IEEE OC Cybersecurity Chapter;Co-sponsored by Webster Irvine
Meeting Date: May 16, 2018
Time: 6:30 PM Networking & Food; 7:00 PM Presentation
Speaker: Dustin Fritz of Troncore Security / www.troncore.com
RSVP: requested, through website
The room capacity is 50. Most of our sessions continue to fill up!
Event Details: IEEE vTools
The power of the cloud to deliver robust apps cost-effectively is undeniable, but don’t forget to do your security due diligence. Specific cloud apps can pose a higher risk to your organization than on-premise web applications behind the corporate firewall. Understanding third-party cloud app security hype is critical in uncovering limitations on identity management, account provisioning, data security, access control, account privileges, data exportability/sharing, user monitoring, and auditing. Evaluating capabilities against leading practices, testing security features, and performing user account auditing are all critical elements of a well-rounded cloud app security audit. Knowing how to conduct a comprehensive and efficient security audit of third-party cloud apps is an essential part of a risk management program.
Bio: Dustin Fritz
Infosec practitioner and one of the first U.S. military cyber defense and attack team members. His career began with U.S. military in digital network analysis and cyber defense and attack. He held positions in cyber weapons development and testing, NSA cyber operations, and CDC threat hunting.
More recently he held CISO level potions advising senior leadership teams on cybersecurity.
Dustin volunteers his time teaching graduate students, sitting on academic advisory councils, and developing educational programs and industry certifications for some of the nation’s best institutions.
Dustin’s published in the National Cybersecurity Institute Journal, IEEE Newsletter, CompTIA Certification Guide, and a contributor to NIST publication.
He holds a Master in Cybersecurity, Chief Information Security Officer Certification from Carnegie Mellon University and maintains many infosec related certifications.