2016 RETR3AT Conference
PowerPoint Slides from 2016 Plenary Sessions
- Developing the Cybersecurity Pipeline Panel – Lynne Clark, NSA
- Defending Your Network – Ed Skoudis, Counter Hack
- The Evolving Cyber Landscape – Robert Potter, Symantec
- Emerging Vulnerabilities in the Cyber Field – Chris Cleary, Tenable Network Security
7:45 a.m. – 8:15 a.m: Breakfast, Networking, Registration
- 8:15-8:30 a.m. Welcome
Dr. Paul J. Maurer, Montreat College, President
- 8:30-9 a.m. Keynote Address: The Evolving Cyber-landscape
Robert Potter, Symantec, Vice President, Americas
Robert Potter will speak to the latest issues surrounding cyber-crime in western North Carolina and what is being done in our state, nation, and world to combat daily reports of cyber attacks. He will discuss the critical need for private and public enterprise organizations to improve their security and information management requirements.
- 9-9:30 a.m. Plenary Address: Emerging Vulnerabilities in the Cyber-field
Chris Cleary, Tenable Network Security, Director Business Development
Learn about the emerging cyber vulnerabilities that increase the risk of cyber-related crime. Chris Cleary will look at cyber attacks through the lens of center-of-mass analysis. He will discuss how to be more aware of possible vulnerabilities in your organization through identifying the critical requirements that make systems work and recognizing areas of liability.
- 9:30-10:15 a.m. Plenary Address: Threading the Needle
Mike Muscatell, Snyders-Lance Inc., Information Security Manager
What takes place before a cyber-attack is executed? Mike Muscatell will provide a window into the how cyber bad-guys plan and develop cyber-attacks before executing them by providing live demonstrations of online data and resources on the dark-web.
- 10:15-10:40 a.m. Networking Break
- 10:15-10:50 a.m. Tour of FBI Mobile Forensics Lab
Experience a first-hand glimpse of a day-in-the-life of a FBI special agent through a tour of the FBI’s Mobile Forensic Lab. This one-stop, full-service forensics laboratory and training center is devoted entirely to the examination of digital evidence in support of criminal investigations.
- 10:15-10:40 a.m. Tour of Montreat College’s Cybersecurity Operations Training Lab
Take a tour through Montreat College’s newly renovated Cybersecurity Operations Teaching Lab. This laboratory provides Cybersecurity Program students with the opportunity to emulate corporate scenarios through the simulation of cyber threats and defense tactics. Students experience a variety of training sessions leading to vendor-specific certifications focusing on computer networking security.
- 10:40-11:30 a.m. Breakout Session: Analyzing NextGen Security
Dr. Jared DeMott, CTO – Binary Defense Systems, and Founder – VDA Labs
Is DevOps better or worse than the waterfall software development methodology for security? Where/how should software security really take place? And how do NextGen endpoint security tools differ from prior gen? Are they really better? Dr. DeMott enlightens us on a host of NextGen topics, with a conversational style talk.
- 10:40-11:30 a.m. Breakout Session: A Vision for your Cybersecurity Program
Casey Marquette, CVS Health, Senior Director, Information Security
Casey Marquette will discuss how to analyze your current security operations, cybersecurity education, training, and workforce development. Learn to create processes for gaining support and launching new cybersecurity initiatives, while also managing growing workloads, and helping your staff gain the skills they’ll need for the future.
- 10:40-11:30 a.m. Symantec Table Top Exercise
During your workday, you receive a call from CNN asking for comment about a reported major breach of your company’s information systems…what do you do now? Participate in a mock Table Top Exercise (TTX) with Symantec Incident Response (IR) Investigators modeling an incident breach scenario. Learn the value of conducting a periodic TTX as part of a mature Incident Response program in order to identify areas of improvement in your current IR posture and sharpen your cyber skills across intelligence, monitoring and forensic practices.
- 11:30 a.m.-1:00 p.m. Networking Lunch
- 12:25-12:50 p.m. Plenary Address
Senator Richard Burr, Chairman of the U.S. Senate Select Committee on Intelligence
- 1:10-2 p.m. Plenary Address: Defending your Network
Ed Skoudis, Counter Hack, Founder
Ed Skoudis helps over 3,000 information security professionals each year improve their skills and abilities to defend their networks. Skoudis will explain how to better protect your organization from hacker attacks and will provide best practices for security assessments, incident response, and malware analysis.
- 2:10-3 p.m. Panel: Developing The Cybersecurity Pipeline
Facilitator: Barbara Lynne Clark, Chief of the National Information Assurance Education and Training Program of the NSA. Dr. Deanne Cranford-Wesley, Forsyth Technical Community College, Department Chair and Cyber Security Center in the Davis ITEC, Dr. Jeff Teo, Montreat College, Professor of Cybersecurity Kelli Burgin, Montreat College, Assistant Professor of Cybersecurity
Dr. Deanne Cranford-Wesley, Dr. Jeff Teo, and Kelli Burgin will discuss the cybersecurity skills supply chain and the need to diversify the pipeline of talent and explore resources to increase the hands-on activities in science, technology, engineering, and mathematics (STEM) instruction, starting in the K-12 system. The value of developing partnerships between educational institutions (including K-12 schools and higher education) to fill the demand for cyber professionals is at an all-time high. Learn how to be a part of the solution.
- 2:10-3 p.m. Panel: Building a Cyber Team
Facilitator: Keith Gordon, Bank of America, Senior Vice President – Global Information Security Chris Conley, The Biltmore Company, IT Security Manager Jim Kelly, Mission Health System, Information Security Officer Robert Potter, Symantec, Vice President, Americas
- 2:10-3 p.m. Symantec Table Top Exercise
Developing a cyber team or outsourcing your organizations cybersecurity – what is the best approach? Learn from Keith Gordon representing the financial sector – how he leads a robust team of cyber professionals and explains how Bank of America arrived at a cyber staff of more than 1,200 worldwide. Chris Conley in the hospitality sector manages cybersecurity for retail and hospitality – how does he preserve Biltmore’s cybersecurity with limited staffing and outsourcing? Listen to Jim Kelly from in the health care sector – how he assembled a team of twelve cyber professionals in two years. Finally, hear from Robert Potter in the cybersecurity sector – how he has become a global leader in developing and delivering the strategy, services, and solutions to support customers around the world.
- 3:10-3:30 p.m. Networking Break
- 3:10-3:30 p.m. Tour of FBI Mobile Forensics Lab
- 3:10-3:30 p.m. Tour of College’s Cybersecurity Operations Teaching Lab
- 3:40-4:40 p.m. Panel: Cybersecurity Leadership Decisions
Facilitator: Dr. Paul J. Maurer, Montreat College, President Chris Cleary, Tenable Network Security, Director Business Development Brian Cyprian, Charlotte Field Office of the FBI, Supervisory Special Agent Ed Skoudis, Counter Hack, Founder Dr. Paul J. Maurer moderates a panel including Chris Cleary, Brian Cyprian, and Ed Skoudis. The panel will draw from the topics covered during the conference and expand on the urgency of cybersecurity leadership decisions related to secure networks: the anticipated rapid growth in the “Internet of Things” (IoT); balancing the 1s and 0s with leadership competency; the place of ethics when the pace requires quick decisions; and how the function of a security operations center will change in coming years.
- 4:40-4:50 p.m. Closing Remarks
Dr. Paul J. Maurer, Montreat College, President
Thank you to our 2016 event sponsors
Chairman of the Senate Select Committee on Intelligence
First elected to the U.S. House of Representatives in 1994, Richard Burr served five terms in the House and is currently serving North Carolina in his second term in the U.S. Senate. He is a vocal advocate for men and women in the military and their families, and for the growing population of veterans across North Carolina.
In the Senate, Burr serves as chairman of the U.S. Senate Select Committee on Intelligence where he puts the security of the American people first, while providing rigorous oversight of our intelligence community. He also sits on the Health, Education, Labor, and Pensions Committee and the Finance Committee.
The son of a minister, Burr and his family moved to Winston-Salem, North Carolina, when he was a young child. After graduating from Wake Forest University, he began his career far from the halls of Congress by spending 17 years in business with Carswell Distributing, a wholesale commercial products company. He also serves as a board member of Brenner Children’s Hospital and on the West Point Board of Visitors. Burr and his wife, Brooke, have two sons.
Founder of Counter Hack
Ed Skoudis is a leading professional “ethical hacker.” He is a teaching fellow at the SANS Institute, a private U.S. company that specializes in information security and Cybersecurity training. He is also the CEO of CounterHack and appears as a Cybersecurity expert on the PBS series NOVA. Skoudis got started in computer security while in college, and after graduating found work at Bellcore, a division of the Bell System. Following a stint in operator services, he jumped into computer security with gusto, helping respond to attacks against phone company networks. Skoudis then moved from Bellcore to SAIC, where he branched out to work with large banks, major high-tech firms, and other Fortune 500 companies. Later, he started performing incident response and penetration testing for government agencies and military customers. Skoudis received his master’s in Information Networking from Carnegie-Mellon in 2002 and his bachelor’s in Electrical Engineering from the University of Michigan in 1991.
Symantec, Vice President, Americas
Robert Potter is the leader of the Americas Sales Organization at Symantec. Potter is responsible for developing and delivering the strategy, services, and solutions that support Symantec’s customer needs across the geography. With nearly 25 years of industry experience, Potter has a solid track record of partnering with private and public enterprise organizations to improve their security and information management requirements. Prior to joining Symantec in 2014, Potter’s information security and technology experience included senior leadership roles at EMC (RSA), IBM, Attachment (WRQ), Lancope (Acquired by CISCO), co-founder of STS, and as a senior executive with multiple start-up companies. In addition to his professional career, Potter has proudly served as a board member of Operation Renewed Hope Foundation, a non-profit organization focused on helping our homeless veterans. Potter currently serves as an advisor for BroadBranch Advisors and Boundless. He holds a Bachelor of Science degree in Computer Science from Quinnipiac University in Hamden, Connecticut.
Barbara Lynne Clark
Chief of the National Information Assurance Education and Training Program, NSA
Barbara Lynne Clark is chief of the National Information Assurance Education and Training Program, which includes administration of the National Security Agency/Department of Homeland Security Centers of Academic Excellence in Cyber Defense Program. Prior to this assignment, Clark was deputy chief of Workforce Resources, Education, and Development for the NSA’s Information Assurance Directorate. From 1993 to 2012, Clark was assigned to the Interagency Operational Security (OPSEC) Support Staff (IOSS), where she had responsibility for the OPSEC training and program development consultation to all federal departments and agencies with a national security mission. Prior to her tenure at the IOSS, Clark was on active duty with the U.S. Air Force; she retired at the rank of Lieutenant Colonel in 1999. Clark’s academic credentials include a master’s in Clinical Psychology from the Fielding Institute, and a B.A. in Community Development from Baldwin-Wallace College.
Dr. Deanne Crawford-Wesley
Department Chair and Cyber Security Center in the Davis ITEC, Forsyth Technical Community College
Dr. Deanne Cranford-Wesley is currently the department chair of the Cyber Security Center in the Davis ITEC Center at Forsyth Technical Community College. Wesley is a cybersecurity professional and has appeared as a subject matter expert on Fox8 and Time Warner News discussing recent advances in cyber security vulnerability. As an instructor, she teaches Information System Security, Computer Forensics, and Cisco Networking courses in the Business Information Technology Department. Recently she led the initiative on behalf of Forsyth Technical Community College to the prestigious designation of Center for Academic Excellence for Information System Security and Cyber Programs. Additionally, Wesley has assisted with the development of Cyber curriculum for K-12 STEM initiatives and works with the Cyber Curriculum Taskforce. She holds a Ph.D. in Education Leadership with a focus in Instructional Technology.
IT Security Manager, The Biltmore Company
Chris Conley has served as the information technology security manager for Biltmore since 2011. In his current role, he is responsible for protecting the organization’s computers, networks, and data against threats, such as security breaches, computer viruses, or attacks by cyber-criminals. Conley came to Biltmore in 1996, first as a support technician and then as network administrator, helping build the network infrastructure he now helps secure. Conley earned his applied science degree in Electronics Engineering from Mayland Community College in 1985 and his career now spans more than three decades in the computer industry. His professional accomplishments include Certified Information Systems Security Professional, Certified Information Systems Manager, and Certified Information Systems Auditor. He belongs to Information Systems Security Association, International Information Systems Security Certification Consortium (ISC)², and he is a member of the Charlotte, NC, chapter of Infragard.
Dr. Jared DeMott
Chief Technology Officer, Binary Defense Systems, and Founder of VDA Labs
Dr. Jared DeMott is developing Vision (an EDR product) as the CTO of Binary Defense Systems. DeMott is also the founder and regular trainer for vdalabs.com. He is a seasoned security researcher and industry leader. Past notable research relates to stopping a trendy hacker exploit technique (ROP) by placing as a finalist in Microsoft’s BlueHat prize contest, and by more recently showing how to bypass Microsoft’s EMET protection tool. DeMott is active in the security community by teaching his Hacker/Dev security course, and has co-authored the book Fuzzing for Software Security Testing and Quality Assurance. DeMott has been on three winning Defcon CTF teams, and has the black badges to prove it. He has been an invited lecturer at prestigious institutions such as the United States Military Academy, and previously worked for the National Security Agency. DeMott holds a Ph.D. from Michigan State University.
Senior Director, Information Security, CVS Health
Casey Marquette is the business unit information security officer for Omnicare, recently acquired by CVS Health, as well as the senior director of security operations for CVS Health. At Omnicare, Marquette is responsible for establishing and maintaining the enterprise vision, strategy, and program to ensure information assets are protected. Prior to joining CVS Health, Marquette worked for Johnson & Johnson (J&J) as the global process owner for Security Operations, building a Global Security Operations Center capability from the ground up. Previously, he served as the global process owner for J&J’s Critical Response Team. He began his career in the private sector at Medco in 2011. Marquette graduated from Norwich University with a Master of Science in Information Assurance. In addition, he holds the following security certifications: Certified Information Systems Security Professional, Certified in Risk and Information Systems Control, GIAC Certified Incident Handler, and GIAC Certified Forensic Analyst.
Information Security Officer, Mission Health System
Jim Kelly is the information security officer for Mission Health System in Asheville, North Carolina, where he delivers a visionary, multi-year security strategy that focuses on the delivery of quality business solutions within an acceptable level of risk and expense. Prior to joining Mission Health System in 2013, Kelly spent 13 years at Metropolitan Life Insurance (MetLife) in New York and held the roles of director of security engineering from 2000 to 2008 and director of global cybersecurity and threat management from 2008 to 2013. In his later role, Kelly led the creation of the first IT Cybersecurity office and assisted in developing MetLife’s first cybersecurity strategy. Prior to joining MetLife, he worked in a variety of IT roles in manufacturing, government, and not-for-profit companies. Kelly holds a Bachelor of Science degree in Computer Science and is a Certified Information Systems Security Professional. Kelly also serves on Montreat College’s Cybersecurity Advisory Council.
Senior Vice President for Global Information Security, Bank of America
Keith Gordon is a senior leader at Bank of America (BoA) leading the Cyber Threat Management and Client Protection team in providing client education, engagement, Bank of America Merchant Services security, and fraud prevention and education strategies. Gordon develops and manages authentication and security strategies in addition to product development. He was previously the business information security officer at BoA where he led the relationship between Global Information Security and the Lines of Business to help drive innovation while staying within the boundaries of the Enterprise Information Security Policies, Compliance and Standards. Previously, Gordon spent time at Capital One as the enterprise information security and risk management executive. He built a strategy that took its Information Security and Risk Management program forward to industry leading levels. In a prior capacity as security, fraud and identity executive at BoA, he developed and managed the authentication and security strategies and product development for Consumer Banking. He was also the technology executive in Consumer Banking Technologies focusing on Technology Risk, Compliance, Security and Fraud.
Supervisory Special Agent, Charlotte Field Office of the FBI
Supervisory Special Agent Brian Cyprian oversees the safeguarding of many of western North Carolina’s information systems by identifying, analyzing and disrupting attacks. His responsibilities include helping develop security systems for major governmental information assets, investigating online predators and intellectual property thieves, and uncovering internet fraud operations.
Information Security Manager, Snyders-Lance, Inc.
Mike Muscatell is a seasoned IT veteran with more than 30 years in the Information Technology field, 20 of those years in the Information Security field. Early on in his career he successfully developed the first IT operations center in 1995 at NationsBank/Bank of America. Muscatell developed the Information and Cybersecurity Program for Snyder’s-Lance Inc. where he is the information security manager. He is a certified ethical hacker and a certified penetration tester. He has been honored as one of the top 100 professionals in the Information Security Field by Strathmore’s Who’s Who for 2014 and also featured in the December 2014 edition of Food Engineering Magazine discussing The Cyber Threat. Muscatell belongs to a number of security organizations including Infragard and The International Cyber Threat Task Force where he is a member of the Cyber Council.
Dr. Jeff Teo
Professor of Cybersecurity, Montreat College
Dr. Jeff Teo joined Montreat College in 2004 as an assistant professor of Computer Information Systems. Teo has extensive experience in higher education as an educator and academic dean, and he possesses the IT skills and knowledge required to manage a campus IT networking infrastructure. He holds certifications in A+, Network+ Security+, CEH, and CISSP. He is involved in the Cyber Security Forum Initiative and Cyber Leader Development Framework as the chair of the Ethics Committee. He was recently reappointed as a liaison member of Trusted Computing Group. Teo is a recipient of grants awarded by leading IT companies such as Cisco, government agencies such as the National Science Foundation, and nonprofits such as Rotary International.
Assistant Professor of Cybersecurity, Montreat College
Kelli Burgin began teaching in the Cybersecurity program at Montreat College in January of 2016. Prior to coming to Montreat, she was the IT coordinator at Audubon County Memorial Hospital in Audubon, Iowa. There she wore many hats, including the roles of HIPAA security officer, help desk manager, information security officer, project manager, meaningful use coordinator, and PACS administrator and trainer. Burgin earned her B.A from the University of Northern Iowa. She received CompTIA A+ certification in 2000 and CompTIA Network+ credentials in 2002. In 2004, she completed her M.S. in Computer Information Systems at Bellevue University. In 2015, she was awarded the Certified Information System Security Professional (CISSP) from (ISC)2. Burgin will begin working toward her doctoral degree in the fall of 2016.