Tech Talk Blog : Adelaide Security Seminar Day

Wednesday, 1 March 2006 1:18 PM Rocky

Adelaide Security Seminar Day

The Security Seminar full day session in Adelaide on Tuesday was a big success. We got to answer a lot of questions, and give some people some plans for how to help secure their systems. I enjoyed the day and really enjoyed seeing people get psyched up about the new Torpedo threat modeling tool. :-) I visited the other Developer presentations as well. Graham was able to turn a rather dry topic about compliance into a very interesting session on what is coming that will affect the face of software security in Australia. Dave Glover's presentation was full of stuff that, well to put it plainly, scare the crap out of you. Andrew got to show people hot to put in the fixes with VS 3005 and all the new secure development features built right in.

In Brisbane I'll visit the Infrastructure track and see how they do. Tonight is the Brisbane Interchange event at the Queensland Rugby Club. It's FREE, and there will of course be beer and pizza!

I've been taking some pictures of the events and they are being displayed on various pages. I'll put them up here as well, just have to tweak a few things first. :-)

As promised, I gave the speakers a few questions to answer. I'll be posting their answers here. As Jesper was the first one to answer here are the questions and answers he gave. In his usual style he wasn't uhm, direct about the 'Who will benefit most from your presentation?' question, but you get the idea.

Aside from the boiler plate text that is posted on the eForum web site about your presentation, what would you say are the cool points in your presentation?

[JMJ] The pictures

From your talk, what are the top 3 things you want the attendees to take home with them?

[JMJ] 1. There is (almost) nothing as important as stopping systems from talking to each other when you want to secure them. 2. The infrastructure to do so is already there. 3. Security is complex, and involves risk trade-offs.

Why is your talk important, what is the industry need behind it?

[JMJ] Most of the automated attacks should not have happened and the manual attacks should be a lot harder.

Who do you think will get the most from your talk?

[JMJ] The attendees

What is your ‘pet’ security topic?

[JMJ] Used to be network security and passwords, but I am starting to lean more toward layer 8 security now.

What do you think IT Pro and Developers need to be looking to do better in the future?

[JMJ] Understanding risk management.

Filed Under: Security Events

Comments

# TechTalkBlogs ... 10 days into it

Monday, 6 March 2006 8:28 AM by frankarr - an aussie microsoft blogger

TechTalkBlogs has been alive for 10
days, give or take. I looked at
some stats last week, so let's...

New Comments to this post are disabled

About Rocky

Rocky is currently consulting for Readify as a Senior Consultant and is the technical lead for Readify's Security and Monitoring practice. He is an MCSD and a CISSP as well as pursuing a PhD based on research into securing the software development life cycle. In January of 2006 he was awarded an MVP form Microsoft in Developer Security. Since moving to Australia in 2000 he has been working with companies such as Vish Corporation, Softlaw, and the Australian Taxation Office on various projects ranging from personal portals, to expert systems and major government systems.