ISCON2005 Logo Bell - Corporate Event Sponsor
HOME SECURITY CONFERENCE ABOUT US SECURITY TRAINING SPONSORSHIP INFORMATION PARTNERS CONTACT US
Conference Venue Conference Program Conference Reception Gala Dinner Tutorial Pricing and Registration

Speaker Schedule/Agenda

Day 1
Wednesday, June 1, 2005

MORNING

7:30 am - 8:30 am

Registration and Continental Breakfast
Foyer

8:30 am - 8:40am

Welcome Message
Jeffrey Dale, President and CEO
OCRI

8:40 am - 9:00 am

Introduction of Keynote
Charles Salameh, President
Bell Security Solutions
Integrated Security in a Virtualized World

The cost of implementing integrated security can be far lower than implementing a combination of security products requiring different timelines for deployment. Using a myriad of cross-technology security products involves extensive time and effort to bring into alignment. Learn how to circumvent time delays and the expenses caused by these delays in deployment, using best of breed integrated solutions.

9:00 a.m.

Keynote Address
John Pescatore,
Vice President and Research Fellow
Gartner Inc.
Critical Infrastructure Security Issues

9:45 a.m.

Morning Break – Security Pavilion
Demo and coffee

10:15 a.m.

Rod Wallace,
Director, Office of the CTO, Nortel
The Promise of Secure Convergence

Today's critical infrastructure is based on a foundation of convergence mobile users, mobile devices, wireless and wired communications. What is convergence, what are the key drivers, what are the benefits of converging your infrastructure, and most importantly, what security implications does convergence have on the critical infrastructure? We will review these topics and what must be done to ensure security is a significant part of a converged critical infrastructure.

11:00 a.m.

Shaun Illingworth,
Director Strategic Marketing,
March Networks
Next Generation IP Video Surveillance

Fuelled by advances in technology, increased security concerns post 911, and demand for video-based intelligent applications, the replacement wave from analog to IP video is in full deployment. Video surveillance has evolved from the back-office security guard to a networked solution. Today's operations are monitored and managed centrally over existing corporate networks and are able to integrate 3rd party transactional data. The shift from a corporate security to an IT application is here now. We will review the changes in the video surveillance landscape, the benefits of an all networked solution, and advances in video analytics for both security and non-security related applications. Video is considered mission critical for both government and commercial organisations. CIO's and CSO's attending this presentation will be better prepared when faced with the decision to put IP Security Video on their network.

11:30 a.m.

Louis Sénécal,
Systems Engineer, Cisco Systems Canada
Cisco Self Defending Network Drivers, Latest offerings, and vision

The last two years have witnessed the release of very virulent worms and attacks, leading to major business continuity disruptions. The bottom line of many organisations was impacted, leaving their CxO's facing major challenges. This session covers, in depth, Cisco's security offering evolution and Cisco's multi-layer Self Defending Network vision, as it pertains to improving profitability and maximizing return on investments.

AFTERNOON

12:00 p.m.

Lunch - Security Pavilion

1:30 p.m.

Chris Voice,
Vice President, Technology
Entrust

Securing Increased Internet Adoption
As Governments and Enterprises continue to streamline the delivery of goods and services over the Internet, two key challenges are being encountered. The first is regarding the growing customer concern around the protection of sensitive data in the face rapidly escalating incidents of identity theft. The second is the impact of increasing regulations, which demand careful scrutiny of transaction and information flow through applications. This presentation will review how these issues are affecting the continued adoption of the Internet and what options are available to overcome them.

2:00 p.m.

Kevin Reeks,
Director, Identity & Access Services
Bell Security Solutions

Identity & Access – The Cornerstone for
Next Generation IP Services
Identity and access management is quickly becoming a strategic infrastructure for realizing the next generation vision of IP Services. This presentation will explore the major trends, standards, and implementation models available to organizations, and how they are bringing value to their customers through the implementation of identity and access services. Real world examples will be used to illustrate successful implementations.

2:30 p.m.

Imran Mirza,
Senior Director, Secure Channel
Public Works and Government Services Canada

Secure Channel – Building Common Services
The Government of Canada (GoC) is undertaking a fundamental shift in the way it does business. In Budget 2005 the government outlined its commitment to the Shared IT Services Agenda an overall initiative to improve the management of IT services across departments and agencies. This initiative rests on the premise that a government-wide, coordinated approach to managing IT services can yield better, faster, more cost-effective results for clients and taxpayers.

At the heart of the GoC's shared IT services delivery initiative is the common infrastructure for the GoC – the Secure Channel. It provides citizens and businesses with secure and private access to all federated government on-line services as well as network services for all federal departments. Mr. Mirza will outline the capabilities and sophisticated security services currently available from the Secure Channel, highlight some of the business applications now using this GoC infrastructure, and present some of the future services planned for the Secure Channel. He will discuss the challenges of implementing a secure and reliable common infrastructure for the GoC.

3:00 p.m.

Afternoon Break – Security Pavilion
Demo and Break

3:30 p.m.

Ed Therriault,
Director, Electronic Service Delivery,
Bell Security Solutions
Securing Electronic Service Delivery

Security threats loom large in the area of TCP/IP simply because at the time these services became available, security was not considered a high priority. With increasing usage of the Internet to deliver services, security has become vital to the organization. New software solutions are becoming huge organization enablers as they create a secure environment for the data being moved along the public network. Mr. Therriault will outline some of these solutions and address how they can help your organization secure electronic service delivery.

4:00 p.m.

Panel
Moderator: Paul Rowe,
Vice President, Enterprise Marketing, Bell Canada
Transitioning Technology Platforms Best Practises

The transition from legacy to Internet Protocol platforms includes developing partnerships with stakeholder technology firms in order to allow end-users to enjoy carrier grade telecommunications services. Implementing Voice over Internet Protocol (VoIP) with IP service delivery enables the Telecommunications Service Provider to offer an extensive array of services. Participate in the debate on how to leverage these applications to propel business processes forward, and to succeed in a real-time environment, with a panel of experts from different communities. Learn what options are available to achieve and maintain regulatory compliance in this complicated environment.

Participants:
Dr. Anil Somayaji, Assistant Professor, School of Computer Science; Associate Director, Computer Security Laboratory, Carleton University
Dan York, Coordinator, Mitel Product Security Team, Mitel Corporation
Sandra Milloy, Chief Information Officer, Gowling Lafleur Henderson LLP, Barristers & Solicitors, Patent & Trade Mark Agents

5:00 p.m.

Reception – Sponsored by BBTI
Security Pavilion

Day 2
Thursday, June 2, 2005

MORNING

7:30 a.m.

Continental Breakfast Pavilion

8:30 a.m.

Introduction to Keynote
Debra Weinstein,
LaBarge Weinstein LLP, Legal Policy

8:45 a.m.

Keynote Address
Mary Carman,
CIO, Industry Canada

Government Strategy,
Cost of non-Conformance
Today's critical infrastructure operates in an environment where the threat risks can be intricate and unpredictable, making the delivery of quality products and services an ongoing challenge. Planning assumptions of the past are no longer suitable and Emergency Management and Critical Infrastructure Protection must be included in business processes. Internal costs such as unexpected recovery times and out-of-scope work, and external costs such as data theft, loss of business reputation and business potential and slowed or stopped productivity, can be managed effectively once compliance is reached.

9:30 a.m.

Brian O'Higgins,
Chief Technology Officer
Third Brigade Inc.

Preparing for Zero-Day Attacks
Perimeter security continues to evolve with each new threat and vulnerability. Systems are under a continuous barrage of new software patches and fixes where unfortunately, as soon as you plug one hole, new vulnerabilities and attacks are discovered. Targeted web application attacks are the latest concern as the reliance on Internet for doing business grows. These attacks are launched against vulnerabilities in application software, even before you know of the security issue and can apply a patch. This is known as a "zero-day" event -- when you are hit before you knew you had a problem. This session will discuss how intrusion prevention technology can be used as a compensating control to shield servers and protect sensitive data from these attacks, and grant you precious time to respond appropriately.

10:00 a.m.

Morning Break – Security Pavilion
Demo and coffee

10:30 a.m.

George McBride,
Managing Principal, Security Practice
Lucent Worldwide Services

Essentials of Risk Management
Security is very often the reason for an organization to “put off” implementing advanced technology. A better approach is to mitigate the risk to an acceptable level; avoiding the risk means avoiding progress. Mr. McBride will discuss risk management and the concept of “acceptable” risk; you will leave this session knowing how to determine acceptable risk and what influences it. Gain insight into some of the essential components of a risk management program including roles and responsibilities, governance, staffing, and leadership.

11:00 a.m.

Martin Dion,
Chief Technology Officer and
Corporate Security Officer
Above Security

Managed Security Services and the New ISO17799: 2005 Standard
The new ISO17799: 2005 standard will be published next fall. The speaker will introduce the audience to the upcoming changes in this internationally accepted standard, the impact these will have on an organization, and the relationship they have to existing the Government of Canada policy (GSP). Also addressed will be how MSSPs can support the implementation process to bring about these changes in a seamless manner.

11:30 a.m.

Donald Toussaint,
Manager, ITS Risk Management Services,
Information Technology Security Directorate,
Public Works & Government Services Canada

Demystifying Certification & Accreditation
Upon implementation of the 2002 Government Security Policy, certification beca.m.e mandatory for all government systems. Learn how PWGSC has successfully implemented its certification progra.m., from small systems to very complex government initiatives such as the Secure Channel. Mr. Toussaint will be sharing “tricks of the trade” and the “do's and don'ts” regarding certification, as well as providing some cost metrics to help with budgeting for this activity.

AFTERNOON

12:00 p.m.

Lunch - Pavilion

1:30 p.m.

Syd Hancock,
Professor (LColonel ret'd)
Algonquin College

CIO and CSO: Friends or Foes?
Dividing up the InfoSec Pie
Acknowledgement of interdependencies for information security should begin within the organization. The widespread adoption of the Chief Information Officer position in companies & government is being followed now by a similar pattern for the Chief Security Officer. Both appointments are stakeholders in information security. The CEO will expect CIO & CSO to manage information security between them, efficiently and effectively. This is not always so. Professor Hancock will explore arguments for whom should do what to control the wide range of information security issues challenging the organization today.

2:00 p.m.

Lloyd Ellam,
Director, Crisis Management
Bell Security Solutions

Securing the Emergency Preparedness
Infrastructure
Measures are needed to provide a holistic approach to crisis management. Mr. Ellam will discuss the positive business effects of how areas such as business continuity, emergency preparedness, and emergency response are vital to protecting and securing an organization's infrastructure. Walk away with the process and methodologies are used to introduce, implement, and manage the information infrastructure during a crisis. Learn what is required to make sure all functions and geographic areas are plugged into the same plan.

2:30 p.m.

Michael Weider,
Founder and CTO,
Watchfire

Web Application Security: The New Battlefront in Online Risk
High profile application security and online privacy breaches have fuelled fear of completing transactions and sharing personal information over the Internet. The recent shift in focus from network-based to application-based vulnerabilities has left many organizations exposed, and privacy and security legislation such as PIPEDA, GLBA, HIPAA, and SB 1386, combined with the startling rise in “phishing” “pharming” and identity theft, have made it necessary for organizations to comply with and manage a myriad of online requirements. Non-compliance results in brand, reputation and trust erosion; lost revenue and business opportunities; and in many cases, litigation. Explore how to better understand potential online risk management issues, including web application security vulnerabilities and how to establish enterprise risk management processes for the online channel at this session.

3:00 p.m.

Afternoon Break – Foyer
Demo and Break

3:30 p.m.

Panel
Moderator: Philippa Lawson,
Canadian Internet Policy and
Public Interest Clinic (CIPPIC)

Canadian Homeland Security: Lawful Access
After issuing a public Consultation Document in August 2002, the federal government, through the departments of Public Safety and Emergency Preparedness Canada (PSEPC), Industry Canada, and Justice, developed lawful access proposals that would outline the requirements of telecommunications service providers (TSPs) to provide basic intercept capabilities to law enforcement and national security agencies. Exemption and compliance rules, operational requirements, and reporting and inspecting obligations have also been brought forth, to name a few. Cost recovery plans, ranging from zero cost recovery to full recovery have been outlined. The panel will discuss these proposals and their possible effects and implications from a business, government and end-user perspective.

Participants:
Todd P. McDermott, Vice President, Verint Systems Inc.
David McMahon, Director, Homeland Security Bell Security Solutions
Michael Power, Partner/Chief Privacy Officer, Gowling Lafleur Henderson LLP, Barristers & Solicitors, Patent & Trade Mark Agents
John Lawford, Research Analyst, Barrister & Solicitor, Public Interest Advocacy Centre (PIAC)

5:00 p.m.

Steve Shivkumar,
President
Building Blocks Technologies Inc.

Conference Closing Remarks


6:30 p.m

Pre-Dinner Reception
Foyer

7:30p.m.

Dinner with Rudy Giuliani
Confederation I & II

The world has changed since September 9/11 and with this has come a need to protect private citizens and the public sector and its infrastructure. Drawing on his first hand experience, Mr. Giuliani offers insight into post 9/11.

Master of Ceremonies:
Paul Brent, CJOH-TV

Introduction by Michael J. Sabia
President and Chief Executive Officer
Bell Canada Enterprises
© 2005, Building Blocks Technologies, Inc. All rights reserved.