First Keynote Announced – Bradley Nix


We are excited to announce our first keynote for the 2018 ISACA Information Security & Risk Conference – Mr. Bradley Nix, Senior Advisor, US Department of Homeland Security – National Cybersecurity and Communications Integration Center (NCCIC) and former Acting Director of the US-CERT.

Brad Nix joined the Department of Homeland Security (DHS) in 2014 and has served as the Deputy Director and Acting Director of the United States Computer Emergency Readiness Team (USCERT). In this capacity, he ensured the day-to-day operations aligned with the strategic focus on cybersecurity within the U.S. government. He led efforts to improve the nation’s cybersecurity posture, coordinate cyber information sharing, and proactively manage cyber risks. In his current position, he is the senior advisor to NCCIC leadership, lending his expertise to the overall management and strategy of U.S. government’s 24/7 hub for cybersecurity information exchange, incident response, and coordination. Prior to joining DHS, Mr. Nix served six years as the first Chief Information Security Officer (CISO) at the U.S. Department of Agriculture (USDA) Food and Nutrition Service.

Mr. Nix has 20 years of IT and consulting experience with both small and large enterprise security programs with a focus on information security program development
and assessments; governance, architecture, technical vulnerability assessments; and
product assessments.Mr. Nix holds a master’s degree in Management Information Systems from the University of Virginia, and a bachelor’s degree in Business Administration from James Madison University. He is a Certified Information Systems Security Professional (CISSP) and an American Council for Technology / Industry Advisory Council (ACTIAC) Fellow and former ACT-IAC Executive Committee Vice President at Large.

Training Session Announcement

We are pleased to announce that Peter Morin will be delivering a full day training session entitled, “Human Security – Understanding Behavior and Building Successful Programs to Protect Your Organization.”

During this one day workshop we will be looking at understanding the security related to human behavior and how to build successful programs to protect your organization. The session will include the following:

  • An overview of key trends related to the top human risks
  • Methods used by attackers to target employees
  • Phishing – how to implement a phishing awareness program including live demos of tools and techniques and how to measure effectiveness
  • Social engineering – methods used by attackers to take advantage of human behavior, and how to test your employees
  • Insider threats – understanding the key indicators of a potential insider-based attack on your organization’s assets

Peter is a Director in KPMG’s Risk Consulting – Cyber Security practice in Canada. He is a senior cyber security professional with over 20 years of experience focusing on information security risk management, penetration testing, cyber threat incident response, malware analysis, and computer forensics. Peter has worked in senior positions for a number of organizations, including a national telecommunications and media company, Fortune 500 cloud-computing company, a recognized cyber security software company and most recently a major US defense contractor.

First Training Session Announced!

We are thrilled to announce the first course that will be offered as part of the 2018 ISACA Information Security & Risk conference training day on October 31, 2018 in Halifax. The full day course Using Wireshark for Incident Response and Threat Hunting will be presented by Michael Wylie.

This 1-day workshop will take student’s Wireshark skills to the next level with a heavy emphasis on incident response, threat hunting, and malicious network traffic analysis. We will begin with a brief introduction to Wireshark and other Network Security Monitoring (NSM) tools/concepts.  Placement, techniques, and collection of network traffic will be discussed in detail. Throughout the day, we’ll examine what different attacks look like in Wireshark.  Students will then have hands-on time in the lab to search for Indicators of Compromise (IOCs) and a potential breach to the network.

Our instructor, Michael Wylie, MBA, CISSP is the co-founder of Corporate Blue, an Information Systems and Security consulting firm located in Los Angeles that serves clients in their pursuit of mitigating cyber threats. In his role, Michael is responsible for delivering information assurance by means of vulnerability assessments, risk management, and training. Michael has developed and taught numerous courses for the Department of Defense, Moorpark College, and clients around the country. Michael holds credentials from certifying bodies such as ISC2, Cisco, VMware, Dell, EC-Council, CompTIA, Splunk, and more.

Students can sign up to take the course on its own or as part of a conference package. Seats will be limited, so sign up today!