September Dinner
Meeting
Topic: Auditing the Enterprise Database
Speaker: Rob Barnes - Application Security
Time: September 7, 2010; 5:30 Networking, 6-6:15 Chapter Update,
6:15-7:05 presentation, 7-8 dinner
Location: Montgomery Inn, Montgomery
AUDITING THE ENTERPRISE DATABASE
Every year, global companies face a multitude of compliance initiatives – some which are relevant to their businesses, and others that are not. Compliance has also become a critical component of data security, particularly with the rise in attacks on enterprise databases. The magnitude and costliness of these attacks are causing companies to investigate ways to audit database activity based on access to that database but also uncovering the methodologies used in the attacks.
It’s become essential for companies to understand these threats, but also with regard to these threats, to know what the best methods are for protecting those assets, all while ensuring compliance. Auditors are looking more closely at protections around enterprise data, including customer data and IP, to ensure that stringent requirements are adhered to.
In this session, attendees will learn how database auditing compliments your existing layered defense strategy.
This is an informative session that will cover the following topics:
- Factors driving database auditing requirements
- Access and Authentication Auditing
- Privileged and non-privileged user auditing
- Vulnerability and suspicious activity auditing
- Change auditing
- How does database auditing compliment your existing layered defense strategy
ABOUT THE SPEAKER
Rob Barnes is the Director, Security, Risk and Compliance Operations with Application Security, Inc. and the Technical Manager for Worldwide Business Development. His primary role is to drive partnerships with accounting, auditing and consulting organizations to help them meet their database security and audit testing requirements while focusing on global regulatory and compliance initiatives. He is responsible for the business development, strategic training and support for all partners and professional services providers.
Prior to joining Application Security, Inc., Rob served as an IT Auditor at Ernst & Young, LLP in the Technology and Security Risk Services practice out of the New York and Boston Financial Services Offices. Rob’s experience in IT Audit and information management, security and advisory services has given him insight into the compliance and security-related issues that global organizations face.
REGISTRATION:
If you do not want to use Paypal and would rather pay
at the door you, please email isaca_meetings@yahoo.com to
make your reservation. Please include your name and company in the email. Check
or cash accepted at door.
|