11:00 AM- 11:45 AM ET
Opening Keynote Address:
Compliance Metrics: Strategies to Maximize Compliance and Security

Whether your enterprise is a Fortune 500 powerhouse or an emerging enterprise, government regulations, industry mandates and corporate policies demand that IT teams dedicate more time and energy on compliance and security. What is your enterprise on the hook to do? What are the best technology strategies to satisfy HIPAA, SOX, PCI DSS and avoid data exposure? How do you determine which security controls work-- and how well they work? Join security pioneer Dr. Peter Tippett as he explores compliance metrics in a security control framework. You will gain insight on:

• How to reduce risk in your enterprise
• Avoiding overspending on initiatives with minimal impact
• Simplifying compliance and eliminating duplicate work  
• A one-size-fits-all approach to security controls

Moderator: Pam Schancupp, Executive Editor, Virtual Tradeshows and eSeminars, Ziff Davis Enterprise
Speaker: Dr. Peter Tippett, Vice President, Verizon Business; Security Pioneer
Formerly CTO, Cybertrust and creator of the first commercial anti-virus product, which later became Symantec's Norton Anti-Virus

IT organizations in today's large global business enterprises face numerous challenges as they struggle to not only keep track of their enterprise assets, but also to keep those assets secure. In fact, recent surveys indicate that security is currently the number one concern of IT professionals.

Intel delivers a valuable new platforms in the form of Intel® Centrino® Pro and Intel® vPro™ processor technology for new levels of remote manageability, improved security and energy-efficient performance of business PCs.

Join Rich Nockles, Manager, Digital Office, Intel as he discusses such issues as:

• New built-in hardware-assisted capabilities manage and protect the PC even if the system is off or down.
• The latest IT trends in manageability of enterprise PCs, including remote, down-the-wire manageability
• How Intel technology delivers manageability, security and energy-efficient performance
• The robust ecosystem of OEMs, ISVs, SIs adding value to the platform

Moderator: Charlene O'Hanlon, Senior Editor, Virtual Tradeshows and eSeminars, Ziff Davis Enterprise
Speakers: Rich Nockles, Digital Office Manager, Intel Corporation

1:00 - 1:45 PM ET
Panel Discussion 1:
Keeping Shared Data out of the Wrong Hands: Security in the Overextended Enterprise

You like to think that your data is safe with trusted customers, vendors and partners, and maybe it is. But is it safe with their partners, their partners' partners and their staff? Do you know who is accessing your data and where it is stored? With increased reliance on service providers and global outsourcing for core business services and more people linked to your network, it's harder than ever to manage access and keep tabs on your data. Recent, high-profile data breaches highlight the risks and costs associated with exposure of sensitive data involving third parties.

Explore strategies and policies to keep your data safe when it is viewed, stored and transmitted by trusted customers and third parties. Topics covered:

• Improving vendor governance to safeguard your data
• Limiting network access to service providers, offshore developers and other partners
• Securely exchanging data hosted off-site with customers or third parties
• Securing ad-hoc access for occasional or short-term partners (i.e., for secure e-mail, file transfer)
• Overcoming barriers to compliance (i.e., data exchanges with partners that lack your level of IT support)
• Making it easy for non-IT employees to encrypt sensitive data

Moderator: Pam Schancupp, Executive Editor, Virtual Tradeshows and eSeminars, Ziff Davis Enterprise
Speaker: Trent Henry, Senior Analyst, Burton Group
Speaker: Aurobindo (Robin) Sundaram, VP of Information Security, ChoicePoint Inc.
Speaker: Tina LaCroix-Hauri, Director, Information Security, Discover Financial Services

2:00 - 3:00 PM ET
IBM Sponsor Presentation:
PCI Compliance And What It Means
Payment Card Industry Compliance (PCI) is mandatory if a business wants to continue accepting payment card transactions. IBM delivers the level of support organizations need to achieve and maintain PCI compliance. With its combined solutions, IBM helps companies can evaluate your company's overall security posture and implement proper controls and security technology to meet the PCI DSS regulations. Only IBM provides software, hardware & services to enable compliance to All 12 PCI requirements. IBM solutions can help keep you ahead of security threats while supporting your compliance and business requirements

Moderator: Steven Lang , Senior Editor, Virtual Tradeshows and eSeminars, Ziff Davis Enterprise
Speaker: Howard E. Glavin Jr., Principle Consultant and Manager of Governance Services, IBM Internet Security Systems

3:00 - 3:45 PM ET
Panel Discussion 2:
Managing Internal Threats: Removable Devices and Remote Access

How do you provide business managers with the devices and access they need while protecting corporate data and networks? This panel explores technology strategies to empower business users with the removable devices and unfettered remote access they need without imposing onerous restrictions on them.

A simple approach to improving device security would be to restrict remote access and disallow USB drives, hand-held computers, media players, external hard drives and any device or media that can burn CDs or DVDs. Unfortunately, such an approach is not practical in most enterprises. If rogue, removable and remote are dreaded terms for your IT team, explore these key issues:

• Will your database walk?- Managing security for removable devices
• Simplifying information security for multiple devices with varying attributes
• Laptops are cheap - data is priceless: Encrypting and/or disabling devices in case of loss or theft
• Pros and cons of device-level encryption vs. data-level encryption
• Providing secure remote access-- What's the best approach? (VPNs, certificates, identity access management, Smart Cards, etc.)
• Is someone poking around or is it just a trouble ticket?-- Intrusion detection, intrusion prevention and log correlation management
• Controlling the security gateway on public networks

Moderator: Pam Schancupp, Executive Editor, Virtual Tradeshows and eSeminars, Ziff Davis Enterprise
Speaker: Michael Santarcangelo II, Founder & Chief Security Catalyst, Security Catalyst
Speaker: Jonathan Squire, CISSP, Senior Information Security Technical Architect, Dow Jones and Company
Speaker: Earl Porter, Director, Information Security, Transamerica Reinsurance

5:00 - 5:45 PM ET
Panel Discussion 3
Protecting Database Data at Rest Wherever it is Stored

In the wrong hands, data at rest offers a treasure trove of personally-identifiable information, such as credit card and social security numbers. While protecting data in transit rightly has attracted much attention, encrypting database data at rest (and database data in use) can be an even bigger challenge. How do you make sure that your database data is not a sitting duck ready to be mined by criminals, or perhaps a public relations fiasco waiting to unravel? Explore tactics and tools for protecting your database data, including:

• Defining critical database data that should be protected
• Keeping data at rest protected yet accessible
• How much encryption do you need?
• Encrypting data w/ hardware/ software / native database encryption / an appliance device
• Key management strategies (i.e., for companies that use dozens of encryption products)
• What's in your data protection tool kit? (content monitoring, data leak prevention, etc.)

Moderator: Charlene O'Hanlon, Senior Editor, Virtual Tradeshows and eSeminars, Ziff Davis Enterprise
Speaker: David Brown, Principal Consultant, Security Solutions, Forsythe Solutions Group
Speaker: Joe Bernik, CISO and Head, Technology Risk Management, LaSalle Bank
Speaker: Ed Moyle, Manager, Information Security Solutions, CTG

** Agenda subject to change prior to show dates **