The IT Certification Resource Center

Featured Deal

Get CompTIA, Cisco, or Microsoft training courses free for a week.
Learn More ❯

(ISC)² Releases Conference Program for its Fourth Annual Security Congress

Security Congress Offers Global Speaker Line-Up Covering More Than 80 Educational Sessions across Nine Tracks for Over 20,000 Attendees

Clearwater, FL., U.S.A., May 8, 2014 — (ISC)²® (“ISC-squared”), the largest not-for-profit membership body of certified information and software security professionals with over 100,000 members worldwide, today released the full education program and speaker line-up for its fourth annual Security Congress, taking place September 29 – October 2, 2014 at the Georgia World Congress Center in Atlanta, Ga. Once again, (ISC)² Security Congress will be colocated with the ASIS International 60th Annual Seminar and Exhibits, bringing together more than 20,000 professionals from around the world for four days of education, networking, and an expansive exhibit floor of security products and services. The complete program can be viewed at

“Security professionals are under increasing pressure to stay up-to-date on emerging issues, trends, and technologies, making this year’s theme ‘Strengthening Cybersecurity Defenders’ very timely,” said W. Hord Tipton, CISSP, executive director of (ISC)². “With over 80 interactive sessions and access to unique services like the Career Pavilion and Town Hall Meeting, the professional development opportunities are abundant.”

Key conference tracks include: Application Security/Software Assurance; Cloud Security; Digital Forensics; Governance, Regulation and Compliance; Healthcare Security; Malware; Mobile Security; Swiss Army Knife – Tips, Tools and Techniques for the Well-Rounded Infosecurity Professional; Threats – Inside & Out.

Conference Keynotes Include:

• John Huntsman, Jr., governor of Utah (2005-2009) and candidate for the 2012 Republican Presidential nomination
• General Colin L. Powell (Retired)

(ISC)² General Session:

• Adam Shostack, program manager, Microsoft: “Threat Modeling Lessons from Star Wars”

Notable Speakers and Sessions Include:

• Marene Allison, VP & CISO, Johnson & Johnson; Terry Rice, Associate VP & CISO, Merck & Co.; Michael McNeil, global product security & service officer, Philips; Dr. John D. Halamka, chairman, HITSP: “The Evolving Cyber and Insider Risks of Healthcare – 10 Things Every Healthcare Organization Should Know”

• Devon Bryan, CISSP, CISA, CIPP/US, CIPP/EU, vice president, Global Trust Assurance, ADP; Trina Ford, CISSP, CIPP, director, Global Third Party Risk Management, ADP: “Holistic Vendor Risk Assurance: A View from the Trenches”

• Dr. Zejin Jason Ding, research scientist, Barracuda Labs: “The Wonderland of Malicious Social Networks”

• Dan Houser, CISSP-ISSAP, ISSMP, HCISPP, CCFP, CISA, CISM, security & identity architect, Cardinal Health; Jeff Graham, senior advisor, Data Analytics Center of Excellence, Cardinal Health: “Securing Big Data: Lock it Down or Liberate It?”

• Dave Lewis, CISSP, global security advocate, Akamai Technologies: “Supply Chain: The Exposed Flank”

• Dr. H. Karen Lu, CISSP, CCSK, principal research engineer, Gemalto, Inc.: “A Client Side View on API Security”

• Javvad Malik, CISSP, senior analyst, Enterprise Security Practice, 451 Research: “All the Gear, No Secuirty”

• Jennifer Minella, CISSP, VP of Engineering, Carolina Advanced Digital; Mike Rothman, analyst/president, Securosis: “Neuro-Hacking 101: Taming Your Inner Curmudgeon”

• Dr. Tom Prunier, CISSP, ACE, chief cyber forensics scientist, Lockheed Martin: “What is Hiding in the Virtual Environment Host Memory Space and Should we be Worried?”

• Wim Remes, CISSP, managing consultant, Security Services, IOActive: “Threat Modeling: It’s Not out of Fashion”

• Roger Thompson, director, Emerging Threats, ICSA Labs: “The Current State of Malware”

• Tony Vargas, CISSP-ISSAP, CSSLP, Security+, technical leader and security strategist, Cisco Engineering; Josh Corman, CTO, Sonatype; Mano Paul, CISSP, CSSLP, founder/CEO, SecuRisk Solutions; Chris Romeo, CISSP, chief security advocate, Cisco Secure Development Lifecycle, Cisco Systems; Tim Virtue, CISSP, CCSK, CISA, CIPP/G, CFE, CISO, “DevOps & Appsec Panel: Why DevOps and Appsec are so Important in an IoT World”

• Spencer Wilcox, CISSP, SSCP, lead security strategist, Excelon: “Bring Your Own Destiny: The End of Mobile Privacy”

Security Congress will include a series of other (ISC)² events that can be attended by members and non-members:
• Several pre-conference sessions, including training for Cloud Forensics and Business Acumen for the Cybersecurity Professional
• Free, half-day clinics for (ISC)² credentials (CCFPSM, CISSP®, CISSP-ISSAP®, CISSP-ISSMP®, CSSLP®, and HCISPPSM)
• (ISC)² Town Hall Meeting and Member Reception [(ISC)² members only]
• Safe and Secure Online® Volunteer Orientation [(ISC)² members only]

The Security Congress program is available online, offering attendees an opportunity to personalize their event experience. (ISC)² members are eligible for special discounted pricing and will be able to attend any of the ASIS events including keynotes, networking lunches, and educational sessions. More details are available at

About (ISC)²®
Formed in 1989 and celebrating its 25th anniversary, (ISC)² is the largest not-for-profit membership body of certified information and software security professionals worldwide, with over 100,000 members in more than 135 countries. Globally recognized as the Gold Standard, (ISC)² issues the Certified Information Systems Security Professional (CISSP®) and related concentrations, as well as the Certified Secure Software Lifecycle Professional (CSSLP®), the Certified Cyber Forensics Professional (CCFPSM), Certified Authorization Professional (CAP®), HealthCare Information Security and Privacy Practitioner (HCISPPSM), and Systems Security Certified Practitioner (SSCP®) credentials to qualifying candidates. (ISC)²’s certifications are among the first information technology credentials to meet the stringent requirements of ISO/IEC Standard 17024, a global benchmark for assessing and certifying personnel. (ISC)² also offers education programs and services based on its CBK®, a compendium of information and software security topics. More information is available at