<HTML><head>
<meta name="robots" content="noindex" />
</head>
<BODY link="#008000" vlink="#002000">

<left><title>Building a Database Security Program Derbycon 2012 (Hacking Illustrated Series InfoSec Tutorial Videos) </title>
<CENTER>
<b><font size="6">Building a Database Security Program<br>
Derbycon 2012</font><font size="4"> </font></b>
<p>In today’s world of Information Security, we implement technical controls 
almost everywhere. As such, you would probably be hard pressed to find an 
up-to-date InfoSec department that didn’t manage firewalls, IDS/IPS systems, Web 
Application Firewalls, HIDS/HIPS, AV for clients and servers, and full disk 
encryption for laptops. While these types of systems can be useful, in most 
cases they fail to prevent a company’s IP and customer data from being stolen by 
attackers.<br>
<br>
This talk will present a model that can be used by companies to effectively 
detect and prevent such breaches by implementing a database security program 
focused on business integration, proactive security controls, and continuous 
monitoring and alerting. Examined will be the key focus areas of the program 
along with how each provides greater visibility to security and the business, 
and makes it possible to respond quicker to potential security incidents – 
potentially preventing a breach altogether.<br>
<br>
Matt Presson<br>
<br>
Matt is an Application Security Analyst with Willis North America where he is 
responsible for performing penetration tests/vulnerability assessments of 
internal and third party applications, as well as designing and implementing the 
organization’s database security strategy. Matt has been in the Information 
Security industry for 5 years and holds a number of industry certifications from 
GIAC and (ISC)^2.</p>
<p><br>
<iframe width="853" height="480" src="http://www.youtube.com/embed/GhtlxACWrQg" frameborder="0" allowfullscreen></iframe></p>

<p><a href="http://www.irongeek.com/i.php?page=videos/derbycon2/mainlist">Back to Derbycon 2012 video list</a></p>
</CENTER></left><!-- Begin Adsense Code -->
<center>
<script async src="//pagead2.googlesyndication.com/pagead/js/adsbygoogle.js"></script>
<!-- Bigger Box -->
<ins class="adsbygoogle"
     style="display:inline-block;width:336px;height:280px"
     data-ad-client="ca-pub-3256770407637090"
     data-ad-slot="9758277793"></ins>
<script>
(adsbygoogle = window.adsbygoogle || []).push({});
</script>
</center>
<!-- End Adsense Code -->
<script type="text/javascript">
function killclippy()
{
var exdate=new Date();
exdate.setDate(exdate.getDate() + 150);
var c_value=escape(true) + "; expires="+exdate.toUTCString();
document.cookie="killclippycookie=" + c_value;
document.getElementById('clippy').style.visibility = 'hidden';
}
</script>
<!-- analytics -->
<script type="text/javascript">

  var _gaq = _gaq || [];
  var pluginUrl ='//www.google-analytics.com/plugins/ga/inpage_linkid.js';
  _gaq.push(['_require', 'inpage_linkid', pluginUrl]);
  _gaq.push(['_setAccount', 'UA-186935-2']);
  _gaq.push(['_setDomainName', 'irongeek.com']);
  _gaq.push(['_trackPageview']);

  (function() {
    var ga = document.createElement('script'); ga.type = 'text/javascript'; ga.async = true;
    ga.src = ('https:' == document.location.protocol ? 'https://ssl' : 'http://www') + '.google-analytics.com/ga.js';
    var s = document.getElementsByTagName('script')[0]; s.parentNode.insertBefore(ga, s);
  })();

</script>
<!-- analytics -->
<P align=center><B>If you would like to republish one of the articles from this site on your webpage or print journal please contact <A href="i.php?page=contact"><font color="#FFFFFF">IronGeek</font></A>.</B></P>
<P> 
<P align=center>Copyright 2020, IronGeek</FONT></BODY></HTML>