12/10/2008 Security Committee Meeting Highlights

You Are Here: NYS Forum Home > Committees/Areas of Interest > Security Committee > Meetings > 12/10/2008 Security Committee Meeting Highlights

12/10/2008 Security Committee Meeting Highlights

Attendees:

Deb Snyder (OTDA)

Bob Spina (Cisco)

Mike Springer (Dormitory Authority)

Jo Shrader (OCFS)

Bill Barber (NYS Civil Service)

Chad Walter (D&D)

Rich Higgins (OMRDD)

Joel Conklin (Verizon Business)

Michael Deyo (JANUS Assoc.)

Chuck Weiss (Comsys)

Jill Elwert (Fortify)

Brian Sartin - (Verizon Business) presenter*

Steve Lapinski (Verizon Business)

9/21/08 and 11/3/08 meeting highlights and 11/14/08 Update to Executive Committee shared

Monthly "Hot Topic" Presentation - "2008 Data Breach Investigations Report - What you need to know!" Guest speaker Bryan Sartin, Verizon Business, provided an "executive overview" of a recent data breach study co-authored with Dr. Peter Tippet.

Education/Security-Related Webcasts - Update on activities related to collaborative effort with NYS OCSCIC on the MS ISACA webcasts. Dec. 17, 2008 webcast on track; meeting on 12/11/08 to outline proposed 2009 schedule.

Education/Seminar/Presentations (topics based on Forum's Annual Strategic Planning Conference)

Event Planning Progress Updates from planning work groups
- Security Roundtable - team report by Bob Spina; 2 meetings, event outline & preliminary topics shared.
- Virtualization-related Security Risk - Joe Lynch (lead); team volunteers identified.
- Emerging Technologies / Web 2./0 - new ways of doing business, new threats/risk mitigation best practices; collaborative endeavor with Emerging Technologies committee. Bob Spina (lead) will reach out to Forum's Emerging Technologies Committee; team volunteers identified.
- Data Classification 101 - after much discussion, group consensus was to leave this topic on the agenda, but alter the title/focus to Data Classification - a Phased Approach & tentatively shoot for 4th QTR of 2009 to allow agencies time to digest standard, attend CSCIC training, etc. Ted Phelps will contact Sanjay Goel (SUNY) to discuss/report back.
"Lessons Learned" email from Greg Benson shared with the group as good points to keep in mind.

ISO/CIO survey - call for topics of interest survey for Security Roundtable reviewed; will serve dual purpose.

NYS Forum Security Committee Co-Chair Vacancy

Group consensus to submit Bob Spina as recommended for Executive Committee confirmation.
Completed 12/11/08; however Dec. 12, 2008 Executive Committee meeting was cancelled due to weather, confirmation anticipated at the Jan. 9, 2009 Executive Committee meeting.

2009 Meeting Schedule

Next regular meeting - January 15, 2009, at D&D Consulting. Meetings scheduled for the 3rd Thurs. of each month for Jan. through Dec. 2009, 2:00-3:30pm, at D&D Consulting, 3 Columbia Circle, Albany, NY, as reflected in the NYS Forum's online event calendar at http://www.nysforum.org/events/calendar/, and each meeting listed contains a link to further details - for example, the January 15, 2009 meeting http://www.nysforum.org/events/calendar/events.aspx?date=1%2f15%2f2009.