|
Security Plenary: Cybersecurity
Monday, October 18 — 9:00 - 12:30
9:30 - 9:35
Welcome
Allen Brown, CEO, The Open Group
Allen Brown, is President and CEO of The Open Group.
The Open Group is a global consortium that enables the achievement of business objectives through IT standards — it makes standards work.
|
9:35 - 10:30
Keynote: Towards A Modernised Network and Information Security Policy in Europe |
Andrea Servida, Deputy Head of the Internet, Network and Information Security Unit, Information Society and Media Directorate-General, European Commission
Andrea Servida joined the European Commission in 1993 and since January 2006 he is Deputy Head of the Unit "Internet; Network and Information Security" in the Information Society and Media Directorate-General. Besides co-managing the Unit, he is in charge of defining and implementing the strategies and policies on network and information security, critical information infrastructure protection and, last but not least, electronic signature. He also coordinates the team responsible for the European network and Information Agency (ENISA).
Until 2005, he worked in the Information Society Technologies Thematic Priority of FP6 with management responsibilities for the research activities on security and dependability technologies and applications. In the 5th Framework Programme, he has been in charge of shaping up and co-ordinating at the Programme level the initiative on Dependability in Information Society (called DEPPY), including the preparation and management of related Cross Programme Actions calls for proposals and evaluation. This initiative focused on large scale information infrastructures and on extensively deployed networked embedded systems. Before joining the European Commission he has worked in industry for nearly eight years as a project manager of a number of international R&D projects on decision support systems for environmental, civil and industrial emergency and risk management. He graduated with Laude in Nuclear Engineering at Politecnico di Milano and carried out PhD studies on fuzzy sets and artificial intelligence at Queen Mary and Westfield College, University of London.
|
10:30 - 10:35
Spotlight: Real-time and Embedded Systems Forum
10:35 - 11:00
BREAK
11:00 - 11:40
Trusted Technology Forum - Build with Integrity, Buy with Confidence
Andras Szakal, Director Software Architecture, IBM US Federal Software Group
As cyber attacks increase in sophistication, stealth and severity, governments and larger enterprises have also begun to take a more comprehensive approach to risk management and product assurance. In addition to enhancing information security by improving security practices across the enterprise, governments and enterprises have begun inquiring about the practices information technology suppliers use to protect the integrity of their products and services as they move through the global supply chain.
Governments and commercial consumers have expressed specific interest in understanding how suppliers manage the risks inherent in globalized product development and manufacturing including:
· What potential integrity risk may be inherited from supply chains, both for software and hardware, and how the original equipment manufacturer (OEM) assesses and manages these risks?;
· Practices that can mitigate potential risks of significant supply chain attacks;
· Risks to confidentiality, integrity, and availability to a customers environment or critical infrastructure as a result of procurement by customers of counterfeit components and products;
· What software or technology development or engineering practices can help reduce product integrity risks?; How is product assurance and risk managed through the adoption of industry best practices and recognized international testing standards?
To address these challenges The Open Group in conjunction with government and enterprise partners is establishing the Trusted Technology Forum (TTF) to promote an industry-wide effort where suppliers identify the current best practices and processes that contribute to the secure and trusted development, manufacture, delivery, and ongoing operation of commercial products. The TTF will also address global cybersecurity policy issues and best practices for standards integration across the assurance landscape. This presentation will describe a potential framework for solving these issues and solicit participate in this new forum for interested members.
Andras Szakal, Director Software Architecture, IBM US Federal Software Group
Andras Szakal is an IBM Distinguished Engineer and Chief Architect of IBM's Federal Software business unit. He is also an IBM Senior Certified Software IT Architect and an IBM Certified SOA Solution Designer. His responsibilities include developing e-Government software architectures using IBM middleware and leading the IBM federal government software IT architect team. Mr. Szakal holds undergraduate degrees in Biology and Computer Science and a Masters Degree in Computer Science from James Madison University.
Mr. Szakal has been a driving force behind IBM's adoption of government IT standards and is a member of the IBM Software Group Strategy Team. The team he leads has been responsible for helping the federal government move e-Government into the On-Demand era through the application of SOA. His team has been directly involved with multiple, high-profile, successful government software and services engagements based on open standards and open source.
Mr. Szakal represents IBM SWG on the Board of Directors of The Open Group. He currently holds the Chair of the IT Architect Profession Certification Standard (ITAC) within the Open Group.
11:40 - 11:45
Spotlight: UDEF/SI
11:45 - 12:20
CyberSecurity: What Seven National Governments Are Doing
Nicolas Mansfield, Information Security Consultant, Organisation for Economic Co-Operation & Development (OECD)
The OECD Recommendations were the result of a study of cybersecurity in 7 major OECD Member States (Aus, US, UK, Canada, NL, Japan, S. Korea). The presentation will outline the results of the study emphasising the differences in approaches whilst leading to the consensus arrived at in the Recommendations adopted in Seoul. Key takeaways:
- The importance of culture and style of government in cybersecurity.
- How cybersecurity is managed at the national and international levels
- The first steps they should be taking to manage their cybersecurity at a high level.
Nicolas Mansfield, Information Security Consultant, Organisation for Economic Co-Operation & Development (OECD)
Independent Information Security Consultant to OECD since 2005. Author of Cybersecurity/Critical Information Infrastructure Protection Report and Recomendations endorsed at Seoul Conference. Author or contributor to other OECD Recommendations and reports including cybersecurity aspects of the accession of five new member states, authentication, RFID security, IDM and software innovation. Previously Shell 16 years as most senior subject matter expert on information security for Shell.
12:20 -12:35
Spotlight: Security Forum
12:35 - 2:00
LUNCH
Return to previous page
|
|
|