April 2021 – Mitigating the Risk in the New Operating Paradigm

Many of us have crossed the one-year marker of operating under COVID19 restrictions. Upon awakening to remote work as a requirement for worker safety, businesses rushed to implement remote access and collaboration tools. Although the tools and capabilities are nothing new, the scale of implementation and types of users consuming them was previously unanticipated for some in leadership and security departments.

Renee Tarun, Deputy CISO & VP of Information Security at Fortinet, joins us this April to discuss how we must adapt to identifying and managing risk in this new operating paradigm:

We have seen 2020 be an unprecedented year for networking and security teams with the explosion of digital transformation and remote working. Rapid pivoting of people, process, and technology to adjust to new operational norms has ensured business continuity, but it hasn’t come without additional security challenges and risks. With more connected people, applications, and devices, organizations need to have a holistic approach to managing cyber risk. With no end in sight to this new shifting landscape and with adversaries on our heels, how do we prepare for what lies ahead?  This session will focus on ensuring we addressed the security and network risks of today and are prepared for the challenges of tomorrow.

Event Details

April 8th, 2021 @ 5:30pm


Virtual Event – sign up to RISE email list for connection info

Presenter Bio:

Renee Tarun has over 20 years’ experience in the cybersecurity and information technology fields with leadership experience in development and engineering, operations, strategy, policy, and portfolio management, across the intelligence community, law enforcement, and private industry.

As Deputy CISO at Fortinet, she focuses on enterprise security, compliance and governance, and product security. Prior to joining Fortinet, she served as Special Assistant to the Director, National Security Agency (NSA), for Cyber and Director of NSA’s Cyber Task Force, in which she advanced NSA’s execution of its cybersecurity and cyber-related missions by overseeing resources; defining and integrating mission capabilities; and shaping agency strategy and national level policy at the White House.

Renee is also a board member for the George Mason University Volgenau School of Engineering, creating synergy between the school and the professional community by addressing workforce development demands, industry expectations, and employment trends.

BSides Roanoke 2020: Call for Papers announced!

BSides Roanoke logo

Update: Due to the BSides Roanoke 2020 being postponed to July 11, the Call for Papers deadline has been extended to May 30th!

Here’s your chance to be a part of the inaugural Security BSides event in the Roanoke region! BSides Roanoke announces Call for Papers (CFP) for our event occurring May 30th at Virginia Western Community College. We encourage all interested InfoSec professionals to submit their proposals for a 45-minute talk. The conference aims to include a mix of intermediate-to-advanced technical and concept/research based discussions. Get those proposals in! If you have any questions about the CFP or BSides Roanoke 2020 give us an email at info@roanokeinfosec.com.

Event: Cyber Security Summit at Longwood University

The Longwood University College of Business and Economics and the Longwood Department of Computer Science would like to invite you to a Cyber Security Summit to be held on Tuesday, October 1st at 3:30pm in the Jarman Auditorium. Panelists Nino Milanese, Rhonda Vetere, General James Cartwright (US Marine Corps, Retired), and Dave Stafford will field questions about “Cyber Security in the Internet of Things Era“. The panel is free and open to the public. For more information, contact Ms. Debbie Dautrich.

August 2019 – Log Aggregation vs SIEM

36nl3k

Logs. We’ve talked about them in several presentations. “Maintenance, Monitoring, and Analysis of audit logs” is one of the basic CIS security controls. Security administrators have many choices in tools that handle logs, but do you really understand the purpose, function, and use case for each? What makes a “log aggregation” tool and a Security Information and Event Management (SIEM) tool different? When would you use one over the other?

Continue reading

July 2019 – Hack the Box

Image result for hack the box

One of the most asked about topics at RISE meetings is “How do I become a Red Teamer?” or “What skills do I need for penetration testing?” As the “opposition force” of IT security, Red Teams have long held the most visible and alluring jobs in the realm of InfoSec. Shrouded in mystery they are known for their advanced skills that can penetrate even the most diligent of defenses. The role requires a breadth of IT system and application knowledge but also depth in several areas to understand fundamentals of operation and how to thwart them. This sometimes poses a barrier to entry to the new InfoSec professional uncertain about how to approach the myriad skills needed for success in the role.

Continue reading

SyCom SOC Launch Social

SyCom Technologies, a local IT solutions provider and RISE supporter, is holding a social event to celebrate the launch of their Security Operations Center. The event will be held on June 18th at Parkway Brewing in Salem, VA. Registered attendees will learn about this new cybersecurity offering and have the opportunity to network with other IT professionals over refreshments and appetizers courtesy of SyCom and their partner, Cybersafe Solutions. For more information, email SyCom at events@sycomtech.com.

Local Events updated!

We’ve updated the Local Events page with some interesting InfoSec events and conferences within driving distance of the RISE area. These are great opportunities for broadening your knowledge, honing your professional skills, and networking with some other great InfoSec community members!

If you attend one of these events, we would love to hear from you! Send us an email with your thoughts and experiences on the event. Consider creating a presentation for an upcoming RISE meeting highlighting the event or diving into one of the skills you learned. If presentations aren’t your game, write up an article and submit to us for posting on our blog! Whatever you do, get out there – keep learning and share with others that you found them through RISE so we can spread the word to other potential area memberss!