AIIM is the international authority on Enterprise Content Management (ECM).
Secure Content Management in the Real World
February 9, 2006
Program Information
Back by popular demand! Based on the success of last year's meeting, AIIM New England has assembled another high power program of speakers that will address a diverse range of topics from Computer Forensics to Cyber Crime to Technology to Catch the “Bad Guy” and how we can use technology to help organizations achieve these results.
Contrary to popular belief, the greatest threat to data stems from trusted employees or contractors who either inadvertently or maliciously disclose sensitive or classified data to unauthorized recipients.
One of the most dangerous security threats today is malicious action by a trusted insider or ex-employee with access to corporate network resources and proprietary data. In today’s regulatory environment, even inadvertent disclosures of private data could have disastrous legal consequences for the organization responsible for protecting that data.
According to the Insider Threat Study of 2005, 94% of the incidents of insider sabotage affected the integrity, confidentiality and availability of the organizations’ data. -2005 Insider Threat Study, U.S. Secret Service and CERT
Location:
8:30AM-1:30PM at the Museum of National HeritageFarr Conference Center33 Marrett Road (At the intersection of Route 2A and Massachusetts Avenue)Lexington, MA 02421Phone: 781-861-6559
Agenda:
8:30 – 9:30 Registration and Continental Breakfast9:30 – 11:30 Presentations11:30 – 12:30 Q&A12:30 – 1:30 Boxed Lunch / Networking
Cost:
$35 Members$40 Non-members NOTE: To avoid being billed cancellations must be received 48 hours prior to the event start time.
Program Contact Info:
Terri MottramColby RoadKingston, NH 03848Phone781-838-2177
SPONSORS
PFPC100 Freight StPawtucket RI 02860401-721-8085www.pfpc.com Contact: Bob Williamson, Vice President, Global Business Development PFPC is a leading provider of processing, technology and business solutions to firms concerned with automation and processing efficiency, regulatory compliance and secure work item management. Clients benefit from our compliance-focused technology and corporate culture to help reduce their risk. Our Customer Management Suite software automates and streamlines workflow management and work object processing. In addition, we offer customizable CRM, correspondence, ICR/OCR and other desktop automation solutions.
SPEAKERS
Cindy MengesVP Global ServicesDaybreak ICS
Cindy Menges leads Daybreak's global services team in support of the organization's training and consulting practice. With her focus on enhancing and expanding Daybreak's professional service offerings, Cindy is also involved in selling, marketing and delivering services, developing strategic partnerships, and maintaining a high level of customer satisfaction. Since joining Daybreak in 2003, Cindy has grown the company's training offerings as well as established an industry-leading professional training organization with more than 80 years of cumulative industry experience. With extensive professional experience in general management, strategic partnerships, business analysis, training, technology, and planning, Cindy has served as President of her own business, CBM Associates, LLC. Prior to that, she was an Engineering Director at Bell Atlantic. Cindy holds a Bachelor of Science degree in Mathematics from Union College, and a Master of Science in Telecommunications Management from Polytechnic University.
TOPIC: Mitigating The Biggest Threat to Your Security - Training The User
Abstract: Can You Afford the Hit to Your Bottom Line? One universal truth in computer security is that the 3 biggest threats are the user, the user, and the user. The best of technologies can compromise an organization's business processes, adherence to its compliance requirements, and ability to follow retention and disaster recovery policies when deployed in the real world. Many organizations have found that well intentioned, but adverse user behavior can become a liability when information is inappropriately released without approval or retained when it should have been destroyed. One company recently learned that basic document archive practices which leave valuable engineering on old parchment can have disastrous results during a flood. Understanding how to plan effectively up front by identifying strategies and best practices for success and understanding the importance of training and gaining user adoption are not only keys to any system implementation’s success but to successfully weaving the proper security strategy into the business processes using any technology solution. From executives … to project team members… to key stakeholder… and users, businesses need to understand their technology solutions and the significance of their intellectual property. Achieving that level of understanding means creating a well-orchestrated communication and training plan. We’ll look at the importance of communication, mitigating risk, user adoption, and the impact to ROI using several real life client examples from major industry players.
Carole LongendykePartner and Director of ForensicsP.G. Lewis
Carole Longendyke is a Partner and Director of Forensics at PG Lewis & Associates. Ms. Longendyke has been instrumental in developing data forensic strategies and methods, from overseeing facility design to the development of policies and procedures. A former law enforcement service officer, Ms. Longendyke has experience conducting investigations, crime scene analysis, criminal reporting, and emergency incident response. She holds a degree in Forensic Psychology from John Jay College of Criminal Justice, City University of New York. Her continued education and training has included crime and intelligence analysis and data forensics. Ms. Longendyke has presented to dozens of law firms and conferences related to information security, computer forensics, business continuity, disaster recovery, and fraud prevention and investigation. She also has numerous publications to her credit.
Topic: Data Forensic Investigations: Uncovering Computer Crime and Misuse in the Enterprise
Abstract: Since the vast majority of documentation now exists in electronic form, data forensics should be a standard and routine response for the corporate victim of computer crime and misuse. Document security and preservation is of paramount importance, but also of great importance is the need for swift and thorough response to incidents of computer crime and abuse. Most corporate security measures today address the potential for hackers compromising firewalls or cracking access codes, but an even greater threat walks right through the front door every business day. Employee misuse and abuse of company computers and resources is counterproductive at best, but intellectual property theft – client lists, business plans, product designs, and contract proposals in the wrong hands – can significantly alter the playing field for even the most successful company. Data forensics is the only way to thoroughly and adequately investigate these internal crimes without compromising the forensic integrity of the evidence
Chris Geary and Jeremy MorrisseyFBI Special Agents
Topic: Cyber Crime
Abstract: The cyber crime threat continues to evolve, affecting both businesses and individuals. This crime without borders has seen increases in "Phishing" schemes in which criminals pose as legitimate businesses. Phishing victims unwittingly provide personal information or account information which can lead to identify theft or account integrity issues. This presentation will examine how Phishing is working today and what individuals and businesses should be doing.
© 2006 - AIIM New England Chapterweb@aiimne.org
This page was last updated Saturday, June 07, 2008. Site design and maintenance by Flamingo Services
