Greater Augusta ISSA

If you missed Rob Lee's presentation or would like to have a copy of the slides for reference, they can be found on our website:
http://augusta.issa.org/files/StateOfTheHack_M-Trends_ISSA_Rob_Lee.pptx

The ISSA International Conference will be held next month in Atlanta GA! Don't miss this opportunity to attend the ISSA International Conference while it's so close to home!

Connect & Collaborate
Atlanta, Georgia - USA
September 15 - 17, 2010

Notable speakers include:

Have you ever considered pursuing the CISSP certification? It *can* be intimidating, but SANS and the Greater Augusta ISSA are here to help!

"Over the past 4 years, 98% of all respondents, who studied our SANS® +S™ Training Program for the CISSP® Certification Exam and then took
the exam passed; compared to a national average of around 70% for other prep courses. SANS® +S™ Training Program for the CISSP® Certification Exam is designed to prepare you to pass the exam. This course is an accelerated review course that assumes the student has a basic understanding of networks and operating systems and focuses solely on the ten domains of knowledge as determined by ISC2. Each domain of knowledge is dissected into its critical components. Every component is discussed showing its relationship to each other and other areas of network security. After completion of the course the student will have a good working knowledge of the ten domains of knowledge.
Who Should Attend
-Security professionals who are interested in understanding the concepts covered in the CISSP® exam as determined by (ISC)2
-Managers who want to understand the critical areas of network security
-System, security, and network administrators who want to understand the pragmatic applications of the CISSP® 10 Domains
-Security professionals and managers looking for practical ways the 10 domains of knowledge can be applied to the current job
-In short, if you desire a CISSP® or your job requires it, MGT414 is the training for you"

If you work for Department of Defense (or would like to), please reference the 8570 matrix to see what the CISSP certification qualifies you for:
http://www.giac.org/8570/

I will be mentoring SANS MGT414 SANS® +S™ Training Program for the CISSP® Certification Exam in Augusta starting Tuesday, October 12. Class will be held at Augusta State University starting starting Tuesday, October 12, 2010 and ending Thursday, November 11, 2010. The registration deadline is Tuesday, October 5.

For more information about the course, please see:
http://www.sans.org/mentor/details.php?nid=22808

Please note that the Greater Augusta ISSA and SANS have come up with a special arrangement to include the CISSP Exam voucher in the price of
the course! Also, a 25% discount is available for ISSA members! Even if you're not currently an ISSA member, you can join today for only
$120 to obtain the 25% discount (which will save you over $700).

The Greater Augusta ISSA is extremely excited to welcome Rob Lee this quarter! Rob Lee is the Curriculum Lead for Digital Forensic Training at the SANS Institute and is also a Director in MANDIANT’s Professional Services group. Please join us for this educational training opportunity.

What: The Greater Augusta ISSA 2010 Q3 Public meeting: Rob Lee presents the Mandiant M-Trends Report on APT (Advanced Persistent Threat)
How: This is a FREE public meeting. Please confirm your reservation by sending an email to reservations@augusta.issa.org
When: Thursday August 12 9:00 AM - 11:00 AM
Where:
University Hall Room UH-170
Augusta State University
2500 Walton Way
Augusta, GA 30904
http://www.aug.edu/public_relations/pr_map_campus.htm

On the morning of the presentation, don't forget to swing by the ASU Public Safety office to get a visitor pass for the parking lot. The Public Safety office is in the back corner of the campus. You can see it at the bottom-left of this map:
http://www.aug.edu/public_relations/asumap/images/PARKINGMAP1008PR.jpg

State of the Hack: M-Trends- The Advanced Persistent Threat
In early 2010, MANDIANT released its inaugural M-Trends report. This first report focused on our years of experience responding to computer security incidents perpetrated by the Advanced Persistent Threat (APT). The "straight from the battlefield" presentation provides case studies detailing the most recent computer security incidents MANDIANT has responded to involving the APT. During this presentation we detail the main points of the report through anonymous, in-depth case studies of attacks against commercial, government, and defense industrial base organizations. We demonstrate how the attackers gain access, how they behave once inside the victim network and the impact on the organizations. And, because understanding the problem is only half the battle, we wrap up with remediation recommendations that really work.

Robert Lee
Rob Lee is a Director in MANDIANT’s Professional Services group. Mr. Lee has more than 14 years of experience in computer forensics, vulnerability and exploit discovery, intrusion detection/prevention, and incident response. He served in the U.S. Air Force as a founding member of the 609th Information Warfare Squadron, the first U.S. military operational unit focused on information operations. Later, he was a member of the Air Force Office of Special Investigations where he conducted computer crime investigations, incident response, and computer forensics. Prior to joining MANDIANT, Mr. Lee worked directly with a variety of government agencies in the law enforcement, U.S. Department of Defense, and intelligence communities as the technical lead for a vulnerability discovery and exploit development team, lead for a cyber forensics branch, and lead for a computer forensic and security software development team. A graduate of the U.S. Air Force Academy, Mr. Lee also holds a Masters in Business Administration from Georgetown University. In 2009 he was awarded the Digital Forensic Examiner of the Year from the Forensic 4Cast Awards. Mr. Lee is co-author of the bestselling book Know Your Enemy, (2nd Edition). He is also a co-author of MANDIANT’s Threat intelligence report - M-Trends: The Advanced Persistent Threat.

The Greater Augusta ISSA will present a 2-hour preview of the upcoming SANS 560 Mentor class on Thursday, July 15th. Please join us for a FREE preview of this exciting class!

What: The Greater Augusta ISSA presents a SANS 560 Preview
How: This is a FREE public meeting. Please confirm your reservation by sending an email to reservations@augusta.issa.org
When: Thursday, July 15 9:00 AM - 11:00 AM
Where:
Augusta State University
2500 Walton Way
Augusta, GA 30904
Allgood Hall E-258
Please click here for directions to campus:
http://www.aug.edu/public_relations/pr_map_campus.htm

On the morning of the presentation, don't forget to swing by the ASU Public Safety office to get a visitor pass for the parking lot. The Public Safety office is in the back corner of the campus. You can see it at the bottom-left of this map:
http://www.aug.edu/public_relations/asumap/images/PARKINGMAP1008PR.jpg

Doug Burks will be mentoring SANS 560 Network Penetration Testing and Ethical Hacking in Augusta starting Tuesday, August 17. Typical SANS Mentor sessions are one night a week for 10 weeks, but this class will meet twice a week (Tuesdays and Thursdays), so we'll complete the course in only 5 weeks.

Who should take this course?

• Do you perform penetration testing?
• Do you procure penetration testing?
• Do you manage penetration testers?
• Did you take SANS 504 and really enjoy the Hacker Techniques portion?
• Do you want to know more about how the bad guys perform recon, scan for vulnerabilities, perform exploitation, gain command execution, and then pivot further into the target environment?

If you answered yes to any of these questions, then you need this class!

For more information about the course, please see:
http://www.sans.org/mentor/details.php?nid=22318

A 25% discount is available for ISSA members! Even if you're not currently an ISSA member, you can join today for only $120 to obtain the 25% discount (which will save you over $700).

To join the ISSA and/or register for SANS 560, please contact Doug Burks.

SANS Community Instructor Mark Baggett will be teaching SANS 504 Hacker Techniques, Exploits and Incident Handling in Raleigh NC June 22-29.

Use registration code COINS-MB for a 10% discount!

For more information, or to register for the class, please see:
http://www.sans.org/raleigh-2010-cs/description.php?tid=243

Leighton Johnson is teaching two forensics classes at Augusta State
University this month. There is a huge discount on tuition for these
classes. For further information, please see below.

The Greater Augusta ISSA proudly presents Jacob Williams's
presentation entitled "Windows Rootkits – Morphology, Detection, and
Removal". Please join us for this educational training opportunity.

What: The Greater Augusta ISSA 2010 Q2 Public meeting: Windows
Rootkits – Morphology, Detection, and Removal
How: This is a FREE public meeting. Please confirm your reservation
by sending an email to reservations@augusta.issa.org
When: Wednesday, May 26th 9:00 AM - 11:00 AM
Where:
Augusta State University
2500 Walton Way
Augusta, GA 30904
Allgood Hall E-158

Please see the position description below for Senior Audit Supervisor
at The South Financial Group in Lexington, SC.