Is What You Get” policies that can prioritize and secure voice, video and data applications. Easy to deploy, Enterasys Secure Networks automatically sense and respond to threats and vulnerabilities through standards-based, open-architecture network access control (NAC), distributed intrusion prevention (IPS), network behavioral analysis (NBA), security information event management (SIEM) technologies and security-enabled switching and routing infrastructure products. (30 min) Dennis Boas Fri, 08 Aug 2008 14:14:32 GMT Solution Provider Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=870 Tuesday, June 03, 2008 02:05 PM - For years organizations have unintentionally built security vulnerabilities into applications. Only recently have they put together application security teams, tools, and procedures to minimize new vulnerabilities. Commonly approaches, such training programmers on security, utilizing security tools, and revising development life cycles are proving valuable, however, these approaches don’t help with legacy code. Pump and Sluice is a creative approach to examine legacy code at flow rates acceptable to an organization's needs and available resources. (25 min) Richard Lansing Fri, 08 Aug 2008 14:14:32 GMT Solution Provider Case Study http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=885 Tuesday, June 03, 2008 02:05 PM - Hear from one of the experts at the Fortune 2000 how enterprises are integrating source code analysis into their SDLC. With regulations such as PCI DSS making source code analysis a requirement, more and more security managers are confronted with the challenge of working with development, outsourcers, and auditors on the security of their applications. This session will outline a real-world example of a source code analysis program, its processes, implementation, and results. (25 min) Jack Danahy, Fred Donovan Fri, 08 Aug 2008 14:14:32 GMT Solution Provider Case Study http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=888 Tuesday, June 03, 2008 02:05 PM - Intuit’s businesses, such as QuickBooks, TurboTax and others, depend on building customer relationships based on trust. That demands a strong and agile security posture capable of responding to new threats and attacks in real-time. Intuit leverages SecureWorks’ as their MSSP and depends on their responsiveness, customization and ability to manage during peak demand periods. Mr. Archer will discuss how Intuit uses SecureWorks to support a world class security program that integrates into Intuit’s business strategy. (25 min) Jerry Archer Fri, 08 Aug 2008 14:14:32 GMT Solution Provider Case Study http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=891 Tuesday, June 03, 2008 02:05 PM - LANDesk customers in industry segments ranging from federal, state and local governments, universities and school districts to financial services, healthcare, automotive and pharmaceuticals are experiencing the benefits of multi-layered endpoint security from a single management console. Attend this LANDesk session and hear how Virginia's Richmond Public Schools direct systems management, patch management, network access control, antivirus and more from a central interface to reduce IT complexity and reach greater levels of security control and efficiency. (25 min) Clifton Dickens Fri, 08 Aug 2008 14:14:32 GMT Solution Provider Case Study http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=924 Tuesday, June 03, 2008 02:05 PM - Come hear how Bentley addressed the challenges of controlling network access in the classroom and managing peer-to-peer traffic while ensuring only the right users have access to the right information from the right place at the right time. Enterasys Secure Networks are being leveraged to prioritize and secure the world’s largest and most complex networks in more than 70 countries around the world. Enterasys helps align the network with business requirements, optimizes operational efficiency and delivers very strong support capabilities. Understand how compliance automation and acceptable use policy enforcement are made easy while providing defense-in-depth and security diversity to protect networked information assets. (25 min) Todd Marsh Fri, 08 Aug 2008 14:14:32 GMT Solution Provider Case Study http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=840 Tuesday, June 03, 2008 02:45 PM - Organizations need to implement new ways to find and fix security weaknesses as threats evolve and new IT delivery methods are adopted. The technologies and services that will be needed to manage security information and eliminate vulnerabilities will be evaluated in this session. (1 hr) Kelly M. Kavanagh, Mark Nicolett Wed, 14 May 2008 22:03:35 GMT Track Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=841 Tuesday, June 03, 2008 02:45 PM - Virtual worlds, social network applications and real world mapping environments are merging and integrating to form complex, geographically distributed social and business interaction environments. As corporations move into these dynamic environments to access new markets and to enhance customer interaction and staff collaboration, new security risks are created for the organization and for the individuals that work within the virtual environments. The assurance of security within these new and rapidly changing environments requires a well coordinated and fluid approach to risk management with strong support and participation by business stakeholders. (1 hr) Andrew Walls Mon, 05 May 2008 11:34:31 GMT Track Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=968 Tuesday, June 03, 2008 02:45 PM - To view/download audience polling results for this session you must be an attendee of the Gartner IT Security Summit. Please log-on to Agenda Builder and enter the conference documentation key for access. (1 hr) Andrew Walls Mon, 14 Jul 2008 14:24:51 GMT Audience Polling Results http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=865 Tuesday, June 03, 2008 02:45 PM - IT risk has left the data center and is now a business risk, which, if not properly managed, has serious business consequences. Most executive management doesn’t know how to manage IT risk. Based on the Harvard Business School/Gartner Press book IT Risk: Turning Business Threats into Competitive Advantage, this presentation discusses the business consequences of IT risk as they relate to availability, access, accuracy and agility. (1 hr) Richard Hunter Tue, 13 May 2008 11:26:42 GMT Track Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=973 Tuesday, June 03, 2008 02:45 PM - To view/download audience polling results for this session you must be an attendee of the Gartner IT Security Summit. Please log-on to Agenda Builder and enter the conference documentation key for access. (1 hr) Richard Hunter Mon, 14 Jul 2008 14:34:18 GMT Audience Polling Results http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=843 Tuesday, June 03, 2008 02:45 PM - Cyber-attacks continue to escalate both in frequency and in sophistication. Under-the-radar and undetected attacks are launched directly against consumers and enterprises, compromising valuable customer and corporate data. Targeted attacks are also on the rise, and traditional anti-virus and anti-spyware filters are unable to stop the latest exploits. In an increasingly uncertain environment, it is critical that enterprises proactively fend off threats before they turn into attacks against themselves or their customers. It is also critical that they know who they are interacting with, so that they can protect their data, reputation, assets, and money. (1 hr) Avivah Litan Wed, 14 May 2008 22:15:09 GMT Track Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=977 Tuesday, June 03, 2008 02:45 PM - To view/download audience polling results for this session you must be an attendee of the Gartner IT Security Summit. Please log-on to Agenda Builder and enter the conference documentation key for access. (1 hr) Avivah Litan Mon, 14 Jul 2008 14:41:37 GMT Audience Polling Results http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=844 Tuesday, June 03, 2008 02:45 PM - Video surveillance is emerging as an important technology application for securing organizations. The earlier reactive mode of deploying video surveillance systems is changing to a more proactive role with the convergence of access controls and facial recognition onto IP-based networks. This presentation examines the technological advancements and privacy challenges revolutionizing the way video surveillance will be used over the next ten years. (1 hr) John Pescatore, Jeff Vining Tue, 06 May 2008 13:48:45 GMT Track Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=981 Tuesday, June 03, 2008 02:45 PM - To view/download audience polling results for this session you must be an attendee of the Gartner IT Security Summit. Please log-on to Agenda Builder and enter the conference documentation key for access. (1 hr) John Pescatore, Jeff Vining Mon, 14 Jul 2008 14:48:26 GMT Audience Polling Results http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=845 Tuesday, June 03, 2008 02:45 PM - The new release of ITIL takes a life-cycle view of service management, as opposed to the functional approach of previous versions. It emphasizes the engineering of risk and security components into the ‘service platform warranty’ for business and IT services. While this is a major improvement in approach, it does have major practical implications on IT security, risk and compliance strategies. (1 hr) Tom Scholtz Tue, 06 May 2008 13:49:11 GMT Track Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=985 Tuesday, June 03, 2008 02:45 PM - To view/download audience polling results for this session you must be an attendee of the Gartner IT Security Summit. Please log-on to Agenda Builder and enter the conference documentation key for access. (1 hr) Tom Scholtz Mon, 14 Jul 2008 14:56:35 GMT Audience Polling Results http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=874 Tuesday, June 03, 2008 04:00 PM - Security tops the list of information technology priorities these days. And that shouldn’t come as a surprise. Information drives your business, and protecting your business is essential to your ongoing success. Learn more about SunGard’s Information Security Consulting practice and the full suite of services designed to help customers identify areas where critical IT and business resources are exposed to risk and to create actionable steps for improvement. (30 min) Bob Clarke, Edward Ferrara Fri, 08 Aug 2008 14:14:32 GMT Solution Provider Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=886 Tuesday, June 03, 2008 04:00 PM - Business dependence on email and web is greater than ever before and the volume of threats has spiked dramatically as well. This presentation will discuss security software as a service (SaaS) as an emerging technology and why it is vital for a multi-layered security strategy. Customer case studies will provide real world examples of how IT departments can benefit from using SaaS security solutions for email and web. (30 min) Mike Irwin Fri, 08 Aug 2008 14:14:32 GMT Solution Provider Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=894 Tuesday, June 03, 2008 04:00 PM - Towards the end of 2007, MessageLabs saw a dramatic shift in the profile of targeted attacks towards organizations globally. The interceptions we were making increased dramatically. Something obviously changed within the threat landscape. In this presentation, we will examine how this next generation of cybercrime requires a proactive approach, beyond the capabilities of traditional signature based anti-virus systems. Learn how this complex online environment needs an integrated, intelligent and global approach to beat cybercriminals. (30 min) Mark Sunner Fri, 08 Aug 2008 14:14:32 GMT Solution Provider Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=895 Tuesday, June 03, 2008 04:00 PM - It is possible to get a full network picture—in real time. Learn how easy it is to see: • Suspicious traffic patterns • Network asset profiles: operating systems and versions; services and versions; ports and MAC and IP addresses; and security vulnerabilities • Added, changed, and behaviorally anomalous assets • When a security measure fails Something malicious is going to get on your network. Be in a better position to handle that situation. (30 min) Martin Roesch Fri, 08 Aug 2008 14:14:32 GMT Solution Provider Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=897 Tuesday, June 03, 2008 04:00 PM - Designing a secure network is baffling. Consolidation promises to simplify network design, but how? Will all security functions get merged into a single "God Box?" Many networks use specialized devices performing various, often redundant security functions. But the emergence of a set of common "legos" will make networks easier to build, less expensive to maintain and more secure. Brian Smith will explain this architecture, its components and how it simultaneously meets security and networking needs. (30 min) Brian Smith Fri, 08 Aug 2008 14:14:32 GMT Solution Provider Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=875 Tuesday, June 03, 2008 04:35 PM - The need to protect valuable intellectual property becomes more and more important as the number and sophistication of threats increases. Sealed Air will present how the use of penetration analysis with SunGard continuously improves Sealed Air’s response and readiness to new information security threats. The presentation will address the business drivers for the effort, the technical response, and the ultimate outcome. (25 min) Bob Clarke, Edward Ferrara Fri, 08 Aug 2008 14:14:32 GMT Solution Provider Case Study http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=876 Tuesday, June 03, 2008 04:35 PM - One of Sourcefire’s 1,600 customers will discuss how they are using the Sourcefire solution to: • Significantly decrease false alarms and prioritize real threats • Get context around security events • See everything running on their network in real time • Provide dynamic network defense for dynamic threats Finally, they are able to be in a position to be proactive, not just reactive, with emerging threats. (25 min) Kenneth Baldridge Fri, 08 Aug 2008 14:14:32 GMT Solution Provider Case Study http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=896 Tuesday, June 03, 2008 04:35 PM - Learn how a large, global manufacturing company has successfully tackled a complex and risk filled IT environment by simplifying its messaging security. Lisa Chattin, Information Protection Engineer at Kimball International will share best practices for outsourcing security, managing end users across the globe, handling global expansion and protecting your IP from targeted attacks. (25 min) Lisa Chattin Fri, 08 Aug 2008 14:14:32 GMT Solution Provider Case Study http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=901 Tuesday, June 03, 2008 04:35 PM - Business dependence on email and web is greater than ever before and the volume of threats has spiked dramatically as well. This presentation will discuss security software as a service (SaaS) as an emerging technology and why it is vital for a multi-layered security strategy. Customer case studies will provide real world examples of how IT departments can benefit from using SaaS security solutions for email and web. (25 min) Mike Irwin Fri, 08 Aug 2008 14:14:32 GMT Solution Provider Case Study http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=902 Tuesday, June 03, 2008 04:35 PM - Headquartered at Atlanta, Georgia-Pacific is one of the world's leading manufacturers and marketers of tissue, packaging, paper, pulp, and building products and related chemicals. The company employs approximately 50,000 people at 300 locations in North America, South America and Europe. Diab Hitti, Information Security Architecture Manager, will discuss how Georgia Pacific deployed TippingPoint's Intrusion Prevention Systems to protect their network infrastructure and TippingPoint's role in the company's future network security initiatives. (25 min) Diab Hitti Fri, 08 Aug 2008 14:14:32 GMT Solution Provider Case Study http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=867 Tuesday, June 03, 2008 05:15 PM - The best security is invisible, but how can we quantify security effectiveness when the objective is to create something that allows for a smoothly-running enterprise? The only time security can be noticed is when it's not working. Measuring the right elements to demonstrate effectiveness becomes critical. (1 hr) F. Christian Byrnes Mon, 05 May 2008 11:39:53 GMT Track Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=965 Tuesday, June 03, 2008 05:15 PM - To view/download audience polling results for this session you must be an attendee of the Gartner IT Security Summit. Please log-on to Agenda Builder and enter the conference documentation key for access. (1 hr) F. Christian Byrnes Mon, 14 Jul 2008 14:13:30 GMT Audience Polling Results http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=853 Tuesday, June 03, 2008 05:15 PM - Will there ever be a day when customers can “buy” identity and access management services, rather than installing products within their enterprise? Is that day already here? Are the identity and access management products themselves built as service-oriented architecture (SOA) based solutions to make such implementations easier, whether implemented in-house or by service providers? (1 hr) Earl Perkins Mon, 05 May 2008 11:41:35 GMT Track Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=969 Tuesday, June 03, 2008 05:15 PM - To view/download audience polling results for this session you must be an attendee of the Gartner IT Security Summit. Please log-on to Agenda Builder and enter the conference documentation key for access. (1 hr) Earl Perkins Mon, 14 Jul 2008 14:26:32 GMT Audience Polling Results http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=854 Tuesday, June 03, 2008 05:15 PM - With an implementation timeline influenced by PCI Compliance obligations, Gaylord deployed a Security Information Management solution to be the authoritative source of security log information. All security logs from all major devices are aggregated and correlated spanning three different server platforms, all network devices, security tools and scanners, etc. The company collects more than 200 million events per day, at an average storage size of 100 MB/day. The session focuses on lessions learned, implementation challenges, the time it takes to tune effectively, how much space is needed for the logs (they underestimated), and the benefits now being seen. (1 hr) Mark Burnette Wed, 14 May 2008 22:12:08 GMT End-User Case Study Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=849 Tuesday, June 03, 2008 05:15 PM - Voice is the most mission-critical, the most widely deployed and, historically, the most reliable of all applications. That won’t change in 2018, even though your phone may be just a piece of software instead of a traditional office phone. This session will analyze VOIP and Unified Communications trends and provide strategies for securing these evolving communications mediums. (1 hr) Lawrence Orans Mon, 05 May 2008 11:44:05 GMT Track Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=978 Tuesday, June 03, 2008 05:15 PM - To view/download audience polling results for this session you must be an attendee of the Gartner IT Security Summit. Please log-on to Agenda Builder and enter the conference documentation key for access. (1 hr) Lawrence Orans Mon, 14 Jul 2008 14:43:17 GMT Audience Polling Results http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=850 Tuesday, June 03, 2008 05:15 PM - Virtualization offers an opportunity to radically transform our standard approaches to information security. On desktops and servers, the virtualization layer can be used to perform introspection on hosted workloads -- essentially delivering host-based IPS without agents. Trusted hypervisors, malicious code isolation and simulation, trusted compliance watchdogs and transparent deep packet inspection will all be enabled using virtualization technologies. (1 hr) Neil MacDonald Wed, 14 May 2008 22:18:03 GMT Track Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=982 Tuesday, June 03, 2008 05:15 PM - To view/download audience polling results for this session you must be an attendee of the Gartner IT Security Summit. Please log-on to Agenda Builder and enter the conference documentation key for access. (1 hr) Neil MacDonald Mon, 14 Jul 2008 14:50:18 GMT Audience Polling Results http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=851 Tuesday, June 03, 2008 05:15 PM - For the last six years, IT security has faced a new threat – one which it initially tried to ignore as a distraction, then tried to use as a way to get funding for IT security initiatives, and is now reluctantly accepting as a necessary evil. That threat is “compliance.” As enterprises reform their compliance efforts from reactionary to risk-oriented, IT security professionals will need to follow – or find themselves deemed as irrelevant to the business. (1 hr) French Caldwell Tue, 06 May 2008 13:50:28 GMT Track Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=986 Tuesday, June 03, 2008 05:15 PM - To view/download audience polling results for this session you must be an attendee of the Gartner IT Security Summit. Please log-on to Agenda Builder and enter the conference documentation key for access. (1 hr) French Caldwell Mon, 14 Jul 2008 14:58:10 GMT Audience Polling Results http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=873 Tuesday, June 03, 2008 06:15 PM - Please join VeriSign in our hospitality suite on Tuesday, June 3 for a special golf-themed evening featuring cocktails and hors d'oeuvres, as well as golf games, with the opportunity to win some great prizes at the end of the night. We hope to see you at this exclusive event where you will have an opportunity to network with VeriSign representatives and your industry colleagues. The event begins at 6:15 p.m. in the Chesapeake K room. (3 hr) VeriSign, Inc. Fri, 08 Aug 2008 14:14:32 GMT Hospitality Suite http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=887 Tuesday, June 03, 2008 06:15 PM - Exotic Snow Fairies will lure you into the chill Webroot Lounge where your troubles will melt away as you relax with frosty drinks and chilled sushi. Indulge in the icy beverage of your choice at the Ice Luge. Slip away from the concrete jungle of D.C. and visit the miniature ice-carving replica of the famous monuments - watch the Live Ice Sculpturist create the Capitol Building. Enter to win Cool prizes! (3 hr) Webroot Fri, 08 Aug 2008 14:14:32 GMT Hospitality Suite http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=903 Tuesday, June 03, 2008 06:15 PM - Come visit TippingPoint's Hospitality Suite and test your palate with a special wine tasting event. Enjoy delicious hors d'oeuvres, great wine and great networking. Your wine tasting scoring card is your entry for a chance to win exciting prizes. Join us on Tuesday, June 3rd starting at 6:15pm in Chesapeake B. (3 hr) TippingPoint Fri, 08 Aug 2008 14:14:32 GMT Hospitality Suite http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=925 Tuesday, June 03, 2008 06:15 PM - Beat the bad guys at their own game at MessageLabs Cyber Arcade. Demolish Viruses, Trojans and Spyware and win prizes throughout the evening, including a Nintendo Wii. MessageLabs unique collection of computational art by Alex Dragulescu showcasing some notorious online threats will also be on display. Spend an evening of fun and gaming with MessageLabs. (3 hr) MessageLabs, Inc. Fri, 08 Aug 2008 14:14:32 GMT Hospitality Suite http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=943 Tuesday, June 03, 2008 06:15 PM - Join Fortify for a casino night with your peers. At Fortify, we welcome you to gamble – just not with your company’s data!!. When it comes to protecting your applications Fortify leaves nothing to chance…but when it comes to gambling for fun, we look forward to treating you to an evening of taking chances and winning exciting prizes. Stop by the Fortify Casino Night…It’s a ‘winning bet’! (3 hr) Fortify Fri, 08 Aug 2008 14:14:32 GMT Hospitality Suite http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=944 Tuesday, June 03, 2008 06:15 PM - Meet former FBI Agent and subject of Universal’s film, Breach, Eric O’Neill. He helped put away Robert Hanssen - most notorious spy in U.S. history! After, you’ll need a few sips of our whiskey and bourbon with Mount Vernon Preservationist, Dr. Dennis Pogue to try and pass our lie detector test - that’s right, if you ever thought it would be easy to pass a polygraph, we dare you to try! Also enjoy an open bar complete with hand-picked wines. (3 hr) SecureWorks Fri, 08 Aug 2008 14:14:32 GMT Hospitality Suite http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=945 Tuesday, June 03, 2008 06:15 PM - Visit the Qualys Sweet Suite for desserts paired with select wines & ports - discuss the recently released QualysGuard® Security and Compliance Suite, a set of SaaS products aimed at helping global organizations better manage operational challenges and associated costs while complying with an ever increasing set of regulations. Security has never been so Suite! (3 hr) Qualys, Inc. Fri, 08 Aug 2008 14:14:32 GMT Hospitality Suite http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=946 Tuesday, June 03, 2008 06:15 PM - After a long day of sessions, join Websense in the Blue Lounge for the perfect blend of margaritas! Shake it to the music while you enjoy light hors d'oeuvres in a fun, casual setting. (3 hr) Websense Fri, 08 Aug 2008 14:14:32 GMT Hospitality Suite http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=953 Tuesday, June 03, 2008 06:15 PM - Tired after a full day of sessions? Come unwind at ‘The Dugout,’ Symantec’s sports bar hospitality suite! Meet Baseball Hall of Famer and former Baseball All Star, Jim Palmer. Jim will sign autographs for the first 250 people who visit the suite. Rally in our sports bar and enjoy food, drinks and interactive games. Be there to find out if you are the lucky winner of a pair of tickets to the 2008 All Star Baseball Game at Yankee Stadium!! (3 hr) Symantec Corporation Fri, 08 Aug 2008 14:14:32 GMT Hospitality Suite http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=954 Tuesday, June 03, 2008 06:15 PM - The SNORT® based Sourcefire 3D™ System gives you power like you never imagined—unifying IPS, NBA, NAC, and Vulnerability Assessment technologies under one management console. Join Sourcefire®, creator of Snort, and Crossbeam® Systems, to celebrate at our annual biker bar theme bash. Get a photo next to a “Hog.” There’ll be plenty of giveaways. Be sure to register for the amazing grand prize. Stop by and get your motor runnin’. (3 hr) Sourcefire Fri, 08 Aug 2008 14:14:32 GMT Hospitality Suite http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=955 Tuesday, June 03, 2008 06:15 PM - Please join us for an evening of networking, relaxation and fun at the McAfee Martini Lounge! Meet representatives of McAfee as well as your colleagues while enjoying a "McAfee Martini. (3 hr) McAfee Fri, 08 Aug 2008 14:14:32 GMT Hospitality Suite http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=821 Wednesday, June 04, 2008 07:30 AM - (9 hr) Gartner Wed, 07 May 2008 10:11:27 GMT Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=822 Wednesday, June 04, 2008 07:30 AM - (1 hr) Gartner Mon, 12 May 2008 11:58:42 GMT Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=864 Wednesday, June 04, 2008 08:30 AM - America's leading political satirist and the best-selling author of ten books, Mr. O’Rourke provides his unique, ever-amusing perspective on the contradictory messages that emanate from the worlds of politics and economics. From the premise that politics is a zero-sum enterprise while economics decidedly is not, O’Rourke seeks to resolve or at least illuminate the inherent conflict between making law and making a living. And of course, being an election year in the US, Mr. O’Rourke expounds on the current state of the race and the foibles of the candidates of both parties – no one is spared! (1 hr) PJ O’Rourke Fri, 16 May 2008 16:52:06 GMT Keynote Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=917 Wednesday, June 04, 2008 09:45 AM - Data no longer sits in corporate databases alone and it flows in and out the enterprise, stored in remote databases. Furthermore it is sent to wireless and mobile devices where it may be stored or sent on again. Most organizations are unsure of where their critical data sits within the organization. Hear how to best approach the challenges faced by organizations—businesses and governments alike—when securing data, the flow of data, and the access to data. (30 min) Verizon Business Security Solutions Fri, 08 Aug 2008 14:14:32 GMT Solution Provider Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=921 Wednesday, June 04, 2008 09:45 AM - Data-at-rest security concerns have risen dramatically with the increase of breach notifications. Whether in a notebook or from a data center, once a drive leaves the owner's control, it may fall into an attacker's hands. This session focuses on the strengths and weaknesses of security, performance, deployment and manageability of various complementary encryption technologies, including self encrypting drives. (30 min) Bret Weber, Dr. Michael Willett Fri, 08 Aug 2008 14:14:32 GMT Solution Provider Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=948 Wednesday, June 04, 2008 09:45 AM - Bradford Networks delivers advanced network access control solutions for wireless, wired and VPN networks. Bradford’s out-of-band NAC appliances leverage existing network infrastructure to provide automated identity management, endpoint compliance and usage policy enforcement services that control user and device access to enterprise, government and academic networks. This session will review the daily access control challenges that this advanced technology can address now. (30 min) Jerry Skurla Fri, 08 Aug 2008 14:14:32 GMT Solution Provider Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=918 Wednesday, June 04, 2008 10:20 AM - Just relying on the old perimeter security practices is not sufficient, as those practices do not address many of the new security challenges that come with the extended enterprise. Organizations must make sure that their security infrastructure spans the complete extended enterprise and that it is monitored and managed effectively. Hear about what organizations should do to align their existing security infrastructure and practices to effectively protect their extended enterprise. (25 min) Julio Gonzalez Fri, 08 Aug 2008 14:14:32 GMT Solution Provider Case Study http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=922 Wednesday, June 04, 2008 10:20 AM - IBM’s Gordon Arnold discusses key management developed for self-encrypting tape systems and their use with a number of Fortune 500 customers. Arnold’s insight and knowledge gained from IBM’s customers will help session attendees learn about the best practices that have evolved for key management of data-at-rest security. (25 min) Gordon Arnold Fri, 08 Aug 2008 14:14:32 GMT Solution Provider Case Study http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=949 Wednesday, June 04, 2008 10:20 AM - Plagued by chronic network problems during new user registration and required to enforce and automate access standards and policies, Columbia University Medical Center decided to implement a Network Access Control (NAC) pilot program. The only vendor to meet the demanding pilot requirements, Bradford’s NAC solution was deployed and dramatically increased security while reducing helpdesk calls by 66%. Bradford NAC was then rolled-out to the Medical Center’s student population with equally dramatic results. (25 min) Dean De Beer Fri, 08 Aug 2008 14:14:32 GMT Solution Provider Case Study http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=974 Wednesday, June 04, 2008 10:30 AM - To view/download audience polling results for this session you must be an attendee of the Gartner IT Security Summit. Please log-on to Agenda Builder and enter the conference documentation key for access. (1 hr) Rex Murphy Mon, 14 Jul 2008 14:36:07 GMT Audience Polling Results http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=852 Wednesday, June 04, 2008 11:00 AM - An informal poll taken at last year’s Security Summit reflected that more organizations are still in the planning stages rather than the implementation phase of NAC. In this session, we present two early adopters of NAC. They will share their success stories and you will have the opportunity to ask questions in the panel that follows. (1 hr) Daniel Conroy, Lawrence Orans, Joseph Vittorelli Mon, 05 May 2008 11:55:48 GMT Panel http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=847 Wednesday, June 04, 2008 11:00 AM - Despite technology-neutral e-signature laws in North America and a history of point solution adoption, there is increased interest in deploying e-signature software suites and hosted services to ensure that the important signature process steps are properly managed and that signed records can stand up in court for years to come. (1 hr) Gregg Kreizman Wed, 14 May 2008 22:07:14 GMT Track Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=868 Wednesday, June 04, 2008 11:00 AM - This presentation will give insight into current IT security budgets, and to help managers compare their IT security spending with that of their peer organizations. We examine how IT security spending will grow, and where organizations have and continue to make investments. (1 hr) Nicole S. Latimer-Livingston Mon, 05 May 2008 11:56:41 GMT Track Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=855 Wednesday, June 04, 2008 11:00 AM - As IT service and cloud based delivery methods are adopted, the ability to monitor user activity and resource access becomes critical and more complex. A combination of monitoring and analytical technologies and services will be needed on the network and across systems and applications. (1 hr) Mark Nicolett, Paul E. Proctor Mon, 05 May 2008 11:57:02 GMT Track Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=856 Wednesday, June 04, 2008 11:00 AM - The only constant in cyberthreats is change. Financially motivated targeted attacks have increased the impact of cyber-incidents, as many enterprises were busy fighting the last war. In this presentation, Gartner will forecast what types of threats will emerge over the next 10 years and provide a standard methodology for ranking which threats will be the most dangerous to your organization. We will also outline some of the key information security investments that will be required to deal with emerging threats. (1 hr) John Pescatore Wed, 14 May 2008 22:18:49 GMT Track Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=857 Wednesday, June 04, 2008 11:00 AM - At the core of all successful risk and security programs is a business-focused risk-driven security organization. The "ideal" structure for this organization varies by industry and overall enterprise approach to risk management. The three issues which will be addressed by this look into the future are: (1 hr) Jeffrey Wheatman Tue, 06 May 2008 13:51:31 GMT Track Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=987 Wednesday, June 04, 2008 11:00 AM - To view/download audience polling results for this session you must be an attendee of the Gartner IT Security Summit. Please log-on to Agenda Builder and enter the conference documentation key for access. (1 hr) Jeffrey Wheatman Mon, 14 Jul 2008 15:00:08 GMT Audience Polling Results http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=906 Wednesday, June 04, 2008 11:35 AM - Becoming compliant may be foremost in many organization’s plans, but maintaining compliance will require a long-term process-oriented approach in order to prevent costs spiraling out of control. Adopting the right strategy now can prepare you for future regulations and maintain current compliance more easily and cheaply. Dorian Cougias, CEO of Network Frontiers and PCI Security Standards Council member, will discuss strategies for maintaining compliance with PCI, FDCC, and SCAP and preparing for possible future regulations. (20 min) Dorian Cougias, Geoff Webb Fri, 08 Aug 2008 14:14:32 GMT Solution Provider Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=824 Wednesday, June 04, 2008 12:00 PM - (1 hr, 30 min) Gartner Tue, 13 May 2008 11:28:00 GMT Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=858 Wednesday, June 04, 2008 01:30 PM - This session delves into the current state of open source security, revealing why many enterprises and agencies are now using it while still paying for security products. The presentation scrutinizes open source security, asking: (1 hr) Greg Young Mon, 12 May 2008 12:05:47 GMT Track Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=859 Wednesday, June 04, 2008 01:30 PM - Authentication in 2018 will be far simpler for enterprises – with standardized methods and federated services – and users – with simple, passive authentication. But organizations will for several years have to choose amongst an increasing variety of authentication methods and users will continue to be faced with varying degrees of inconvenience. (1 hr) Ant Allan Mon, 12 May 2008 12:07:43 GMT Track Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=970 Wednesday, June 04, 2008 01:30 PM - To view/download audience polling results for this session you must be an attendee of the Gartner IT Security Summit. Please log-on to Agenda Builder and enter the conference documentation key for access. (1 hr) Ant Allan Mon, 14 Jul 2008 14:28:20 GMT Audience Polling Results http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=816 Wednesday, June 04, 2008 01:30 PM - They have to exist. Enterprises that 'get' security. Places where the CISO is actually part of the C-Team. Places where people, even the CEO, listen. Places where the lack of a security approval means the project doesn't get done. Places where the security organization is funded correctly. Places where putting out fires or just slowing them down isn't the entire job description. Places where, maybe, the future lies. We'll speak with several CISOs who actually work there: CISO Heaven. (1 hr) Gene Scriven, Ray Wagner Mon, 12 May 2008 20:49:38 GMT Track Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=861 Wednesday, June 04, 2008 01:30 PM - Applications must become security aware. The next generation of service-oriented applications will require that we deliver security as a set of on-demand services consumable by applications, configured via policy and enforced for compliance at run-time. The presentation will discuss Identity Services, SOA, BPMS, role-based access control and emerging capabilities for model-driven security in applications development. (1 hr) Neil MacDonald Mon, 12 May 2008 12:08:03 GMT Track Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=979 Wednesday, June 04, 2008 01:30 PM - To view/download audience polling results for this session you must be an attendee of the Gartner IT Security Summit. Please log-on to Agenda Builder and enter the conference documentation key for access. (1 hr) Neil MacDonald Mon, 14 Jul 2008 14:45:14 GMT Audience Polling Results http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=862 Wednesday, June 04, 2008 01:30 PM - New forms of spam are emerging. Requirements for monitoring outbound email are increasing. Sender reputation is becoming an important issue. IM, consumer web mail and web 2.0 are redefining the scope of messaging, and what it takes to secure it. (1 hr) Arabella Hallawell Mon, 12 May 2008 12:08:20 GMT Track Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=863 Wednesday, June 04, 2008 01:30 PM - Today’s security-conscious enterprise is compelled to buy many different, often overlapping, security functions in the form of hardware, software, and services. It is challenging to navigate the muddle of vendor marketing, solution packaging, and industry FUD to decide how best to derive value from capital and operational expenditures while maintaining adequate security. In ten years, the budget- and security-conscious enterprise will have the ability to build a dynamic services-based security architecture comprising “push” and “pull” services, paid from a master security debit account. (1 hr) Adam Hils Mon, 12 May 2008 12:08:40 GMT Track Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=988 Wednesday, June 04, 2008 01:30 PM - To view/download audience polling results for this session you must be an attendee of the Gartner IT Security Summit. Please log-on to Agenda Builder and enter the conference documentation key for access. (1 hr) Adam Hils Mon, 14 Jul 2008 15:01:44 GMT Audience Polling Results http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=826 Wednesday, June 04, 2008 02:45 PM - Finalists for Gartner's Fourth Information Security award present their cases demonstrating originality and advancements in security programs, the application of technology or in leadership leading to improved security profile and serving as a model for others. (45 min) John Pescatore Mon, 12 May 2008 12:10:09 GMT Keynote Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=827 Wednesday, June 04, 2008 03:45 PM - Web X.0, the myriad of applications and websites created by non-IT professionals, will be challenging to secure. Globally distributed applications will be difficult to firewall. Yet, security start-ups will continue innovate, and software services and packages will be coming out of assembly with imbedded security protection features. Ultimately, will security threats be contained at the acceptable levels, or will fear rule the Web? Gartner analysts and audience members debate whether we will be more secure in 10 years. (45 min) Joseph Feiman, Neil MacDonald, John Pescatore Mon, 05 May 2008 12:08:41 GMT Keynote Session http://agendabuilder.gartner.com/SEC14/WebPages/SessionDetail.aspx?EventSessionId=962 Wednesday, June 04, 2008 03:45 PM - To view/download audience polling results for this session you must be an attendee of the Gartner IT Security Summit. Please log-on to Agenda Builder and enter the conference documentation key for access. (45 min) Joseph Feiman, Neil MacDonald, John Pescatore Mon, 14 Jul 2008 14:07:31 GMT Audience Polling Results