Export to

• Google Calendar
• iCalendar file
• hCalendar markup
  <div class="vevent h-event"> <h1 class="summary p-name">ISSA Portland Holiday Meeting</h1> <div class='date'><time class="dtstart dt-start" title="2013-12-12T15:30:00" datetime="2013-12-12T15:30:00">Thursday, December 12, 2013 from 3:30</time>–<time class="dtend dt-end" title="2013-12-12T19:30:00" datetime="2013-12-12T19:30:00">7:30pm</time></div> <div class="location vcard p-location h-card"> <a class="url" href='http://calagator.org/venues/202394271'><span class='fn org p-name'>Embassy Suites Portland-Washington Square Ambassador South Ballroom</span></a> <div class="adr p-adr h-adr"> <div class="street-address p-street-address">9000 SW Washington Square Rd</div> <span class="locality p-locality">Tigard</span> , <span class="region p-region">Oregon</span> <span class="postal-code p-postal-code">97223</span> <div class="country-name p-country-name">US</div> (<a href='https://maps.google.com/maps?q=9000%20SW%20Washington%20Square%20Rd,%20Tigard%20Oregon%2097223%20US'>map</a>) </div> </div> <div class="description p-description"> <p>Please register to attend the event online: <a href="http://www.eventbrite.com/e/issa-portland-holiday-party-tickets-8163746987">http://www.eventbrite.com/e/issa-portland-holiday-party-tickets-8163746987</a></p> <p>When: Thursday, December 12, 2013 from 3:30 to 7:30 (PST)</p> <p>Location: Embassy Suites Portland-Washington Square Ambassador South Ballroom 9000 SW Washington Square Rd. Tigard, Oregon. 97223</p> <p>Presentation: Considerations of a Mature Vulnerability management Program In this presentation, Jesika McEvoy with Rapid7 will address best practices for standing up an effective vulnerability management program. Key questions like the following will be answered:</p> <ul> <li>What are the roles/responsibilities that are needed to do vulnerability management?</li> <li>What kind of timelines are reasonable in terms of expectations for remediation of a vulnerability after a scanner finds it? Are there industry best practices?</li> <li>When a vulnerability is found that cannot be directly remediated via a patch or configuration change, what should a company do? Are there best practices for various types of mitigating controls that should be considered? What is the role for risk acceptance, and how should risk acceptance be documented and periodically reviewed?</li> <li>How can organizations take the results from traditional network vulnerability scanners, and manual penetration testing engagements from third parties, and static/dynamic application security testing (for example: Veracode) results and manage them all in a comprehensive vulnerability management program.</li> </ul> <p>Cost: $10 (member) / $15 (non-member) / $20 (at-the-door)</p> <p>CPEs: ISSA meeting are appropriate for CPE credit. The chapter maintains proof of attendance for members but it is the members responsibility to ensure that these CPE's are credited to their respective accounts.</p> </div> <h3>Links</h3> <ul> <li><a class="url u-url" href="http://www.eventbrite.com/e/issa-portland-holiday-party-tickets-8163746987">Website</a></li> </ul> </div>