University of Wisconsin–Madison
Loading Sessions

Sessions

Day Navigation

7:00 am

Check-In

July 13 @ 7:00 am - 8:00 am | Health Sciences Learning Center
Health Sciences Learning Center, 750 Highland Ave
Madison, WI 53705 United States

8:00 am

Welcome and Introduction

July 13 @ 8:00 am - 8:15 am | Room 1306
Room 1306, 750 Highland Ave
Madison, WI 53705

Bob Turner — Chief Information Security Officer at UW-Madison

8:15 am

The Cybersecurity Shift: Making Security Central To The Organization

Keynote

July 13 @ 8:15 am - 9:15 am | Room 1306
Room 1306, 750 Highland Ave
Madison, WI 53705

The Cybersecurity Shift slides (PDF)


Heather Stratford — Founder and CEO at Stronger International, Inc.

9:15 am

Break

July 13 @ 9:15 am - 9:25 am | Health Sciences Learning Center
Health Sciences Learning Center, 750 Highland Ave
Madison, WI 53705 United States

9:25 am

Win the Cyberwar with a Zero Trust Architecture

Technical Track

July 13 @ 9:25 am - 10:10 am | Room 1325
Room 1325, 750 Highland Ave
Madison, WI 53705

In this presentation, John Kindervag, creator of the revolutionary Zero Trust Model of Cybersecurity, will discuss the concept of Zero Trust and explain how it can not only transform network security but function as a business enabler. Zero Trust is revolutionizing network security architecture because it is data-centric and designed to stop data breaches.
Win the Cyberwar with a Zero Trust Architecture slides (PDF)


John Kindervag — Field CTO at Palo Alto Networks

IT and Security Diversity Panel

Strategic Track

July 13 @ 9:25 am - 10:10 am | Room 1306
Room 1306, 750 Highland Ave
Madison, WI 53705

IT And Security Diversity Panel slides (PDF)


Derrian Jones — Assistant Director, DoIT Application Infrastructure and Services at ‎UW-Madison

Tomomi Imamura — Team Lead, Security Testing and Cyber Defense at UW-Madison

Tanya Choice Henry — Cybersecurity, IT Audit, and GRC Consultant at Wisconsin Department of Administration

Heather Stratford — Founder and CEO at Stronger International, Inc.

Eric Groce — Security Threat Specialist at American Family Insurance

10:20 am

Seeing Red: Improving Blue Teams Through Red Teaming

Technical Track

July 13 @ 10:20 am - 11:05 am | Room 1325
Room 1325, 750 Highland Ave
Madison, WI 53705

Red teaming gives your organization an opportunity to practice how you want to play in the event you're faced with a real security incident. This talk will discuss why organizations should consider red teaming, how red teaming can improve blue teams, practical considerations and lessons learned from the presenter's own experiences.
Seeing Red: Improving Blue Teams Through Red Teaming slides (PDF)


Dave Hull — Product Engineer at Tanium

I Don’t Worry About my (Restricted) Data Security

Strategic Track

July 13 @ 10:20 am - 11:05 am | Room 1306
Room 1306, 750 Highland Ave
Madison, WI 53705

Restricted data is everywhere. Researchers and faculty want to get their work done and not be bothered with becoming IT security experts. What solutions are available today, and how does the campus Risk Management Framework play into all of this? In this talk, you'll learn how we approached this problem at the Social Science Computing Cooperative (SSCC), what problems we encountered, and the specific steps we took to address these concerns.
I Don’t Worry About my (Restricted) Data Security slides (PDF)


Ryan Horrisberger — Certified Information Security Professional at UW-Madison

11:05 am

Break

July 13 @ 11:05 am - 11:15 am | Health Sciences Learning Center
Health Sciences Learning Center, 750 Highland Ave
Madison, WI 53705 United States

11:15 am

Securing Institutional Data in a Mobile World

Technical Track

July 13 @ 11:15 am - 12:00 pm | Room 1325
Room 1325, 750 Highland Ave
Madison, WI 53705

Your sensitive and protected institutional data is stored and accessed across a diverse array of systems, cloud services, and personal devices, mobile platforms provide a window into that data from anywhere in the world. This data includes not just information protected by statutory requirements, but other internal and research data that is also a valuable target for attackers. How are you controlling and monitoring those devices?
Securing Institutional Data in a Mobile World slides (PDF)


Dave Schroeder — Technology Strategist at UW-Madison

Attacker Cryptyonite, How to Threat Model Your Way to a Good Night’s Sleep

Strategic Track

July 13 @ 11:15 am - 12:00 pm | Room 1306
Room 1306, 750 Highland Ave
Madison, WI 53705

The purpose of this session will be to provide a brief overview of what Threat Modeling is, why it is important to your organization’s security posture, and why it is the way of the future. Far to long organizations have been dependent on regulatory requirements, vulnerability management, and the latest data breach to determine information security risk.
Attacker Cryptyonite, How to Threat Model Your Way to a Good Night’s Sleep slides (PDF)


Eric Groce — Security Threat Specialist at American Family Insurance

12:00 pm

Lunch

July 13 @ 12:00 pm - 1:30 pm | Health Sciences Learning Center
Health Sciences Learning Center, 750 Highland Ave
Madison, WI 53705 United States

1:15 pm

Securely Deploying IPv6

Technical Track

July 13 @ 1:15 pm - 2:00 pm | Room 1325
Room 1325, 750 Highland Ave
Madison, WI 53705

With the planetary stock of IPv4 addresses exhausted and US mobile IP traffic exceeding 85% IPv6, you might decide the time has come for you to finally deploy IPv6. We'll lay out a roadmap for you to do so in a sane and secure manner. Along the way, we'll emphasize where your knowledge of IPv4 carries over, where IPv6 will surprise you, dispel some myths, banish transition technology confusion, and help you minimize the pain points.
Securely Deploying IPv6 slides (PDF)


James Leinweber — WI State Lab of Hygiene

Secure the Institutional Email Brand

Strategic Track

July 13 @ 1:15 pm - 2:00 pm | Room 1306
Room 1306, 750 Highland Ave
Madison, WI 53705

Your institution’s brand is portrayed to the world via the email that is sent using your domains. What security controls do you have to protect the brand of your institution? We will explore UW-Madison’s email domains as a case study for this session.
Secure the Institutional Email Brand slides (PDF)


Jesse Thompson — Technical Architect at UW-Madison

2:10 pm

Gaining Privileged Access on Windows Networks

Technical Track

July 13 @ 2:10 pm - 3:05 pm | Room 1325
Room 1325, 750 Highland Ave
Madison, WI 53705

Since nearly all organizations run Microsoft Active Directory (AD), a goal of most internal penetration tests is to gain access to a Domain Administrator account. Even in an environment up to date with patches and anti-virus, testers can gain Domain Administrator access using real-world attack methods. To help explain the mistakes and weaknesses that allow for privileged access, Sikich will demonstrate tools and techniques used by attackers to gain a foothold in a Microsoft AD environment.
Gaining Privilged Access on Windows Networks slides (PDF)


Kevin Bong — Manager-Financial Institutions at Sikich

Ben Rasper — Consultant-Penetration Testing at Sikich

Using Analytics to Intuitively Fight Future Cyber Threats slides (PDF)

Strategic Track

July 13 @ 2:10 pm - 3:05 pm | Room 1306
Room 1306, 750 Highland Ave
Madison, WI 53705

Using Analytics to Intuitively Fight Future Cyber Threats slides (PDF)


Peter Romness — Cybersecurity Solutions Lead, US Public Sector at Cisco Systems

3:05 pm

Break

July 13 @ 3:05 pm - 3:15 pm | Health Sciences Learning Center
Health Sciences Learning Center, 750 Highland Ave
Madison, WI 53705 United States

3:15 pm

Here’s how you Think Global and Secure Local…

Keynote

July 13 @ 3:15 pm - 4:15 pm | Room 1306
Room 1306, 750 Highland Ave
Madison, WI 53705

In this keynote address, UW-Madison’s Chief Information Security Officer will show how the knowledge gained during Lockdown 2017 can be used to translate the 1960’s mantra to “Think Global, Act Local” into tangible activity that will improve cybersecurity at your local network and meet global the need for improved security.
Closing Keynote slides (PDF)


Bob Turner — Chief Information Security Officer at UW-Madison

4:15 pm

Thank you and Conclusion

July 13 @ 4:15 pm - 4:30 pm | Room 1306
Room 1306, 750 Highland Ave
Madison, WI 53705

Stefan Wahe — Associate Chief Information Security Officer, UW‑Madison

+ Export Events