ISSA Central Plains Chapter
February 1st,  2008

 

Central Plains Chapter Meeting:

"Network Behavior Analysis: Securing the Internal Network", Anthony Niehaus

SPEAKER CANCELED DUE TO WEATHER

 

Anthony Niehaus is a Senior Systems Engineer for Lancope with over 10 years of computer security experience. His career includes experience in penetration testing, privacy and compliance, operations, development training and education and design and implementation for enterprise security systems. He has worked as consultant and expert security advisor in almost every aspect of enterprise security including continuity planning, risk analysis and the design and implementation of disaster recovery and security incident response planning. He has extensive consulting experience working with Fortune 1000 companies as well as experience as a senior systems engineer for remediation, identity management and behavioral analysis software companies. He is a graduate of Purdue University.


Anthony will be presenting on Network Behavior Analysis

    If you use Foundry, Cisco, Extreme, or HP Procurve router or switches, you are already equipped to deploy a powerful security technology based on flow-based anomaly detection. Worms, viruses, hidden backdoors, policy violations, anomalous traffic spikes, and other concerning network conditions are easily detected using NetFlow and sFlow datagram analysis. Through a flow-based approach that utilizes statistics and algorithms rather than pattern matching (as is the case with signatures), a behavioral profile of the healthy network traffic is created to enable both network and security administers to rapidly detect subsequent changes to the health of the network.

    The topics of this presentation include:
    • Design and implement scalable internal network security.
    • Leverage existing network infrastructure for network security.
    • Explore how flow-based anomaly detection works, why it's effective, and how it can be put to use in a real-world enterprise network.
    • Cover the process of analyzing flows, baselining host behavior, and the power of recorded flow information from both a forensics and compliance perspective.

 

 

The Information Systems Security Association (ISSA)® is a not-for-profit international organization of information security professionals and practitioners.  It provides education forums, publications and peer interaction opportunities that enhance the knowledge, skill and professional growth of its members. We hope the ISSA will provide a chance to interface with other IT professionals and further your awareness of security practices and technologies.

 

This meeting is open to the general public with no expectations of membership.


Date:        Friday, February 1st, 2008
Location:  SKT Building - 3rd Floor

                125 N Emporia, Wichita, KS 67202
Time:        1:00 pm until 3:00 pm