Conference Program - Day 1
May 25, 2011

7:30 a.m. - 8 a.m.

Registration and Breakfast

Before May 18
Members - $275
Non-Members - $300

After May 18
Members - $300
Non-Members - $325

Conference price includes both days and admission to exposition

8 a.m. - 8:15 a.m.

Welcome and Opening Address by Hosting Organizations
ASIS, SPIE, HTCIA and CANASA

8:15 a.m. - 9:45 a.m.

Risk-Based Security - Data Collection, Analysis and Application

The collection and analysis of security incident information is a critical tool for any security program. If the process is not planned, managed and measured the outcome will be less than fruitful and will not meet security's needs and perhaps more importantly the expectations of the C-Suite. In an environment where we are "drowning" in data, what you collect and how you analyze it can clarify or mystify the risk-based decision making process. Does your analysis and reporting process support and even enhance the decision making process? 

The data collected as part of the security program now more than ever needs to contribute to both security and business decisions. In this manner the security function becomes a "business enabler" and a direct contributor to the success of the entity it serves.

Speaker: Phillip Banks P. Eng. CPP

Break

10:15 a.m. - 11:45 a.m.

Smart Phones and Information Assurance

Cell Phones and hand held devices are widely used in the private and corporate sector.  The concern arises that these devices, specifically smart phones, can be employed for industrial espionage, sensitive data exfiltration, and IP theft.

Shafik’s presentation will emphasize basic best practices in the use of portable devices, and provide the latest in the world of cell phone forensics.

Speaker: Senior Constable Shafik Punja BSc, A+, CISSP, Network+

10:45 a.m. - 11 a.m.

Break

11:45 a.m. - 1 p.m.

Networking Luncheon

1 p.m. - 2:30 p.m.

Building an Enterprise Forensics Response Service

Fraud, Privacy and IT Security incidents are just some of the numerous issues impacting enterprises today that can be mitigated or avoided entirely with the creation of an Enterprise Forensics Response Service.  By enhancing existing monitoring and incident response capabilities, business owners can truly gain the ability to actively enforce corporate policy as well as protect and preserve digital assets through the use of forensic methods.  Michael will walk the audience through the key drivers and benefits of an enterprise forensic service, review common service mechanisms and components and discuss the considerations for implementation in your environment.   

Speaker: Michael Legary

2:30 p.m. - 2:45 p.m

Break

2:45 p.m. - 4 p.m.

Open Source Internet Investigations

While general Internet research may appear simple, the World Wide Web can be deceptively difficult to navigate when searching for timely, accurate and actionable intelligence.

Most users are unaware of how complex the Internet is, how much information they are missing and the risks they may be taking that could compromise the safety, integrity and privacy of themselves or their organization.

Aimed at security, investigation and research Managers,  this dynamic presentation will increase your awareness of the tools and techniques you need to enable you to find better information online, in less time, with less risk, at less cost™.

Speaker: Julie Clegg

4 p.m. - 4:15 p.m.

Closing Remarks

7:30 a.m. - 8:30 a.m.

Breakfast

8:30 a.m. - 8:40 a.m.

Opening Address

8:40 a.m. - 10 a.m.

Understanding Violence and Violence Assessments

The session will cover reason why people become violent and the tools used to assess their level of violence.

Speaker: Geoff Frisby, CPP, PCI

10 a.m. - 10:30 a.m.

Break

10:30 a.m. - 12 p.m.

Privacy and the Impact on Security

Protection of individual privacy rights and security of information often go hand in hand, but sometimes are perceived as butting heads.  This presentation will provide information about navigating the interaction between privacy and security through providing a brief ‘back to basics’ overview of privacy legislation and some specific case examples.  When is it reasonable for an organization to conduct surveillance?  What is reasonable for an investigation? 

As of May 1, 2010, organizations subject to the Personal Information Protection Act have a legal duty to report security breaches to the Alberta Privacy Commissioner where there is a real risk of significant harm.  What is a “real risk of significant harm”?  When should a security breach be reported and when is there a duty to notify affected individuals?

Speaker: Jillian Vincent, B.Sc. LLB

12 p.m. - 1 p.m.

Networking Luncheon

1 p.m. - 2:30 p.m.

Common Sense Security - Getting Back to Basics 

When did it get so hard to keep your people, property and information secure?  Did we lose sight of security principles we learned in the past, but forgot in the rush of technology and continuous connectivity?  What happened to the lessons we learned as kids?

It's time to bring back some common sense security tips!  Follow Tim in his presentation as he talks about basic security concepts we all knew growing up, but may have forgot along the way...

Speaker: Tim McCreight, CISSP, CPP, CISA

2:30 p.m. - 3 p.m.

Closing Remarks, Evaluations and Q&A

Reception on Trade Show Floor