Welcome to ISSA KC

The Information Systems Security Association (ISSA)® is a not-for-profit, international organization of information security professionals and practitioners. Through its membership, ISSA -Kansas City helps security professionals in the Kansas City area learn of information security issues and trends, which promote education, collaboration, and leadership, and further the information security profession.

September 2017 Chapter Newsletter

Posted by Administrator Monday, September 11, 2017

The September edition of the ISSA newsletter is now available.

September 2017 Chapter Meeting

Posted by Administrator Thursday, September 7, 2017

On September 28, 2017 the ISSA-KC Chapter members, and other security professionals will hold a meeting at Lidia’s Italy Restaurant in Kansas City, MO, to network and attend the monthly chapter meeting, with presentation topic.

Speaker:  Rich Perkins

Bio Highlights:

  • Executive Level IT Security Professional with 25+ years of experience in Information Technology, 12+ years focused on Information Security and Risk Management.
  • Co-Creator of the Wireless Aerial Surveillance Platform, an autonomous aircraft with onboard Wi-Fi, Bluetooth and Global System for Mobile Communications (GSM) penetration testing capabilities as featured on CNN’s “The Situation Room” and the November 2011 issue of Popular Science. Currently on exhibit at the International Spy Museum in Washington DC.
  • Served as the Data Loss Prevention subject matter expert, setting governance and policy as well providing technical expertise allowing full integration between Express Scripts and Medco networks.
  • Served as the Air Force voting member and subject matter expert on the Cross Domain Technical Advisory Board assessing risk of cross domain solutions for the entire Department of Defense (DoD).
  • Served as the Air Force voting member on the Technical Risk Rating panel certifying the technical risk of mission critical cross-domain technologies
  • Served as instructor and mentor leading the EADS NA DS3 companywide CISSP mentoring program from 2006-2010.
  • Created the patented Advanced Risk Management of Enterprise Security (ARMOES®) to enable automatic tracking/reporting of vulnerabilities within DODI 8500.2 compliant systems.
  • Served as the lead technical security engineer performing Certification and Accreditation Security Tests and Evaluations, ensuring secure systems were created and deployed on the Air Force and DoD Global Information Grid (GiG).

Topic: New Era in End Point Security

Taking a look at the current state of endpoint security, and how we need to change our way of thinking in order to get ahead of the attackers

Location: Lidia’s Italy Restaurant, 101 W. 22nd street, Kansas City, MO. 64108

Agenda:
11:30 AM - 12:00 PM Greeting and registration
12:00 PM - 1:00 PM - Meeting & Presentation
1:00 PM - 1:30 PM - Questions, Answers & Networking

Menu:
Pasta Tasting Trio - A sampling of three daily-made fresh and filled pastas.
Biscotti Platters - An assortment of house-made cookies & sweets to pass and share family style.

Soft drinks, Iced Tea, Coffee

*Vegetarian option available, please note at registration at Brio
* *Menu subject to change. **

Price:
$20.00 for ISSA Members,
$30.00 for Guests/Non-Members
Maximum Reservation: 35
Credit(s): 1 CPE credit

We look forward to seeing you at the event. If you have any questions about the event or how to register, please email our RSVP email, or contact the venue for directions.

Register Now!

August 2017 Chapter Newsletter

Posted by Administrator Friday, August 11, 2017

The August edition of the ISSA newsletter is now available.



U.S. senators to introduce bill to secure 'internet of things'


Author: Dustin Volz, Editing by Bill RigbyAugust 1, 2017

(Reuters) - A bipartisan group of U.S. senators on Tuesday plans to introduce legislation seeking to address vulnerabilities in computing devices embedded in everyday objects - known in the tech industry as the "internet of things" - which experts have long warned poses a threat to global cyber security. The new bill would require vendors that provide internet-connected equipment to the U.S. government to ensure their products are patchable and conform to industry security standards. It would also prohibit vendors from supplying devices that have unchangeable passwords or possess known security vulnerabilities.

Republicans Cory Gardner and Steve Daines and Democrats Mark Warner and Ron Wyden are sponsoring the legislation, which was drafted with input from technology experts at the Atlantic Council and Harvard University. A Senate aide who helped write the bill said that companion legislation in the House was expected soon.

"We're trying to take the lightest touch possible," Warner told Reuters in an interview. He added that the legislation was intended to remedy an "obvious market failure" that has left device manufacturers with little incentive to build with security in mind.

The legislation would allow federal agencies to ask the U.S. Office of Management and Budget for permission to buy some non-compliant devices if other controls, such as network segmentation, are in place. It would also expand legal protections for cyber researchers working in "good faith" to hack equipment to find vulnerabilities so manufacturers can patch previously unknown flaws.

Security researchers have long said that the ballooning array of online devices including cars, household appliances, speakers and medical equipment are not adequately protected from hackers who might attempt to steal personal information or launch sophisticated cyber-attacks.  

Between 20 billion and 30 billion devices are expected to be connected to the internet by 2020, researchers estimate, with a large percentage of them insecure. Though security for the internet of things has been a known problem for years, some manufacturers say they are not well equipped to produce cyber secure devices. Hundreds of thousands of insecure webcams, digital records and other everyday devices were hijacked last October to support a major attack on internet infrastructure that temporarily knocked some web services offline, including Twitter, PayPal and Spotify.

The new legislation includes "reasonable security recommendations" that would be important to improve protection of federal government networks, said Ray O'Farrell, chief technology officer at cloud computing firm VMware.
 

Upcoming Events


September 2017 Chapter Meeting
Thursday, September 28th, 2017

Join the ISSA Kansas City Chapter


Join our mailing list to stay current on ISSA Kansas City!




For more information on how to join the Kansas City Chapter of ISSA click here.
Join today!




ISSA Member Login Page ISSA
Login





ISSA’s Special Interest Groups (SIG) and Webinars:
SIG On-Demand Conf


SIG groups are:


Security Awareness


Women in Security


Healthcare


Financial


Social Media

Chapter meetings are a great way to get to know your peers here in KC. And, if you're currently looking to make a career change, it's an invaluable way to build relationships that can provide you with the "inside information" on open security positions. Check out our new LinkedIn© group that you can join to discuss topics, ask questions, or just meet other members. Look for the group "ISSA Kansas City Chapter" or click here.


Join our FaceBook page

https://www.facebook.com/kcissa/






Sponsors