Skip to Main Content

Meetings Stub Page [mx-stub]

Building and Optimizing an Information Security Program

7:30am – 9:00am   Coffee and Registration

9:00am – 9:50am   Security Awareness Campaign - Learn From My Mistakes and More Ideas to Try
Speaker: Vince Spiars, Information Security & Operations Manager, Wesleyan University 

"Insider threat” is reported to be one of the top 3 concerns of most CISOs. Exfiltration of data isn’t always intentional. Compromised passwords, teaching about phishing, showing how to securely web surf are all ways to help keep your data safe. Come hear what has been tried, what failed, future plans and see what might work for you. 

10:00am – 10:50am   Friends Don't Let Friends Click Phish - User Behavior
11:00am – 11:50am   Friends Don't Let Friends Click Phish Operations
Speakers:
Micah Andrew Nelson, Information Security Engineer, Harvard University
Maxime Hyppolite, Information Secruity Awareness Officer, Harvard University

If 20% of your users fell for a phishing attack, 80% didn't. It is time to put those numbers on our side. Get a 360 degree look at how Harvard uses phishing reports to protect our community, and how you can do the same in yours.

12:00pm - 1:00pm   Lunch

1:00pm - 1:50pm   Building and Optimizing an Information Security Program in a Health Care and Research Environment
Speaker: Brian Coleman, Information Security Officer and Associate CIO of Information Security, University of Massachusetts Medical School

I will identify my experiences managing and growing a highly efficient and cost effective Information Security program considering  a perfect storm of Regulatory, Research, Health Care and Academic obstacles.

2:00pm - 3 :00pm   How to Win Friends and Build Security Programs in Academia
Speaker: William Reyor, CISO, Fairfield University

What’s one of the most difficult things to do in higher education? Change! We aim to foster educational programs that deliver excellence but we struggle to teach ourselves. Those that depend on the security we provide seem to not care about the risks they face by not changing.

In this session I’ll use my own experiences building and nurturing relationships to offer a prescriptive approach to establishing a foundational security program. We’ll cover a color by numbers simplistic approach to getting started, what to avoid, and how to use an unfortunate event to improve your program.

3:00pm   End    

 

 

 

 

Become a Member

Complete the application for Institution Membership to start using NERCOMP member benefits now!

Get Started

You are using an unsupported version of Internet Explorer. To ensure security, performance, and full functionality, please upgrade to an up-to-date browser.