Critical Infrastructure

 

Education Level: Intermediate

5119 - Using Public Data to Alert Organizations of Vulnerabilities

Tuesday, September 26
10:30 AM - 11:30 AM

Since the dawn of the internet, white hats and black hats alike have been identifying potentially vulnerable systems. In March 2016, a black hat printed hate speech on more than 20,000 vulnerable printers. While reading and studying how this particular black hat executed the attack, the Missouri Office of Cyber Security (OCS) started formulating how it could use the same technique to identify vulnerable systems on the internet—but use the results for good. Using openly available data harvested through various services, OCS has been identifying vulnerable systems statewide, including systems belonging to both government and non-government organizations. Learn about the techniques OCS used, its findings and how you can use open data to protect your organization.

Learning Objectives:

Michael Roling

CISO
State of Missouri

Michael Roling has been the CISO for the Office of Administration, Information Technology Services Division for the State of Missouri since 2009. He heads the Office of Cyber Security and is responsible for overseeing the information security posture for the State of Missouri. Michael has been employed by the State of Missouri since 2003.

As CISO, he has transformed the security culture throughout government, introduced new processes and technologies that have enabled IT to swiftly and effectively respond to incidents, and has implemented various policies that have strengthened IT governance. Prior to joining state government, Michael worked at AT&T and Anheuser-Busch. Hel earned a B.S. in management information systems from Saint Louis University.

Presentation(s):

Send Email for Michael Roling

Theresa Frommel

Security Analyst
State of Missouri

Theresa Frommel, CISSP, is a network security analyst for the Office of Administration, Information Technology Services Division for the State of Missouri. She is responsible for incident response and coordinating end user awareness for the SOC within the Office of Cyber Security. She has a background in access controls, policy development and end user education. Her prior experience includes working as a security analyst with the Missouri Research and Education Network and information security officer with Missouri’s Office of State Courts Administrator. Theresa received her CISSP in 2008 and has been in the information security field since 2002.

Presentation(s):

Send Email for Theresa Frommel

Aaron Schubert

Security Infrastructure Manager
State of Missouri

Aaron Schubert joined the State of Missouri in 2003 after graduating college in 2001 with a degree in networking systems technology. His roles as both a network and Unix/Linux administrator reinforced an interest in the Office of Cyber Security, which he joined in 2009. Aaron is now responsible for the deployment, integration and administration of the various technologies utilized in the Office of Cyber Security's daily operations.

Presentation(s):

Send Email for Aaron Schubert


Assets

5119 - Using Public Data to Alert Organizations of Vulnerabilities

MP3 Audio Slides Video

Attendees who have favorited this

Please enter your access key

The asset you are trying to access is locked. Please enter your access key to unlock.

Send Email for Using Public Data to Alert Organizations of Vulnerabilities