May 1 @ 11:00 am - 1:00 pm
ALL attendees must RSVP (with or without lunch).
Note: Our host request we park at the rear of the building. There is ample parking available.
Speaker: David England
Sector: All
Objectives: 1) Gain a deeper understanding of cloud environments and securing them. 2) Understand the threats to cloud environments. 3) Introduce techniques, tactics, and procedures of conducting IR in the cloud.
Background: During World War I, Army Air Corps pilots fought in a new environment, the “Empire of the Cloud”. These heroic men believed “Turn like the devil and shoot straight from the sun” and “Death or glory, it’s all the same”. Now, in this age of information, we are “fighting” in a new cloud and in this new environment, it is Breach or Glory. The cloud presents information security professionals, incident responders, and forensic analysts with new challenges and without proper training, preparation, and tools, our adversaries will be “Aces” and our “dirigibles” of data will be flaming disasters.
We will begin with a discussion of what is the cloud and some of the cloud environments where breaches may occur, such as Amazon Web Services, Microsoft’s Azure, data center hosted servers, and even Dropbox. Without this understanding, we can’t develop the correct techniques to “turn like the devil and shoot straight from the sun”. We will continue with how we can properly secure our clouds without “filling
the skies with flak”.
Next, we will focus on our adversaries and their techniques. We have seen an increase in activity targeting data in cloud environments and the threats are employing more and more sophisticated exploits and targeted malware against us. As information security professionals, we must be cognizant of the changing nature of the threat and how to identify and combat them, as well as assisting management in prioritizing their security initiatives and resources in light of these changes. The discussion will conclude with real-life experiences where security efforts were “flaming dirigible disasters”, lessons learned from these events, and some of incident response TTPs used to properly and thoroughly conduct investigations in these environments.
Speaker Bio:: David England is a Digital Forensics and Incident Response professional with more than 30 years of experience in investigations, information security, and consulting. Since 2001, David has been involved in the investigation of cybercrime, conducting computer forensics in support of complex incidents of fraud, phishing and data breaches. In 2005, he retired from the U.S. Army as a Chief Warrant Officer 3, moved to Huntsville, and began work in the Defense Industrial Base. Dave was instrumental in establishing an InfraGard Chapter in Huntsville and leading it for the first several years of its existence. He was recognized in June 2011 by the Director of the FBI for his efforts.
In 2011, David became an incident response consultant and has conducted many large breach investigations on behalf of businesses, corporations, and attorneys across the globe. He also worked for a managed and secure cloud provider. In late 2017, David joined nou Systems, Inc, a Huntsville-based defense contractor, as a Senior Cyber Analyst.
Make sure your RSVP by April 30th at 8:00am and don’t forget to mark you lunch order.
Mr. Curenton has over twenty-five years of progressively responsible experience in executive and technical management, the design and implementation of complex system and software architectures, cyber security, strategic development, and organizational change.
Michael Lee is the current Secretary for InfraGard Huntsville Members Alliance. Over the last four years as Secretary, he has helped plan and run monthly meetings and special events, re-establish our chapter’s IRS non-profit status, setup and maintain our chapter website, and keep up all organizational paperwork.
Christine Karlson is the current president for InfraGard Huntsville Members Alliance holding this office since 2014. In this role she has worked to increase membership from 190 to over 350, started InfraGard initiatives and partnerships like the extremely successful Cyber Forensics Camp, Identity Theft Conference, and the Active Shooter Conference. Chris is also the InfraGard National South Central Regional Representative, an InfraGard National Mentor, and will lead the Special Programs committee for our local
Carlene Osmer is the Site Operations Manager and Facility Security Officer (FSO) at The MITRE Corporation-Huntsville, AL. She has worked in the security field for 30 years and has been the FSO for MITRE-Huntsville since July 1992, 25 years. She received the James S. Cogswell Outstanding Industrial Security Achievement Award in 2014.
Jeremy Blevins a Cybersecurity Analyst with nou Systems, Inc., supporting the Missile Defense Agency at Redstone Arsenal, AL. He holds a Master of Professional Studies in Cyber Policy and Risk Analysis from Utica College, a Master of Science in Management from Embry-Riddle Aeronautical University, a Bachelor of Business Administration from Faulkner University, an Associate of Applied Science in Missile and Munitions Technology from Calhoun Community College, and is a Certified Information Systems Security Professional (CISSP) and Certified Ethical Hacker (CEH).
Rebecca Falcon is the President of BOLDLogic – a technology services, cybersecurity, systems engineering and project management advisory firm. She has over 25 years of experience in the Information Technology field and is a subject matter expert in implementing and managing cybersecurity operations for both government and commercial customers. She is a certified Project Management Professional (PMP) and Certified Information Security Manager (CISM). Rebecca previously served as the President of the Huntsville City Schools Cyber Advisory Council and on the Board of Directors for Cyber Huntsville, North Alabama Chapter of Information Systems Security Association (NACISSA), and Huntsville Association of Small Businesses in Technology (HASBAT).
Harry (Bud) Gifford s a Senior Systems Engineer at Athens State University. He and his team are responsible for the deployment, optimization, security, and administration of the university’s infrastructure, systems, services, and data center. He oversees the management of multiple independent Blade Centers, as well as virtualization solutions encompassing over 70 virtual servers, four independent storage solutions, and a digital document retention system. He also deploys, manages, maintains, and monitors several security devices which include Security Information and Event Management (SIEM), IDS systems, and vulnerability scanning systems. Bud holds several professional certifications from Global Information Assurance Certification (GIAC) which includes the GCIH (GIAC Certified Incident Handler) and GAWN (GIAC Assessing and Auditing Wireless Networks) certifications, multiple Microsoft certifications including the Microsoft Certified System Engineer certification (MSCE), as well as CompTIA, Tenable, and Novell certifications. Bud is an active volunteer in support of InfraGard events and makes a significant contribution as a volunteer at the annual Cyber Forensics Camps. In addition to his professional career accomplishments, he is a 2016 graduate of the FBI Citizens Academy and is current member of the FBI Citizens Academy Alumni Association.