Business, Cloud Computing, Cyber Security, cyber security legislation, Cybersecurity, Defense, E commerce, Education, Finance, Government, IT Security, Security, Technology

US Chamber Says Senate Needs To Act On Cybersecurity Legislation Already Passed By House

This week the US Chamber of Commerce urged the Senate to pass the “Cybersecurity Information Sharing Act of 2014” (CISA) and other important cybersecurity-related bills before the end of the 113th Congress.

In July, The House overwhelmingly passed three bills to strengthen efforts to combat cyber attacks on critical infrastructure through the distribution of cyber threat information, the development and procurement of new technologies and support for the Department of Homleand Security’s (DHS) cybersecurity workforce.

 ional Cybersecurity and Critical Infrastructure Protection Act of 2014,” among other things, would codify and strengthen the National Cybersecurity and Communications Integration Center, a federal civilian, transparent interface to facilitate real-time cyber threat information sharing across critical infrastructure sectors, and establish “a true partnership between private industry and DHS, and ensures that DHS properly recognizes industry-led entities to facilitate critical infrastructure protection and incident response.”

 Read More

Advertisements
Standard
Business, Cloud Computing, Cyber Security, Cybersecurity, Defense, Finance, Government, IT Security, Technology

USA Feds hacked: Is cybersecurity a bigger threat than terrorism?

The US Postal Service announced Monday that the personal data of 500,000 postal employees was exposed in cyber attacks this year. This year hundreds of millions of private data have been compromised in attacks on business and government computers.

Read More

Standard
Golden Networking's Cyber Security World Conference 2014 New York City
Business, Cloud Computing, Cyber Security, Cybersecurity, Defense, Finance, Government, IT Security, Technology

How your Company can be the Weakest Link and how the Cybersecurity Framework can Help at Golden Networking’s Cyber Security World Conference 2014 New York City

A chain is only as strong as its weakest link, says Bill Buchanan, The Conversation. Computer security relies on a great number of links, hardware, software and something else altogether: you. The greatest threat to information security is actually people. Why strive to defeat encrypted passwords stored in computers, when those computers’ human users will turn them over willingly?

A huge problem with most types of digital communications, processing and storage is that it’s often very difficult to differentiate between a true communication and one which has been falsified. This stems largely from the internet’s background as an open, insecure system. In emails apparently from legitimate websites, the email address of the sender can be spoofed, that is, replaced with another that is not the sender’s actual address, as some email relay systems allow this.

Corporations are today targeted as never before, with growth in hacking attacks linked to nation states and overseas governments; in fact, sophisticated and sustained campaigns of phishing have succeeded in stealing information from firms and organizations all over the world. Symantec recorded a 62% rise in data breaches from spear phishing in 2013.

In response to the growing cyber threat, the Cybersecurity Framework, which was drafted by the Commerce Department’s National Institute of Standards and Technology (NIST), represents a tipping point in the evolution of cybersecurity, one in which the balance is shifting to proactive risk-management standards. While its application is voluntary, organizations across industries may gain significant benefits by adopting the guidelines.

Golden Networking‘s Cyber Security World Conference 2014 New York City (http://www.CyberSecurityWorldConference.com) will provide a platform for hundreds of senior executives focused on protecting today’s enterprises to learn more about the Cybersecurity Framework and how to apply it to their organization. Topics that Cyber Security World Conference 2014 will discuss include:

  • Cyber Security Megatrends Security Professionals can’t Ignore Today
  • Designing and Managing Effective Information Security Programs
  • Is Biometrics the Key to Personal and Corporate Security?
  • How Hackers Really Operate to Obtain Financial Data
  • Key Considerations about Security in the Internet of Things Age
  • Strengthening the Security of Industry-wide Technology Infrastructure
  • Cyber Security and its Role in the Overall Security of the United States

About Cyber Security World Conference 2014

Cyber security is never again a term to ignore for individuals or corporations. The daily activities of all Americans, the country’s global economic prominence and worldwide security rely on a safe and resilient cyberspace. Unfortunately, the number of cyber-attacks has increased dramatically over the last years, exposing confidential personal and business data, disrupting critical operations, and imposing exorbitantly high costs on the economy overall.

Just recently, J.P. Morgan Chase, America’s largest commercial bank with $2.39 trillion in assets, announced that about 76 million households and 7 million of small-business customers had been affected by a cyber attack in one of the most sweeping known global breaches. The company said the unknown attackers stole customers’ contact information, which included names, email addresses, numbers and addresses, affected an amount equivalent to almost two-thirds of American households.

A brief walk down memory lane of some the biggest recent cyber-attacks now include Adobe Systems, Automated Data Processing, Citigroup, E*Trade Financial, Fidelity Investments, Home Depot, HSBC, Nasdaq OMX, Neiman Marcus, Target and Wal-mart. It is not unlikely to consider that the information of every American has already been compromised in any of these publicly disclosed attacks.

Renowned information security experts and innovative service providers will present at Cyber Security World Conference 2014 their latest thinking to hundreds of senior executives focused on protecting enterprises and governmental agencies.

Cyber Security World Conference 2014 is produced by Golden Networking, the premier networking community for business and technology executives, entrepreneurs and investors. Panelists, speakers and sponsors are invited to contact Golden Networking by sending an email to information@goldennetworking.com.

Standard
Robert Gardner, founding partner of New World Technology Partners (NWTP)
Cloud Computing, Cyber Security, Cybersecurity, Defense, Government, IT Security, Technology

Risk Management Technology Leader Robert Gardner to Keynote Cyber Security World Conference 2014

Robert Gardner, founding partner of New World Technology Partners (NWTP), will keynote upcoming Cyber Security World Conference 2014 New York City (http://CyberSecurityWorldConference.com), unique forum where cyber security experts are set to discuss topics such as protecting individuals and companies against cyber-attacks, biometrics as the future of security, risks brought by mobile computing, and protecting corporate and national infrastructure against foreign attacks.

Mr. Gardner’s presentation, “The Enterprise Impact of Cyber Risk – through the Shareholder Lens,” is based upon 40 years of study and practice of cyber assurance. Beyond the security that can be achieved by responsible cyber hygiene (which we still do not practice, but can prevent 75% or more of the problem), according to Mr. Gardner, critical infrastructure and national leaders must consider two paradigm shifts in their risk management thinking:

  1. The cyber eco-system underpinning their enterprise is not what they think it is – it has become a real-time complex system of systems – where runaway complexity presents systemic risks and exploitable vulnerabilities, which may have immediate, irreversible stakeholder consequences.(i.e before the next 10Q or congressional hearing)
  2. It can be managed by isolating the most consequential incidents – quantifying and prioritizing (aka Risk Triage) their financial, reputation/political and legal/regulatory exposure – which can be achieved by several old ( Bell Labs vintage system engineering analyses) and new (socio-political sentiment analysis) techniques.

However the C-Suite and their Boards must really get into the game to set the tone and become Cyber Exposure savvy, says Mr. Gardner. He has been a leader in cyber and critical infrastructure risk management technology and an incubator of technology enterprises since the mid-seventies. Mr. Gardner managed/participated in the launch of several development stage companies formed around those technologies, including August Systems, Verdix, Meiko Scientific, Cryptek, Phoenix Numeric and Probity Labs.

  • Formed The Probity Group to provide enterprise risk analyses for executives regarding complex systems and critical infrastructure risk. Coordinated development of Gradient™ technology to quantify systemic risk causes and consequences for commercial, federal and international enterprises.
  • Incubated iRISK™ Enterprise Risk Management methodology for a Fortune 500 enterprise to quantify the financial and public reaction (brand) consequences of cyber risk affecting shareholder and national security interests. Underlying intellectual property was vetted by industry, government and academic leaders in Energy, Financial Services, Chemical and Homeland Security communities.
  • Rebuilt security division of a public company which developed the first B2 Multi-level Secure (MLS) Network evaluated by NSA, and spun it off to a public secure communications company. Arranged financing and managed turn-around of the merged company. Strengthened secure products portfolio for U.S. and International markets, which reversed losses and achieved rapid profitability. Coordinated sale of company to prominent U.S. hedge fund.
  • At a mid-cap DoD service provider, he created an intellectual property incubator which introduced Trusted TeamWorks™ and other cyber risk innovations.
  • Incubated Supercomputer technology into products for U.S. operation of a U.K. parallel processing company. Successfully competed for high visibility Government and Industrial accounts, and was awarded the 1991 Northeast Small Business Prime Contractor of the Year recognition.
  • Member of startup team which developed NASA’s Software Implemented Fault Tolerance (SIFT) technology, pioneering Triple Modular Redundant (TMR) fault tolerant control systems. Business achieved success among International energy companies and Government Agencies. Subsequently spun off and acquired by ABB, which still operates 1000s of systems.

Prior to forming NWTP, he held senior engineering and technical marketing positions for ILLIAC IV, PEPE, LDSP and NASF supercomputer projects at Burroughs Corporation, for which he received numerous technical and market accolades and awards.

He often writes and speaks on topics regarding intellectual property and has prepared briefings and testimony for the U.S. House of Representatives and Senate caucuses on the technology impact on Financial (TARP) Infrastructure and The “First Three Hours” Emergency Response Methods.

Mr. Gardner also teaches business planning for artists at New York City’s “Third Ward” creative incubation center, and assisted formation and governance of New York based arts enterprises, including The Brick Theater and In The Pocket NYC. He has a BSEE from Rensselaer Polytechnic Institute and studied graduate system engineering and business administration at Penn State and the University of Santa Clara respectively.

About Cyber Security World Conference 2014

Cyber Security World Conference 2014 is produced by Golden Networking, the premier networking community for business and technology executives, entrepreneurs and investors. Panelists, speakers and sponsors are invited to contact us by sending an email to information@goldennetworking.com.

Standard
Cyber Security World Conference 2014 New York City
Cloud Computing, Cyber Security, Defense, Government, IT Security, Technology

Golden Networking’s Cyber Security World Conference 2014 to Build on Obama’s Groundbreaking Cyber Threat Information Sharing Framework

(October 31, 2014, New York City, NY) According to The Hill, the Obama administration’s recently issued cyber threat information sharing framework comes at a time when discussions are heating up in Congress on stalled legislation dealing with cyber security. Why lawmakers and law enforcement officials have been pounding the pavement in recent weeks, declaring that steps to ease the sharing of information about cyber threats are critical for the country’s defenses, will be discussed at Golden Networking’s Cyber Security World Conference 2014 New York City (http://CyberSecurityWorldConference.com), unique professional gathering where cybersecurity experts are set to illustrate business on protecting their information from cyber-attacks.

The document fills a gap in the U.S. Department of Commerce’s National Institute of Standards and Technology (NIST)’s more general cybersecurity framework, released on February 12, 2014. The framework, created through collaboration between industry and government, consists of standards, guidelines, and practices to promote the protection of critical infrastructure. The prioritized, flexible, repeatable, and cost-effective approach of the framework helps owners and operators of critical infrastructure to manage cybersecurity-related risk.

The Department of Homeland Security’s Critical Infrastructure Cyber Community C³ Voluntary Program helps align critical infrastructure owners and operators with existing resources that will assist their efforts to adopt the Cybersecurity Framework and manage their cyber risks. NIST also issued a companion roadmap that discusses NIST’s next steps with the Framework and identifies key areas of cybersecurity development, alignment, and collaboration.

Roadblocks to total implementation still remain though, as both industry and privacy groups have been hesitant to freely share information in the current legal landscape. One bill that would address the legal issues is the Cybersecurity Information Sharing Act (CISA), but it remains unclear whether the bill could see action in the lame-duck session after the elections, according to The Hill. Absent congressional action, businesses are concerned about whether they will be protected from liability when sharing information with the government. Conversely, privacy advocates are wary of what personal data industries might share with the government, given the surveillance activities that have been revealed at the National Security Agency (NSA).

About Cyber Security World Conference 2014

Cybersecurity is never again a term to ignore for individuals or corporations. The daily activities of all Americans, the country’s global economic prominence and worldwide security rely on a safe and resilient cyberspace. Unfortunately, the number of cyber-attacks has increased dramatically over the last years, exposing confidential personal and business data, disrupting critical operations, and imposing exorbitantly high costs on the economy overall.

Just recently, J.P. Morgan Chase, America’s largest commercial bank with $2.39 trillion in assets, announced that about 76 million households and 7 million of small-business customers had been affected by a cyberattack in one of the most sweeping known global breaches. The company said the unknown attackers stole customers’ contact information, which included names, email addresses, numbers and addresses, affected an amount equivalent to almost two-thirds of American households.

A brief walk down memory lane of some the biggest recent cyber-attacks now include Adobe Systems, Automated Data Processing, Citigroup, E*Trade Financial, Fidelity Investments, Home Depot, HSBC, Nasdaq OMX, Neiman Marcus, Target and Wal-mart. It is not unlikely to consider that the information of every American has already been compromised in any of these publicly disclosed attacks.

Renowned information security experts and innovative service providers will present at Cyber Security World Conference 2014 their latest thinking to hundreds of senior executives focused on protecting enterprises and governmental agencies. Topics that will be discussed include:

  • Is Biometrics the Key to Personal and Corporate Security?
  • Strengthening the Security of Industry-wide Technology Infrastructure
  • Cyber Security Megatrends Security Professionals can’t Ignore Today
  • Key Considerations about Security in the Internet of Things Age
  • Cyber Security and its Role in the Overall Security of the United States
  • How Hackers Really Operate to Obtain Financial Data
  • Designing and Managing Effective Information Security Programs

Cyber Security World Conference 2014 is produced by Golden Networking, the premier networking community for business and technology executives, entrepreneurs and investors. Panelists, speakers and sponsors are invited to contact Golden Networking by sending an email to information@goldennetworking.com.

Standard