Hiding in Plain Sight: Insider Risk Summit

201 Wood Street,Pittsburgh PA 15222

07 December, 2022

Description

Hiding in Plain Sight: Insider Risk SummitPresented by the InfraGard Pittsburgh Members AllianceSponsored by Code42 | bit-x-bit, llc | Point Park UniversityOpen to the Public / IPMA membership NOT required Join us at Point Park University in Downtown Pittsburgh for a seminar focused on insider threat. Learn about real world cases presented by the FBI, guidance on how to create an insider threat program for your organization, and experience expert sessions that review response tactics and lesson learned from industry professionals. Registration check-in begin at 7:30 AM. Refreshments will be provided and breaks are scheduled through the seminar. Agenda INTRODUCTION & KEYNOTE STATEMENTS (15 minutes) Welcome Remarks: Michael McGraw - President, InfraGard Pittsburgh Members AllianceKeynote Statements: Don Green- President, Point Park UniversityFBI PRESENTATION: OVERVIEW OF INSIDER THREATS (45 minutes) Mackenzie Monarko - Special Agent, FBI PittsburghBREAK (10 minutes) INSIDER RISK PROGRAM – BEST PRACTICES & PRACTICAL IMPLEMENTATION (45 minutes) Matthew Kraft, CISSP - Insider Risk Advisor, Code 42Matthew’s background has found him handling events from the frontline as a technical support escalation engineer, coaching from the sideline as an instructional designer and trainer, and on the byline as a researcher and presenter while being an insider risk consultant. Matthew is based in Minneapolis where he works for Code42 and has been helping customers protect their data and mature their Insider Risk Management Programs since 2016.When not focusing on insider risk management, you can find Matthew on stage or backstage with theatre companies in the Twin Cities metro. Matthew earned his bachelor’s degree from the University of Minnesota where he majored in Computer Science, English, and Theatre Arts.BUILDING AN INSIDER RISK PROGRAM (45 minutes) Randy Trzeciak - Insider Threat Center, Carnegie Mellon, Software Engineering InstituteRandy is a Principal Researcher, Deputy Director of the Cyber Risk and Resilience Directorate at CERT, and the Director of the CERT National Insider Threat Center at Carnegie Mellon University's Software Engineering Institute. Randy has over 30 years of managerial and technical experience in the information technology domain, including information security risk management, insider threat mitigation, cybersecurity assessments, software engineering, project management, and database design, development, and maintenance. Randy, and the teams he leads, assist organizations in improving their security posture and incident response capability by researching technical threat areas; developing and conducting information security assessments; and providing information, solutions and training for preventing, detecting, and responding to illicit cyber and physical activity. In addition to his role with CERT, he also has a dual appointment as Program Director for the Masters of Science in Information Security Policy and Management (MSISPM) program and CERT professor at Carnegie Mellon’s Heinz College, Graduate School of Information Systems and Management, at Carnegie Mellon University. He is the primary advisor for all students in the MSISPM Program and he teaches various graduate-level courses for the MSISPM and MISM programs and is an instructor for the CISO and CIO executive education programs in the Heinz College.Prior to his career at Carnegie Mellon, Randy worked for Software Technology, Incorporated (STI) in Alexandria, Virginia. For nine years, he was a consultant to the Naval Research Laboratory (NRL) working on numerous projects designing, building, and supporting large-scale relational database management systems and executive management systems. During his employment with STI, Randy also filled the role of Information Systems Business Manager.BREAK (10 minutes) SPONSOR SESSION: RESPONSIVE INCIDENT RESPONSE (20 minutes) Kurt Petro, GCFA, MCSE - Senior Digital Forensics Examiner, Bit x BitLESSONS LEARNED OF BUILDING AN INSIDER RISK PROGRAM: MODERATED PANEL DISCUSSION (60 minutes) Matthew Collins - VP, Data Protection and Insider Threat Program Manager, Citizens BankJason Clark - Principal, Information Security, BNY MellonMark Grantz - Manager, Enterprise Information Security, PNC BankCLOSING REMARKS (5 minutes) Michael McGraw - President, InfraGard Pittsburgh Members Alliance