Security Today Conference: A Gathering of Master Security Thinkers

Security Today Conference: A Gathering of Master Security Thinkers

I enjoy attending conferences, whether big or small, I always learn something new to add to my bank of knowledge, and the Security Today Conference at the Gaylord Texan in Grapevine, Texas proved to be no different. For the past two days, I have immersed myself in conference bliss - listening to keynote speakers, visiting booths, sitting in on educational classes and interacting with others. Here’s a sampling of what I learned:

Did you know that Texas State Representative Jason Villalba wrote the first draft of the Texas Marshal Program on December 14th, the day of the Sandy Hook tragedy? He based it on the Federal Air Marshal Program’s concept of having a certified peace officer in common dress, as not to be identified, on an airplane who could only react in a time of emergency. In relation to schools, no one except the principal and school officials know who the marshal(s) are and these marshals have the responsibility and duty to act against active shooters or in any emergency that threatens the lives of students or teachers.

School marshals receive 80 hours of training, must get their CHL, go through a robust background check and participate in a thorough mental exam. Once completed, the marshal is allowed to have a firearm within a 15 second reach while on the school campus to eliminate life or death threats.

Villalba talked with schools across Texas and their response was that it is best to have armed guards at all entrances; however, the state can’t afford this, so the next best thing is the marshal program.

Do you know the lifecycle of a cyberattack? Shawn Riley, executive vice president of CSCSS (Centre for Strategic Cyberspace + Security Science), explains the 7 stages:

  1. Recon – Who to send malware to.
  2. Weaponize – Fill the attached document with malware to exploit.
  3. Deliver – Recipient opens attachment.
  4. Exploit – System becomes vulnerable.
  5. Control – Attack takes over the system.
  6. Execute – The malware attacks the system.
  7. Maintain – The malware maintains access to the system.

By analyzing a cyberattack and breaking it down into stages, it’s easier to understand what people do to attack and how to prevent future attacks.

Did you know that out of all school safety and security threats, an active shooter is least likely to occur? This is according to Catherine Toohey of the Texas School Safety Center, an official university-level research center at Texas State University, whose message was that schools need to be prepared and train for ALL possible emergency events including bullying, weather-related events, dating violence, etc.

Do you realize that our social security numbers are totally unprotected? George Gundling, CEO, SaaS Software, Inc. presented that the only way to prevent identity theft is to protect our social security numbers. He proposed the concept of an ID authentication system as the vaccine for ID theft.

“Technology is available, but it’s all in how it is used,” said Gundling.

The ID authentication system works in three steps:

Step 1: Verification – proving you are you.

Step 2: Authentication – connect biometric data to social security numbers.

Step 3: Registration – register all identifying information to social security number to prove ownership.

Did you know that your IT department may be an unknowing accomplice to cybercrime?

According to Mark Villinski of Kaspersky Labs, 300,000 to 325,000 new threats daily come into Kaspersky to be analyzed. Here’s how IT could be helping to bring in these threats:

  1. Social media mania – not protecting ALL social media accounts of company.
  2. Attention misdirection – focusing on protection only rather than detection and response of threats.
  3. Failing to foster a culture of awareness.
  4. Reliance on compliance – thinking employees are always compliant to policies that protect them as well as the company.

Do you realize that the U.S. spends approximately $10 billion per year to protect the nation’s digital infrastructure? No doubt that’s a costly amount, but if critical infrastructure, including banking, agriculture, water, dams, emergency services, information technology, energy, etc., had adequate security and protection, this dollar amount could significantly decrease.

Mario Castellanos, COO and EVP, CNIguard presented that the elements and components of security seem to overpower the “doing” of security, so our critical infrastructure is in danger of being breached. Therefore, security of critical infrastructure should cover the following to be effective:

Trespassing – harmless curiosity/conscious entry into critical infrastructure facilities.

Vandalism – graffiti, etc.

Property theft – equipment theft, etc.

Tampering and sabotage – intentional act that causes mass destruction of life and property.

About the Author

Ginger Hill is Group Social Media Manager.

Featured

  • Maximizing Your Security Budget This Year

    Perimeter Security Standards for Multi-Site Businesses

    When you run or own a business that has multiple locations, it is important to set clear perimeter security standards. By doing this, it allows you to assess and mitigate any potential threats or risks at each site or location efficiently and effectively. Read Now

  • Getting in Someone’s Face

    There was a time, not so long ago, when the tradeshow industry must have thought COVID-19 might wipe out face-to-face meetings. It sure seemed that way about three years ago. Read Now

    • Industry Events
    • ISC West
  • ISC West 2024 is a Rousing Success

    The 2024 ISC West security tradeshow marked a pivotal moment in the industry, showcasing cutting-edge technology and innovative solutions to address evolving security challenges. Exhibitors left the event with a profound sense of satisfaction, as they witnessed a high level of engagement from attendees and forged valuable connections with potential clients and partners. Read Now

    • Industry Events
    • ISC West
  • Live From ISC West: Day 2

    What a great show ISC West 2024 has been so far. The second day on Thursday was as busy or even more hectic than the first. Remember to keep tabs on our Live From ISC West page for news and updates from the show floor at the Sands Expo, because there’s more news coming out than anyone could be expected to keep track of. Read Now

    • Industry Events
    • ISC West

Featured Cybersecurity

Webinars

New Products

  • Mobile Safe Shield

    Mobile Safe Shield

    SafeWood Designs, Inc., a manufacturer of patented bullet resistant products, is excited to announce the launch of the Mobile Safe Shield. The Mobile Safe Shield is a moveable bullet resistant shield that provides protection in the event of an assailant and supplies cover in the event of an active shooter. With a heavy-duty steel frame, quality castor wheels, and bullet resistant core, the Mobile Safe Shield is a perfect addition to any guard station, security desks, courthouses, police stations, schools, office spaces and more. The Mobile Safe Shield is incredibly customizable. Bullet resistant materials are available in UL 752 Levels 1 through 8 and include glass, white board, tack board, veneer, and plastic laminate. Flexibility in bullet resistant materials allows for the Mobile Safe Shield to blend more with current interior décor for a seamless design aesthetic. Optional custom paint colors are also available for the steel frame. 3

  • ResponderLink

    ResponderLink

    Shooter Detection Systems (SDS), an Alarm.com company and a global leader in gunshot detection solutions, has introduced ResponderLink, a groundbreaking new 911 notification service for gunshot events. ResponderLink completes the circle from detection to 911 notification to first responder awareness, giving law enforcement enhanced situational intelligence they urgently need to save lives. Integrating SDS’s proven gunshot detection system with Noonlight’s SendPolice platform, ResponderLink is the first solution to automatically deliver real-time gunshot detection data to 911 call centers and first responders. When shots are detected, the 911 dispatching center, also known as the Public Safety Answering Point or PSAP, is contacted based on the gunfire location, enabling faster initiation of life-saving emergency protocols. 3

  • Compact IP Video Intercom

    Viking’s X-205 Series of intercoms provide HD IP video and two-way voice communication - all wrapped up in an attractive compact chassis. 3