ISACA Image - Updated 1-4-10
ISACA Phoenix Chapter Newsletter

May 2013 
In This Issue
Responding to Targeted Cyber Attacks
May Chapter Meeting: Common Vulnerabilities in eCommerce
Volunteer Opportunities
Past Presentations
Quick Links

Featured Article

 

 

 

  

A breach will eventually occur - is your organization ready?

The threat environment has radically changed over the last decade. Most enterprises have not kept pace and lack the necessary fundamentals required to prepare and plan against cyberattacks.

To successfully expel attackers, the enterprise must be able to:

  • Conduct an investigation
  • Feed threat intelligence into a detailed remediation/eradication plan
  • Execute the remediation/eradication plan

This publication covers a few of the basic concepts that will help answer the key questions posed by a new outlook: that a breach WILL eventually occur.

 

Dear  ,

  

It is that time of the month again when the monthly Chapter Newsletter gets put together.

 

For me it is the last Chapter Newsletter that I will play any role in. And, anyway it is Aaron Cook who is the publisher, editor-in-chief and reporter all rolled into one.

 

It is Aaron who takes the time to gather the pertinent details and articles that make the Chapter Newsletter worth reading. For that I thank you Aaron. You are and always will be the strongest player on the ISACA Phoenix Chapter's Board of Directors in whatever title you carry.

 

I am happy to say I am turning over the running of the Chapter to the best person to carry it forward. Aaron all the best to you and your new Board.

 

And, to everyone else thank you for allowing me the opportunity to hold the reins of President of your Chapter for the last two years.


Regards,
President, ISACA Phoenix Chapter
 
   May Chapter Meeting: Common Vulnerabilties in eCommerce Systems
Bill Curd, PhD


Evening Meeting

May 23rd

Check in begins at 5pm, presentation 5:30 to 7pm 

 

***In an effort to increase chapter attendance, registration is reduced to $10 for this meeting***   

 

We'll take a high-level tour of common vulnerabilities in e-commerce systems with special focus on various ways of thwarting SSL, digital certificates and signatures, and PKI protections. We'll also touch on SQL injection, price manipulation, buffer overflows, cross-site scripting, remote command execution, weak authentication and authorization which are the most common vulnerabilities in e-commerce systems.

Bill will attempt to bring content and perspective that you haven't seen elsewhere as he did in his well-received previous talk for the chapter on "Holistic Cyber Security, Compliance & Audit".

  

Cost: $10 Member, $40 Non-Member

2 CPEs 

   

Location:

SRP's PERA Club

Salt River Project's PERA Club
1 E. Continental Drive
Tempe, Arizona 85281 


  
 
   
Volunteer Opportunities

Are you interested in connecting with security and audit professionals and helping to give back to the profession?  There are variety of volunteer opportunities available.  Volunteer opportunities can be as little as a one-time, 2 hour commitment, or have repeating responsibilities.  There are needs on the Communications, Membership, Certifications, and Education committees.  Please visit the Volunteer Page to send an email to the respective committee chair. 
   
 
Past Meeting Presentations
 
Past meeting presentations are always available via the chapter's   website.