PCPI-Protection of Computers & Proprietary Information
INFORMATION INSECURITY ?
IS NEW TECHNOLOGY HELPING YOU WIN
...OR IS THE CRIMINAL ONE STEP AHEAD ?
February 04 - February 08, 2008 - Miami, Florida, USA (PCPI#2008-01M)
May 05 - May 09, 2008 - Nashville, Tennessee, USA (PCPI#2008-02N)
August 11 - August 15, 2008 - Boston, Massachusetts, USA (PCPI#2008-03B)
November 03 - November 07, 2008 - Los Angeles, California, USA (PCPI#2008-04A)
MINDSET
OF THE HACKER:
In the rapidly advancing world of Technology, it is time to focus on more than just the technical complexities of Information Security, and to take a little time to study the mind of the "Information Criminal" or "Hacker".
What is the Motivation of the Information Criminal?
How Easily Available is "Confidential" Information?
What Technical Challenges has he Overcome?
What are his New Technology Challenges and Opportunities?
What are his Potential Rewards?
How can we Make it More Difficult for him to Succeed?
The rewards available for criminals selling your information can be blindingly large, and their well-structured communities operate at an alarmingly sophisticated level. Commercial Organizations, Authorities and Vendors all continue to be at risk, and are all trying to address the problem more effectively.
UNIQUE PROGRAM:
This unique five day program has been developed for the World Institute for Security Enhancement by some of the world's most respected, talented and knowledgeable security experts. This presentation has the unique quality of looking at the problems of Information Security from two perspectives.... both from the "Attacking" standpoint of the Information Criminal, and from the "Defensive" position of the Information-Owning Organization or Individual.
INTERNATIONAL COMPUTER UNDERGROUND:
With numerous years direct experience and involvement with both Law Enforcement and in the elusive computer underground, the Faculty of the World Institute will discuss the dramatic changes that have taken place in recent times. The evolution in the styles of information-theft will be discussed, as well as some specific details of the crimes themselves.
Interactive Demonstration: There will be an alarming, interactive demonstration of the free flow of information trading in the "Underground". Information such as credit card numbers, phone numbers and access passwords that can be obtained so very easily.
Using the Internet: Live demonstrations will show the power of the Internet, and the availability of information the Hacker can use.
Video Presentation: Videos will be shown which include footage of actual physical break-ins, computer intrusions and potential threats.
Hacking Demonstrations: There will be live demonstrations of Computer Hacking Techniques, live Connections to Hacker Bulletin Boards and Chat Systems, and some sample handouts of Underground Hacker Publications.
System Bugs: The presentation will also expose system bugs which permit the use of extremely simple methods for compromising computer systems, and will discuss several "Methods of Attack" commonly used by information gatherers.
Hacking Programs: Some examples will be available of the Actual Tools and Programs used in the seminar. These are often the exact programs being used by Computer Hackers, world wide, to gain access to Corporate Computer Systems.
FUTURE TECHNOLOGY CONSIDERATIONS:
The increasing complexity of Global Networks and Computer Systems today requires an understanding of future technology, and the role that security must play within that technology. The World is now at the edge of the next generation of security issues, problems and challenges. Topics of discussion in this session will include security of Wireless LAN's, WAN's and how Users, Corporations, as well as Vendors should approach the changing Information Security arena.
OPEN FLOOR SESSION:
The Attendees will have the opportunity to participate in an open Question and Answer session. Additionally, the Instructors will be happy to make themselves available, on an individual basis, to answer questions on site-specific issues and other security-related topics.
PURPOSE:
The purpose of the "Protection of Computers & Proprietary Information" program is to train attendees to ensure that they can apply a standard level of adequate and timely Information Security, Policies and Procedures within Information Technology and Proprietary Information environments.
Upon completion, a Mounted Certificate is awarded in "Protection of Computers & Proprietary Information".
WHO SHOULD ATTEND:
This forty hour program is highly recommended for those who are serious about learning more about the potential threats facing their Organization's or Company's Computing Infrastructure, and who are determined to improve their defenses against them. This includes everyone from the Managing Director, CIO, CTO and Information Security Officer through to the Managers of Application Development Divisions, Computer and Network Support Divisions, Facility Security personnel, Corporate Directors and Corporate Executives. Attorneys and Prosecutors as well as other members of Law Enforcement will significantly benefit from this program.
By the end of this program participants will be better prepared and equipped to implement the latest in technology and security methods. Contact lists and reference material will be provided which will assist attendees in keeping pace with the problems.
CONTINUING EDUCATION UNITS (CEU):
Continuing Education Units (CEU's) are nationally recognized units in qualified programs which allow the participant to document all non credited work completed. CEUs may be used as evidence of increased performance capabilities and for job advancement, and are recognized by many professional organizations and companies.
CERTIFIED PROTECTION PROFESSIONAL (CPP) RECERTIFICATION:
Documentation of attendance at these programs may be submitted to the ASIS Professional Certification Board for consideration of recertification credit by qualified Certified Protection Professionals.
NORTH CAROLINA PRIVATE PROTECTIVE SERVICES BOARD (NCPPSB)
This "Protection of Computer & Proprietary Information" program has been reviewed and is "Approved by the North Carolina Private Protective Services Board". This Board regulates and licenses all Private Investigative, Security, & Counterintelligence activity within the State.
PRINCIPAL INSTRUCTORS
G. F. Bryant Jr., CMAS; is the Founder and Executive Director of the World Institute for Security Enhancement and is a member of the Electronic Crime Task Force with the Miami Division of the U. S. Secret Service. He has been granted a Certified Master Anti-Terrorism Specialist (CMAS) designation by the Anti-Terrorism Certification Board (ATAB) of the International Society of Anti-terrorism Professionals and is Chairman of the Homeland Security Committee. Mr. Bryant is an internationally recognized Physical, Operational and Technical Security Analyst, Contingency Planner and Educator with more than twenty five years of combined experience in physical & operational security, and investigation technologies. He founded Bryant & Associates to provide threat assessment, risk analysis and systems integration after serving several years as the primary technician for a governmental law enforcement agency. He teaches and consults internationally on state-of-the-art equipment, techniques, and operational procedures to managers, technicians and other security & loss prevention professionals in both government and private industry that include numerous Fortune 500 companies. The originator and developer of extensive technical, operational and managerial security & life safety programs at the university level, Mr. Bryant is active in the design, application, installation and field maintenance of Integrated Facilities Protection Systems utilizing the Total Facilities Management approach. He is a frequent speaker at international conferences and exhibitions and his articles regularly appear in various security industry publications. Mr. Bryant is an active contributor to new product development projects for many international manufactures.
Mr. Bryant served as Chairperson of a Chapter of the American Society for Industrial Security (ASIS) International and is a Charter Member of a Chapter of the High Technology Crime Investigation Association (HTCIA). He is a member of the South East Florida Chapter of the Association of Contingency Planners (ACP) and the National Defense Industrial Association (NDIA). He has also been a member of the Armed Forces Communications & Electronics Association (AFCEA), The Academy of Security Educators & Trainers (ASET), the Fire Educators & Technology Section of the National Fire Protection Association (NFPA) and served on Committee F-12 on Security Systems & Equipment of the American Society for Test & Material (ASTM). Mr. Bryant contributed to a monthly column on Systems Integration in Access Control & Security Systems Integration magazine and was the Technical Editor of International Corporate Security, a magazine published in the United Kingdom. He has been appointed to the advisory boards of Defense & Security Electronics, CCTV Applications & Technology, Access Control & Security Systems Integration, Security Technology & Design and Southeast Asia Fire & Security magazines.
Chris Goggans; is an internationally recognized member of the computer underground and acts as a Senior Consultant with many large International Security Consulting firms.
He is a leader in providing security related services to Corporate Clients and Government Agencies. He also specializes in the exposure of real-world problems through the use of the External Security Audit, or "Penetration Test". His Consulting work involves him with companies in industries ranging from Finance to Aerospace and from Telecommunications to Automotive.
Mr. Goggans work has been referenced in "Time", "Newsweek" and "Computer World", as well as in numerous other publications, and he has been featured on CNBC Television, in a security program "Steals and Deals". He has also developed and presented an intensive, three day Training Seminar on Data Security for NATO's European Allied Command.
Through his experience in dealing with the international "Computer Underground", Goggans demonstrated real weaknesses in Computer and Network environments using techniques and methods employed by computer hackers. He was originally one of the founding members of the American hacking group, "The Legion of Doom", back in 1984. He was the founder of ComSec Data Security in 1991, and was active on a "Next Generation" Communications Engineering Project for a Fortune 500 computer firm. Mr. Goggans was also a Senior Security Analyst for a major Internet Service Provider.
Mr. Goggans is noted for his work in helping defend Organizations against the Hacker. In late 1991 he was key to the arrests of The Masters of Deception hacking group in New York City.
Doug Gould, CISSP; is the Chief Information Security Officer at the World Institute for Security Enhancement, and is associated with Bryant & Associates. He is an internationally recognized expert in the field of computer security and forensics. Currently President of Gould Professional Services, Inc., he is an electrical engineer, computer scientist, computer security consultant and computer forensic examiner, with over 28 years experience in computer and security professions, including 14 years as a member of the Technical Staff at Bell Laboratories.
He is a leader in providing security related services to Corporate Clients and Government Agencies. He has served as the principal architect for some of the world's largest e-commerce enabled businesses, and has led and managed security consulting services for a large Fortune 500 company. He has also held computer and network security responsibility for a U.S. government agency, including serving as the lead forensic investigator.
Mr. Gould served on the past Board of Directors of the Carolinas chapter of the Information Systems Security Association, and currently is the President of the Eastern Carolina InfraGard organization, one of the largest and most successful in the nation. He frequently assists law enforcement in investigations and has been called upon by the FBI and Secret Service for his expertise to assist in evidence recovery in major computer crime incidents.
Additional instruction may be provided by other faculty members, which might include:
Ron Gula, M.S.E.E.; is a member of the Faculty at the World Institute for Security Enhancement, and is associated with Bryant & Associates. He is a Senior Network Security Engineer with more than ten years of experience and has a Masters Degree in Electrical Engineering. Mr. Gula is an Educator, Technical Consultant, and Special Operative specializing in intrusion detection, forensic analysis and incident response. He is currently Vice President of Intrusion Detection products for Enterasys Networks and manages the engineering group, which produces the Dragon Intrusion Detection System. Enterasys is one of the world's largest manufacturers of routers, switches, and a wide variety of enterprise networking equipment. Previously Mr. Gula had founded Network Security Wizards and wrote the original Dragon IDS. Before founding NSW, he worked for US Internetworking, GTE Internetworking, BBN, and while serving in the US Air Force, he worked for the National Security Agency supporting such organizations as NASA and the US Department of Justice. Mr. Gula is an active network security advocate, and trains other network analysts in the art of hacker techniques and intrusion detection. He has developed several professional training courses and has spoken at security conferences such as Black Hat, DEFCON, HOPE, and SANS. Mr. Gula is presently president of the Maryland INFRAGUARD program.
Mario C. Martinez, M.B.A., CFE, CIFI; is an internationally recognized Consultant in Telecommunication Security with a Master of Public Administration in International Affairs. Mr. Martinez is the Director of Administration at the World Institute for Security Enhancement and retired as Director of Security for Southern Bell Telephone and Telegraph Co. directing all corporate security operations in the southern district of Florida. During his career he participated in a number of law enforcement task forces in Florida and Washington DC to enhance telecommunications technologies available for criminal investigations. During his tenure with Southern Bell he attended numerous management, technical, telecommunication, and investigative security courses. He has also developed and presented numerous programs in the areas of computer security and investigation.
Mr. Martinez has represented Southern Bell's business interests in the United States, Canada, and Spain. He was assigned to review security measures at Compania Telefonica Nacional de Espana (Telefonica) following terrorist bombing attacks directed at telephone company facilities in Madrid. He was later assigned to review telephone facilities security measures in Barcelona, Spain in connection with the 1992 Olympic Games in Barcelona. He has been cleared "Top Secret" by the Department of Defense and the F.B.I.
Mr. Martinez is an active member of numerous associations including the American Society for Industrial Security (ASIS). He is a Certified Fraud Examiner (CFE) from the Association of Certified Fraud Examiners and a Certified Insurance Fraud Investigator (CIFI) from the International Association of Special Investigation Units.
Protection of Computers & Proprietary Information
PROGRAM OUTLINE
PCPI-01 Threat Spectrum
Determine the Threat
Vulnerability Assessment
PCPI-02 International Computer Underground
Then & Now
Famous Arrests
Active Hackers
Information Flow
Software Piracy
Online Crimes
PCPI-03 Telecommunications Fraud
Original Toll Fraud
Devices
Cellular Fraud
PBX Fraud
Other Toll Fraud
Techniques
The Telephone Company
PCPI-04 Physical Security & Social Engineering
On-Site Reconnaissance
Electronic Surveillance
Social Engineering
PCPI-05 Computer & Network Abuse
UNIX Security
Other Systems Weaknesses
Other Systems Strengths
Novell Security
X.25
The Internet
PCPI-06 Data Security & Integrity
Virus Protection
Encryption & Decryption
PCPI-07 Defending Against an Attack
Firewall Techniques
External Security Devices
Auditing Computer Security
PCPI-08 Future of Computer Crime
Future Motivations
Future Vulnerabilities
Future Attacks
Future Hope
Summary
PCPI-09 Risk Management
Risk Analysis
Impact Statement
PCPI-10 Reference Information
Glossary of Terms
Resources
COURSE SCHEDULE:
| Day 1
8:00 AM |
Registration & Check-in Training Site (954) 447-5184 |
| 8:30 AM
|
Welcome & Introduction
G. F. Bryant, Jr., Executive Director World Institute for Security Enhancement |
|
Seminar Format |
|
| Each Day
8:00 - 12:00 |
Lecture / Discussion |
| 12:00 Noon | Lunch |
| 1:00 - 5:00 PM | Lecture / Discussion |
| 5:00 PM | Adjourn |
The above timetable approximates the schedule for this course.
Instructors may choose to vary the program and any changes will be announced.
General Information: World Institute for Security Enhancement courses are provided at our training
sites across the United States and throughout the World. Most Open Session
Courses have been reviewed and are "Approved by the North Carolina
Private Protective Services Board". This Board regulates and licenses
all Private investigative, Security and Counterintelligence activity within the
State of North Carolina.
ENROLLMENT: Classroom space is limited. Please reserve your place
now! Complete and mail the attached registration form or call the
Institute directly at +1-954-447-5184 for information on class
quotas.
COURSE FEE: $1,450.00 USD
FEE INCLUDES: The course registration fee includes a attendee Reference Manual, Program Materials, a Mounted Certificate, and Daily Refreshments for most programs held at our United States training sites. Payment in U. S. dollars is required with your registration form and must be received at least thirty (30) days prior to the beginning of the Class. Payment not received on time will automatically be placed in the next scheduled class.
MEALS: Lunches will not be provided.
DRESS: Business casual is the recommended daily attire.
REFUNDS / CANCELLATIONS: The Institute reserves the right to amend any program should circumstances warrant such action. In the event of course postponement or cancellation, the Institute will reschedule the course, or apply the fee payment to any other program offered in the next twelve months. Liability for course cancellation is specifically limited to the amount of prepaid course fees and excludes any incidental or consequential damages. Attendees must confirm cancellations or substitutions, in writing, at least THIRTY (30) days prior to the initial class date. Substitutions may be made, with written notice to the Institute, at least thirty (30) days prior to class commencement. There will be a 10% administrative fee for such a cancellation. Otherwise, fees are not refundable but may be transferred to another program of your choosing.
LODGING: Lodging is NOT included. Each attendee is responsible for their own travel arrangements and lodging costs. Please make your room reservation at least three weeks prior to the initial class date.
BOSTON: Arrangements have been made with local hotels in the Boston Metropolitan area. Negotiated Institute rates have been established. A listing of hotels in the Boston Metropolitan area will be provided with your registration package.
Hilton Boston Logan Airport
LOS ANGELES: Arrangements have been made with local hotels in the Los Angeles area. Negotiated Institute rates have been established. A listing of hotels in the Los Angeles area will be provided with your registration package.
Hilton Los Angeles Airport
MIAMI LAKES: Arrangements have been made with Don Shula's Hotel & Golf Club in Miami Lakes, Florida. A negotiated Institute rate has been established at the Golf Club. The rate is $119.00 / $99.00 / $109.00 (seasonal rate) per night + tax, for the Golf Club, and $135.00 / $104.00 / $114.00 (seasonal rate) per night + tax, for the Hotel on Main Street, for either a Single or Double Room. Each attendee is responsible for their own travel arrangements and lodging costs. Please make your room reservation at least three weeks prior to the initial class date with Don Shula's Hotel & Golf Club; Main Street; Miami Lakes, Florida, USA. The telephone number is (+1-305-820-8100) or (+1-800-24-SHULA). A listing of additional area hotels is available after registering.
Don Shula's Hotel & Golf Resort
NASHVILLE: Arrangements have been made with the Gaylord Opryland Resort & Convention Center Hotel. Negotiated Institute rates have been established. A listing of additional hotels in the Nashville Metropolitan area will be provided with your registration package. Gaylord Opryland Resort & Convention Center
GROUND TRANSPORTATION: Transportation is NOT included. For a fee, transportation is available from the Airport to your Hotel. Transportation is not provided to the Institute training site daily. Each participant is responsible for their own daily local ground transportation to the Institute Training Site.
BOSTON: A complimentary Hotel shuttle may be available from the Boston (BOS) and Providence (PVD) Airports. Transportation is not provided to the Institute training site daily. Each participant is responsible for their own daily local ground transportation to the Institute training site.
LOS ANGELES: A complimentary Hotel shuttle may be available from the Los Angeles (LAX) Airport. Transportation is not provided to the Institute training site daily. Each participant is responsible for their own daily local ground transportation to the Institute training site.
MIAMI LAKES: For a fee, transportation is available from the Miami (MIA) and Fort Lauderdale (FLL) International Airports to Don Shula's Hotel & Golf Club with Super Shuttle (+1-305-871-2000). Transportation is not provided to the Institute training site daily. Each participant is responsible for their own daily local ground transportation to the Institute training site.
NASHVILLE: A complimentary Hotel shuttle may be available from the Nashville (BNA) Airport. Transportation is not provided to the Institute training site daily. Each participant is responsible for their own daily local ground transportation to the Institute training site.
INSTRUCTION: While every effort is made to assure that scheduled instructors, equipment and training materials are present, unforeseen circumstances may occur. Therefore, the Institute reserves the right to substitute personnel and curriculum as required.
©
1995, 1996, 1997, 1998, 1999, 2000, 2001, 2002, 2003, 2004, 2005, 2006, 2007
World Institute for Security Enhancement
www.worldinstitute.org
securitytraining@pobox.com
All Rights Reserved..