2nd Security Practitioners Conference
Monday April 27, London, UK

Objective of Meeting

This second Security Practitioners Conference featured plenary presentations, addressing a range of key security issues,  together with two focus sessions: Web 2.0 Security and Identity in the Cloud.

Summary

The full-day event gathered security subject matter experts to discuss a range of security issues primarily focused around the future of identity management and security.

The presentations referenced below are freely available only to members of The Open Group and conference attendees.

Plenary

• Introduction & Welcome
  Allen Brown, President & CEO, The Open Group and
  Jim Hietala, VP Security, The Open Group
• The Future of Identity in the Clouds – A Pro-Sumer's Perspective
  Adrian Seccombe, CISO & Senior Enterprise Information Architect, Eli Lilly
• Spotlight: Security Forum
  Steve Whitlock, Chief Security Architect, The Boeing Company
• Order through KAoS: New Trends in Policy-Based Privilege and Responsibility Management
  Jeffrey M. Bradshaw, Senior Research Scientist, Florida Institute for Human and Machine Cognition (IHMC)
• Spotlight: SOA Work Group
  Heather Kreger, Lead Architect for Web Services and Management, IBM Emerging Technologies
• Case Study: Information Security Management System and ISO 27001 Certification
  Neil Hare-Brown, CEO of QCC Information Security Ltd.
• Spotlight: RT&ES Forum
  Joe Bergmann, Director of the Real-Time & Embedded Systems Forum

Focus Session: Web 2.0 Security

• Security for Web 2.0
  Mark O’Neill, CTO, Vordel
• Clouds Forecast – Doing Business beyond the Perimeter
  Andrew Yeomans, Jericho Forum Board of Managers
• Cloud Security Alliance (CSA): Security Guidance for Critical Areas of Focus in Cloud Computing
  Jim Reavis and Nils Puhlmann

Focus Session: Identity in the Cloud

• Identity in the Fog
  Stuart Boardman, Director of Consulting, CGI
• User Requirements: The Future of Identity in the Cloud – Requirements, Risks, and Opportunities
  Marco Casassa Mont, Senior Researcher, Hewlett-Packard Labs, UK
• Panel Q&A

Outputs

The presentations and panel sessions were delivered by security professional practitioners from both vendor and customer organizations, and provided experience-based insights into the approaches and methods that are currently in use and under development in the information security industry.

The presentations given at the meeting, and the associated discussions and panel sessions, all provided participants with a wealth of experience-based insight into current best practice in security, from leading experts and practitioners around the world.

Next Steps

The next Security Practitioners' Conference will be held in Toronto, Canada, July 20-24, 2009, where the theme will be "Evolving Security Architectures and Trends in Managing Risk and Compliance".

If you are interested in presenting at a future conference, then please submit a Presentation Proposal.

Links

More about The Open Group Security Forum