CALL FOR SPEAKERS
ABSTRACT SUBMISSION: 07 MAY 2010 - Now Closed

SPEAKERS NOTIFIED: 14 MAY 2010
DRAFT PRESENTATION DUE: 21 MAY 2010
FINAL PRESENTATION DUE: 08 JUN 2010

Weathering the Storm – 29 Jun 2010

The Cornerstones of Trust 2010 conference helps security leaders and security practitioners Weather the Storm – whether it is seen as the deluge of information, services in the cloud, bot-nets with advanced persistent threats or the waves of regulatory and compliance requirements. Are we seeing the rainbow after the rain, or are we in the eye of the hurricane. Organizations need to forecast trends and develop responses to the challenges like increasing cost pressures, rising security complexity, evolving threat landscape and emerging technology disruptors.

Organizations are continuing to adopt Web 2.0 and exploring Cloud services to expand their business with greater flexibility and lower capital investment. The regional regulatory requirements and consumer expectations continue to increase the complexity to accommodate the vast regional differences with an increased granularity. Organizations can’t depend on protecting the perimeter any longer, but need to protect the information – where ever it is. Organizations need to effectively plan, respond, and evolve to keep pace.

Security and privacy leaders should examine the threats and opportunities to weather the changing times. What does the storm look like from your perspective? Is it preventing or responding to a data breach? Is it preparing for the cloud? Is it the data explosion and data mobility? Or, is it closer to home - how to survive as an Information Security professional.

TOPICS OF INTEREST MAY INCLUDE (BUT ARE NOT LIMITED TO):

Is the Cloud just another conspiracy or hype for marketing? What’s so different?

Can businesses be better served by diligence-based management versus risk management?

What will be the role of the information security function be? Will it be eliminated going forward because all the functionality will be in the cloud services?

Why do we keep spending money on technology controls that we can’t measure the effectiveness?

How do we know where to place our investment bets for security protection?

Should we all just pack up and go home? Why bother when the bad guys are better funded and equipped?

How do we make sure that security aligns and enables the business? (No more Department of No)

How do we change our planning, design and implementations to support the business?

How do we improve effectiveness for the business: automation, reduced complexity?

In the Cloud, is there a perceived shift of the problem (accountability) - out of sight out of mind?

Are there synergies for dealing with all an organization’s control objectives in a unified way?

How much scope and discussion does a CISO have within the companies program?

How does a CISO balance strategy vs. operational focus?

How are the new technologies pressuring the business response?

What is the state of security information sharing and professional networking? What information, how do you share? What’s the best way to aggregate data?

How do enterprises manage third parties in an at-will IT services provisioning environment?

How can a security professional to be ready to provide testimony as an expert witness?

What is the hottest skills area? Forensic investigations?

How to manage eDiscovery in the context of Cloud?

What are the protocols and practices to respond to a public relations and response to public data exposure?

What are the most innovative technologies in securing our businesses?

What is a sound response scenario and eDiscovery methodology?

What are the best practices for investigations & forensics?

How do you build a dashboard and sell it to the business leaders?

TO SUBMIT AN IDEA AND SPEAKER
Please respond to the COT Speakers Committee: Bill Ward ( This e-mail address is being protected from spambots. You need JavaScript enabled to view it ) and Mary Ann Mezzapelle ( This e-mail address is being protected from spambots. You need JavaScript enabled to view it ). Submit a session abstract including main discussion points and conclusions. Also, include the speaker’s biography and contact information.

PRESENTATION DEADLINE
Draft presentations are due by 08 May 2010. Presentations will be reviewed for purpose and content as proposed. Feedback will be provided to the speaker(s) and final presentations are due 08 Jun 2010.

EDITORIAL GUIDELINES
Submissions may be for individual speakers, co-speakers or a moderated panel. The session title should clearly indicate the topic of your presentation while attracting conference participants. Session abstracts should be 250-300 words and be a brief paragraph describing the content and should present the ‘what’ and ‘why’ importance of the session with the main topics to be covered.

REVIEW PROCESS
Abstracts submission - no later than: 07 May 2010
Speakers Notified: 14 May 2010
Draft presentation: 21 May 2010
Final presentation: 08 Jun 2010

ABOUT CORNERSTONES OF TRUST MISSION
Cornerstones of Trust acts as a catalyst to bring together the Northern California security community for an ongoing exchange of ideas that address the needs, interests, and issues of trust that security practitioners and managers are experiencing today. It's hosted as a cooperative effort of the San Francisco Bay and Silicon Valley chapters of the Information Systems Security Association (ISSA); and San Francisco Bay Area InfraGard. We encourage contrarian thinkers and practitioners on the front-line to network and share experiences. Selected speakers enjoy complimentary access to the conference.

Website: http://www.cornerstonesoftrust.com/

PLEASE FORWARD THIS CALL FOR SPEAKERS TO ANYONE WHO MIGHT HAVE AN APPROPRIATE SUBMISSION.