BSides Roanoke Oct 2nd, 2021

BSides Roanoke logo

An update on the planning for BSides Roanoke:

The BSides Roanoke Planning Committee wants to reiterate our commitment to hosting a successful event for attendees and sponsors. We still desire to hold an in-person conference for the first BSides in Roanoke. Ongoing uncertainty with COVID-19 and public gatherings continues to make planning difficult. However with the start of vaccination programs we hope change is on the horizon.

We plan to hold an in-person BSides Roanoke event on October 2nd, 2021 at Virginia Western. This date avoids similar events in the region and should provide time for official guidance based on results from vaccination programs. As we move forward we will notify all stakeholders (sponsors, speakers, ticket holders) of the new date and continue preparation activities.

Producing a successful and safe event is at the forefront of our minds. We appreciate your support for this event, and thank you for continuing to work with us through obstacles presented by COVID-19. As planning progresses we will provide updates and work with you on sponsor-related conference activities. If you have any questions do not hesitate to reach out to us.

Thank you,
Your BSidesROA Planning Team

Upcoming Meeting Topics

RISE meetings are held the 2nd Thursday of each month starting at 5:30pm. Meetings are free to attend and open to the public. Note: Due to COVID-19 restrictions, all meetings are currently ‘virtual’. Meeting details are being sent to subscribers of the RISE e-mail list.

Date Topic Speaker
June Automation via Ansible Ed Summers
July FBI – Current State of Affairs Agent Michael Mehnert
Aug TBD – check back soon!

July 2021 – FBI on Current State of Affairs

We’re starting summer off with a great meeting that you’ll want to attend. Special Agent Michael Mehnert of the FBI’s Cyber Intrusions division will join us to discuss the ‘Current State of Affairs’. This is a fantastic opportunity to hear from someone who works with and understands contemporary events of cyber crime.

This will be an in-person only event – be sure to mark your calendar and plan to join us on July 8th! As an additional incentive – we will have pizza at this meeting sponsored by Fortinet!

What: FBI Cyber Intrustions “Current State of Affairs”

When:  Thursday, 08 July, 5:30pm

Where:  ECPI Univerisity – 5234 Airport Rd NW Suite 200, Roanoke, Virginia, 24012

June 2021 – Automation via Ansible

We are very excited to let everyone know about our next live and in person RISE meeting on June 10th at 5:30pm at ECPI in Roanoke, VA.  If you can’t make it in person or aren’t quite ready to venture out, that’s fine we will continue to stream the events via our Zoom meeting events.   Our next speaker will be our own Ed Summers.  Ed will be discussing automation via Ansible.  See below…

Automation provides many benefits from “force multiplication” to improved configuration consistency. A modern IT professional should develop an understanding of automation capabilities and concepts congruent to their role in the ecosystem.

This month we’ll explore one such automation tool: Ansible. Initially released in 2012 and acquired by Red Hat in 2015, it is an open-source application for “provisioning, configuration management, application deployment, and intra-service orchestration”. It’s agent-less operation and ability to interface with a wide variety of manageable resources (operating systems, network appliances, container systems, cloud providers) helped it become a common name in automation circles.

The capabilities of Ansible are huge and we’re just going to take a peek. Join us for a blitz introduction to Ansible, some of it’s basic capabilities, and demonstrations of some potential use cases in the context of security. We hope to open your eyes to the possibilities and benefits of automation in your environment and encourage you to explore further how automation can help your team do more, do faster, and do consistently.

Presenter Bio:

Ed Summers somehow lost his way as a Network Engineer and ended up architecting a secure cloud environment for data center migrations. Title-less between Network Engineer and Cloud Engineer, he finds ways to deliver data by understanding both the infrastructure and applications to distill true requirements from stated desires. His current role has forced him to quickly learn cloud environments and adapt traditional on-premises requirements and processes to the new realm. He continues to serve as a senior Network Engineer for an on-premises environment – digging through pcaps, mediating latency disputes, and commenting occasional iRules for one-off application requirements. Ed has done some pretty cool things in his near 20-year career but is never satisfied on his quest to learn more. In his spare time he enjoys learning Python, shooting, ice hockey, and raising his daughter to be better than him. He holds a B.S. in Electrical Engineering from Virginia Tech.

Meeting Location:

ECPI

5234 Airport Rd NW #200

Roanoke, VA 24012

Virtual Meeting Info:

Zoom, more info coming

No Meeting in May – Returning in June!

We will not hold a meeting for May – but do not fret! We already have June and July meetings in the works as well as some promising news for the return of in-person events!

RISE is closely watching reports that Virginia may remove gathering restrictions in June pending favorable metrics on vaccinations and infection rates. Keep an eye here on the RISE blog as well as RISE emails as the news develops.

We look forward to seeing you in June and thank you for your continued support!

Meeting Notes – March 2021

We’d like to thank our March presenter, Rob Perry (CISO of Carilion Clinic), and all of you who were able to join us for our virtual event! Check out the RISE YouTube channel for this session’s recording. Watch it again or share it with your friends and colleagues!

April 2021 – Mitigating the Risk in the New Operating Paradigm

Many of us have crossed the one-year marker of operating under COVID19 restrictions. Upon awakening to remote work as a requirement for worker safety, businesses rushed to implement remote access and collaboration tools. Although the tools and capabilities are nothing new, the scale of implementation and types of users consuming them was previously unanticipated for some in leadership and security departments.

Renee Tarun, Deputy CISO & VP of Information Security at Fortinet, joins us this April to discuss how we must adapt to identifying and managing risk in this new operating paradigm:

We have seen 2020 be an unprecedented year for networking and security teams with the explosion of digital transformation and remote working. Rapid pivoting of people, process, and technology to adjust to new operational norms has ensured business continuity, but it hasn’t come without additional security challenges and risks. With more connected people, applications, and devices, organizations need to have a holistic approach to managing cyber risk. With no end in sight to this new shifting landscape and with adversaries on our heels, how do we prepare for what lies ahead?  This session will focus on ensuring we addressed the security and network risks of today and are prepared for the challenges of tomorrow.

Event Details

April 8th, 2021 @ 5:30pm


Virtual Event – sign up to RISE email list for connection info

Presenter Bio:

Renee Tarun has over 20 years’ experience in the cybersecurity and information technology fields with leadership experience in development and engineering, operations, strategy, policy, and portfolio management, across the intelligence community, law enforcement, and private industry.

As Deputy CISO at Fortinet, she focuses on enterprise security, compliance and governance, and product security. Prior to joining Fortinet, she served as Special Assistant to the Director, National Security Agency (NSA), for Cyber and Director of NSA’s Cyber Task Force, in which she advanced NSA’s execution of its cybersecurity and cyber-related missions by overseeing resources; defining and integrating mission capabilities; and shaping agency strategy and national level policy at the White House.

Renee is also a board member for the George Mason University Volgenau School of Engineering, creating synergy between the school and the professional community by addressing workforce development demands, industry expectations, and employment trends.

Va Cyber Range presents: VACyberEduCon21

Save the date! On July 20-22, 2021, the Virginia Cyber Range presents the 2021 Cybersecurity Education Conference. This will be a virtual conference and the Call for Proposals is open for workshops and presentations fitting this year’s theme: “Cracking the Code to Cybersecurity Education”. Follow the link above fore more information and stay tuned to the Virginia Cyber Range website or Twitter (@VaCyberRange) for more information.

March 2021 – Quantum Computing – Fact vs Fiction

For March 2021 Rob Perry (CISO from Carilion Clinic) returns with an insightful look at quantum computing and how it could potentially change the IT Security landscape.  Never wanting to shy away from the more technical topics Rob’s previous talk regarding BlockChain challenged the most well held beliefs regarding its usage and forced us to look at Block Chain differently.  Now we have an opportunity to see where he will take us in this talk.  Don’t miss a great opportunity to hear from a local industry leader as we cover “Quantum Computing – Fact vs Fiction”.  This meeting will be virtual, and we will send connection details prior to the event. Hope to see you there!

Event Details

March 11th, 2021 @ 5:30pm,


Virtual Event – sign up to RISE email list for connection info

Subject of discussion:

Talk of recent advances in quantum computing has security professionals wondering if encryption algorithms like RSA are now vulnerable and need to be replaced or completely discarded. This talk will provide a brief overview of quantum computing and then pragmatically evaluate whether quantum computing is rewriting the security landscape or if quantum more closely resembles the hype of AI / artificial intelligence. Drinks will be served (virtually), so have your favorite beverage handy.

Robert Perry

Presenter Bio:

Robert Perry is the Chief Information Security Officer (CISO) for Carilion Clinic, one of the largest hospitals and healthcare providers based in southwest Virginia, serving nearly one million in the Virginia community and surrounding areas.

As an expert in the technology industry, Mr. Perry’s charismatic speaking style and passion for technology and cybersecurity have made him a sought after speaker at conferences. Speaking topic range in areas including: cybersecurity systems, and tools, attack and counter attack cybersecurity response systems, authentication and access control.

Mr. Perry is a high performance IT leader with over 20 years’ experience managing cybersecurity, technology systems and networking. His business and technology experience has allowed Mr. Perry to align technology initiatives with corporate and organizational business objectives.

He holds dual masters degrees: Masters in Technology Management and a Masters of Business Administration (MBA). Mr. Perry’s licenses and certificates include: CISSP (retired), CISA, CCSP, and CCNA-Voice