International Program on Information Assurance and Management
(For Executives of Banks and Financial Institutions)
University at Buffalo, The State University of New YorkAugust 17-22, 2012
One of the missions of the Center of Excellence in Information Systems Assurance Research and Education (CEISARE) is to increase awareness in information assurance (IA) by arranging seminars, conferences and workshops. The goal of this five and half-day workshop is to educate customers in banking and financial institutions in the area of IA and management so that they are better prepared to deal with malicious attacks targeted at their systems and network. In this week-long workshop, we will cover the following topics - Management of information security, Risk analysis and mitigation, Cyber attacks and countermeasures, Collection and analysis of digital evidence. The topics will be covered by experienced instructors from both academia and industries with prior experience of teaching and firsthand experience in the field. The workshop will include interactive teaching and case studies and a visit to a nearby corporate network operations center (NOC)*.
* Additional requirements may apply.
| International Program on Information Assurance and Management | |
| Day 1: Thursday - August 16, 2012 | |
| 1800 - 2000 | Welcome Reception - Westwood Country Club |
| Day 2: Friday - August 17, 2012 | |
| 0800 - 0830 | Breakfast |
| 0830 - 0900 | Brief
introduction to CEISARE, CUBS, SOM, IDRBT and Overview of Program followed by Welcome Remarks: Alexander Cartwright -Vice President for Research and Economic Development |
| 0900 - 1000 | Introduction to Information Assurance - Prof. H.R. Rao |
| 1000 - 1015 | Coffee Break |
| 1015 - 1230 | Information Security
Management: Risks and Mitigation - Prof. H.R. Rao Case 1.1: Contingency Planning - Prof. H.R. Rao |
| 1230 - 1330 | Lunch |
| 1330 - 1430 | Malware and Cyber Attacks - Prof. H.R. Rao |
| 1445 - 1545 | Guest
Lecture on Risk: John Walp - Administrative Vice-President and CISO, M&T Bank |
| 1545 - 1600 | Coffee Break |
| 1600 - 1700 | Guest
Lecture on Business Continuity and Disaster
Recovery: Jeff Shaw - Administrative Vice President, BCP/DR, M&T Bank |
| Day 3: Saturday - August 18, 2012 | |
| 0830 - 0900 | Breakfast |
| 0900 - 1030 | Information Security: Monitoring Performance/Metrics - Dr. Manish Gupta |
| 1030 - 1045 | Coffee Break |
| 1045 - 1215 | Risks associated with Online banking: Remote banking/Delivery channels ATMs, Mobile banking - Dr. Manish Gupta |
| 1215 - 1315 | Lunch |
| 1315 -1430 | Cyber Warfare - Monitoring and Alerts - Dr. Manish Gupta |
| 1430 - 1500 | Case 2.1: Automating Compliance - Dr. Manish Gupta |
| 1500 - 1515 | Coffee Break |
| 1515 - 1600 | Cloud Computing and Security - Dr. Manish Gupta |
| 1600 -1630 | Storage Security - Dr. Manish Gupta |
| Day 4: Sunday - August 19, 2012 | |
| 1030 - 1530 | Erie Lakefront and Lunch |
| 1700 - 2200 | Niagara Falls and Banquet |
| Day 5: Monday - August 20, 2012 | |
| 0800 - 0830 | Breakfast |
| 0830 - 1030 | Insider Fraud and Threats -
Prof. Linda Volonino Case 3.1: Insider Threats - Prof. Linda Volonino |
| 1030 - 1045 | Coffee Break |
| 1045 - 1145 | End-point, Mobile and BYOD
Threats and Security Strategies - Prof. Linda
Volonino Case 3.2: Managing End-point and BYOD Security Risks - Prof. Linda Volonino |
| 1145 - 1230 | Lunch |
| 1300 - 1430 | Visit to NOC/SOC at M&T Bank |
| 1500 - 1630 | Visit to NOC/SOC at Yahoo Data Center |
| 1730 - 1900 | Reception |
| Day 6: Tuesday - August 21, 2012 | |
| 0830 - 0900 | Breakfast |
| 0900 - 1015 | Wireless Security - Prof. David Murray |
| 1015 - 1030 | Coffee Break |
| 1030 - 1230 | Collection and Analysis of
Digital Evidence - Prof. David Murray Case 4.1: Tracking a Computer Intruder - Prof. David Murray |
| 1230 - 1330 | Lunch |
| 1330 - 1430 | Guest
Lecture on Fighting against Financial
Crime: Prakash Samaga - First Vice President, Regulatory Compliance Solutions Manager, First Niagara Financial Group Inc. |
| 1430 - 1445 | Coffee Break |
| 1445 - 1615 | Guest
Lecture on Proactive Forensics in Compliance
101: Michael McCartney - CEO and President, DIGITS LLC. |
| 1615 - 1715 | Cyber Security: Use of CAPTCHAs for Remote Authentication - Prof. Venu Govindaraju |
| 1900 - 2100 | IDRBT Sponsored Farewell Dinner |
| Day 7: Wednesday - August 22, 2012 | |
| 0830 - 0900 | Breakfast |
| 0900 - 1200 | Visit to NOC at UB Center for Computational Research |
| 1200 - 1230 | Concluding Remarks |
| 1230 - 1330 | Lunch |
Organized by:
Shambhu Upadhyaya
Director, CEISARE
Professor, CSE
Email: shambhu@buffalo.edu
Center of Excellence in Information Systems Assurance
Research and Education
Venugopal Govindaraju
Director, CUBS
SUNY Distinguished Professor, CSE
Email: govind@buffalo.edu
Srirangaraj Setlur
Principal Research Scientist, CUBS
Email: setlur@buffalo.edu
Director, CUBS
SUNY Distinguished Professor, CSE
Email: govind@buffalo.edu
Srirangaraj Setlur
Principal Research Scientist, CUBS
Email: setlur@buffalo.edu
B. Sambamurthy
Director, IDRBT
Email: bsambamurthy@idrbt.ac.in
B. M. Mehtre
Associate Professor, IDRBT
Email: bmmehtre@idrbt.ac.in
Institute for Development and Research
in Banking Technology
Director, IDRBT
Email: bsambamurthy@idrbt.ac.in
B. M. Mehtre
Associate Professor, IDRBT
Email: bmmehtre@idrbt.ac.in
Institute for Development and Research
in Banking Technology