Is there a strategy for a successful DLP deployment?

Save the DateKlick for the .ics file to save the date

 

Target Audience Information Security Professionals
CIO’s, CISO, IT Manager, Security Officer, Security Architects and Engineers – all from end customer side who are interested in IT Security

From Consultancies and Resellers/Integrators are only technical peoples allowed to take part. Vendors and people with a Sales/Marketing role are not authorized as participants.

CPE Credits Earn 4.25 CPE (Continuing Professional Education) for attending this SIGS Event. Please request a confirmation.
Location Hilton Zurich Airport Hotel
Hohenbuehlstrasse 10
8152 Opfikon-Glattbrugg

There are a lot of free park places available.
Train: railway station Zurich Airport – take the Hotel Shuttle

Date of Event 30th of August 2017
Language English, if non-German speaking people will attend, otherwise German
Schedule see agenda below
Participation Costs Fr. 55.— per participants
Organization, presentations, beverages and aperitif included

Agenda

2:00 – 2:30 Registration & Kaffee
2:30 – 2:50 Günter Koinegg, Head of Big Data and Cybersecurity CEE at Atos

Prescriptive Security to protect your critical data
Data breaches keep on impacting businesses hard. And the rate at which they hit companies show no sign of easing. At the same time organisations grow more reliant than ever on information to achieve success. Data security is business-critical in a world where information has become one of the most precious business assets.

The answer to tackling this challenge lies in providing companies with the ability to predict security threats before they even occur. With the right security strategy and solution, businesses can move themselves into a position where they can detect and neutralize attacks before their critical data is compromised.

Günter will explain in his presentation how prescriptive security can support a successful DLP deployment.

2:50 – 3:10 Matt Logan, Director Field Engineering EMEA and India at Digital Guardian

Time to value – Threat Aware Data Protection, the new Data Loss Prevention
Data Loss Prevention has received a lot of negativity over the past decade, with failed implementations, lengthy and costly consultation work, a lack of understanding of what to protect, the list goes on. Unfortunately, with increasing malicious activity internally and externally, via influencers whom infiltrate organisations to steal your data, these days, breaches are inevitable; but data loss does not have to be!

We are entering the dawn of a new age with Threat Aware Data Protection, the ability to detect internal and external threats, classify and control data automatically with greater accuracy, and most importantly, providing a quicker time to value.

Matt Logan will present how Threat Aware Data Protection can help decrease the time to value whilst reducing risk enabling your data assets to remain secure. He will also share his 10 years of data protection experience and discuss how to correctly implement data protection programs.

3:10 – 4:00 Martin Rohrer, Information Security Officer at Bank Julius Baer & Co. Ltd.

Catch me if you can, or how to implement and run a Data Leakage Prevention System

  • This session will describe the long and somewhat rocky road travelled by Julius Baer to a Data Leakage Prevention (DLP) solution
  • The presentation starts with an introduction to positioning the term “DLP” and how it is interpreted Julius Baer
  • A greater part of the session will be spent on how Julius Baer has implemented technology and processes, and why the communication to the organisation and the definition of a job profile for DLP incident managers were of high importance
  • Lessons learnt from the implementation project as well as the challenges which were faced during operations will be shared with the audience, providing valuable insights
  • Participants will also get an understanding of the next steps for improving the DLP at Julius Baer, including data at rest capabilities which might become useful for future GDPR compliance

Why attend this session?
You should not miss this session if your company has ever considered or is planning to use a DLP solution. The presentation, including Martin’s nine ‘take aways’, will help Members to understand if and how such a solution could be used in their company, and what they should expect from a project and operations point of view.

By attending this session members will:

  • understand the concept of data leakage prevention for data in motion and at rest
  • know the unique selling points to the organization for such a project
  • understand the main challenges when introducing a DLP Solution to an organization
  • appreciate the importance of communication to end users
  • receive Martin’s nine points of DLP wisdom as a take away
4:00 – 4:30 Pause
4:30 – 5:00 Torben Dziuk, Security Solution Architect at Atos

Data security breaches happen daily. A Hackers View
Actual Data-Breach-Reports indicate a high number of compromises each year. Nevertheless, it is assumed that many cases remain unreported and therefore the data collected do not necessarily give the full picture of the situation. To analyze the situation accordingly, actual Data-Breach-Reports will be inspected and enhanced with a hackers view of attacking vectors.

It is crucial to assess company’s infrastructure for the basic causes which will be outlined.

5:00 – 5:30 Manfred Knoblechner, Dipl.-Ing. at Primetals Technologies Austria Gmbh – A joint venture of Siemens, Mitsubishi Heavy Industries and Partners

The key role of DLP in IP Protection for Metals Industry
This presentation will start with a short history of the development of the DLP solution in Primetals and how the DLP solution of a Siemens branch has evolved to a global solution for the whole company.

The main part of this session will cover the challenges faced at Primetals in launching a DLP solution, the lessons learned from the DLP implementation project and our experience with the operation of Digital Guardian. We will talk about wrong expectations and the different approaches in using Digital Guardian as the preferred DLP solution, taking into account the different national security policies and regulations.

In attending this session you can learn which steps from our perspective might be crucial for a DLP implementation in your company and what to consider in advance to make your own Digital Guardian installation a success story from the very first moment.

5:30 – 6:00 Gion Manetsch, Information Security Officer and Lead Security Architect at Post CH AG

Some Hints for your DLP Projects
DLP (data loss prevention) may be an important issue in the context of various compliance requirements, including FINMA guidelines, PCI or GDPR.

Unfortunately, you cannot just buy a tool and implement it. This should be done after having cleared a lot of stuff.

My presentation will therefore not discuss the technical implementation of a DLP product, but rather all the things you have to consider going for a DLP solution. Which questions must have been answered, which requirements must be available in order to go in the direction of DLP. Which prerequisites (roles and processes, type of data) must be known in order to get benefit out of a DLP solution. What impact will a scenario with Hybrid IT (On Premise and Cloud) have to DLP? At the end of the presentation, you should have some hints for your DLP project.

6:00 – 6:30 Panel Discussion
6:30 – open end Apéro Riche & Networking
The speakers will be onsite for Q&A

 

The Sponsors of this event are:

This is a ‘must attend’ event for all security professionals! We are confident that the relationships you develop here will prove to be crucial to your continuing success.

So don’t wait and register here if you have a XING account. If you don’t have or don’t like to have a XING account, just send us an email

With the registration for this event you accept, that SIGS may use the data entered for its own purposes and may share it with its event partners and event sponsors of this specific platform.

Mobile Menu