Advanced penetration testing training will be coming to Miami, as Hacker Halted (http://www.hackerhalted.com/2011) returns to South Florida for the third straight year in October. Advanced penetration testing training will arm students with the expertise to pen-test highly secured networks like those within government agencies and financial institutions. In light of all the recent attacks on major targets, from Sony to Lockheed Martin, Hacker Halted Academy aims to address the industry’s poor state of cybersecurity through advanced IT security courses offered by EC-Council’s new Center for Advanced Security Training (CAST), and other strategic partners, including BlueflyInc and their Web 2.0 Application Hacking training course. Hacker Halted will take place at the InterContinental Miami from October 21-27. Read more…
The Center for Advanced Security Training (CAST), developed by EC-Council in conjunction with a select group of cybersecurity experts, will be holding its first CAST Summit in Washington D.C., on August 22-25. This summit will feature five three-day workshops covering advanced penetration testing training, digital mobile forensics, advanced application security, advanced network defense, and cryptography, followed by an interactive training seminar headlined by noted cybersecurity expert Jeff Bardin. CAST is dedicated to teaching students advanced technical security knowledge directly from the experts themselves, through the use of proven tools and techniques, in hands-on, lab-intensive environments that simulate real-world scenarios. Read more…
Mar 9, 2011, Albuquerque, NM – According to the report, Commission on Cybersecurity for the 44th President, released in November 2010 by Center for Strategic and International Studies (CSIS), it is highlighted that technical proficiency is critical to the defense of IT networks and infrastructures. And there is evidently a shortage of such personnel in the current cyber defense workforce.
The United States alone needs between 10,000 to 30,000 well-trained personnel who have specialized skills required to effectively guard its national assets. In essence, there is a huge shortage of highly technically skilled information security professionals. The problem is both of quantity, and quality, and this is not a problem just for the government space. Public and private companies are also in dire straits trying to fill such staffing needs.
The information security workforce requires not just technically proficient people to operate and support existing systems that are already deployed. There is a great demand for highly skilled professionals who can design security systems, application engineers who can write secure codes, as well as forensics experts who are well trained with highly advanced computer examination skills. Threats to SCADA and Critical Infrastructures are mounting and nations cannot ignore that these threats needs effective methods and manpower to be mitigated, should it ever occur. With the exponential growth of mobile devices adoption, and higher dependency on wireless communications, hackers are finding more ways and means to exploit these technology, and crippling organization and agencies alike.
One of the keys to address these issues will be to be adequately train and equip cyber defenders with cutting edge technological skills that are required to prevent such attacks and build a sound perimeter defense to deter these threats. A company needs to ensure that its current cyber workforce is well-trained, and as an individual, one needs to maintain technical proficiencies that are up-to-date in order to stay employable. Without a doubt, training is essential.
Recognizing this gap, EC-Council has launched the Center of Advanced Security Training (CAST), to address the deficiency in the lack of highly technically skilled information security professionals. CAST will provide advanced and specialized information security training for specific domains such as application security, penetration testing, computer forensics, social engineering, malware and botnet analysis, among others. These highly technical training programs are designed with industry practitioners to ensure that content are current and relevant, and the focus of CAST training will be its thorough extensive hands-on approach, to enable participants to combat real life scenarios.
“Certification has grown to become a necessity. It is critical for information security professionals to be equipped with the baseline knowledge and skills that any certification provides,” said Jay Bavisi, president of EC-Council. He adds, “However, it is the advanced skills and technical proficiency that will make one stand out from its peers. Such skills can only be acquired through specialized and highly technical training. And these are the components that CAST aims to provide to the infosec professional community.”
Some of first CAST programs that will be rolled out are Advanced Penetration Testing course by Joseph McCray, an air force veteran who has tested over 150,000 machines in his career alone, and the Digital Mobile Forensics Deep Dive, by Wayne Burke, former cyber crime investigator with the South African police department. There is also the Advanced Application Security course by Tim Pierson, the well-traveled information security consultant and trainer, who had co-authored a book on Virtualization security.
CAST training will be available at all EC-Council hosted conferences and events, and through specially selected training partners. The launch classes for CAST will be at the upcoming TakeDownCon Dallas, from May 15-17, 2011.
Director – CAST
TakeDownCon is a brand new information security conference series, created by EC-Council. This highly technical information security conference series differs from others, and it is very focused – the theme of this first of the series is “Taking Down Security”, focusing on attack and defense vectors. World class experts including Barnaby Jack, Kanen Flowers, Joe McCray, Rodrigo Branco, Sean Arries, among others, will demonstrate and showcase how security systems can be taken down at ease. This 2 days conference, in a very casual and relaxed setting, is targeted towards information security researchers, engineers and technical professionals. http://www.takedowncon.com
MIAMI, FL – JANUARY 13, 2011 – The premiere East Coast information security conference and training event will again be held in Miami, Florida as the EC-Council returns to the South with Hacker Halted USA. 2011 marks the third consecutive year the conference has been held in Miami.
Hacker Halted USA begins on Friday, October 21 and ends the following week on Thursday, October 27. EC-Council is expecting up to 1,000 attendees at this year’s event. The conference will again be held at the Intercontinental Miami and will include advanced infosec training and presentations from some of the world’s most respected names in cybersecurity.
This year’s conference will be split into three tracks:
Hacker Halted Academy is also unveiling a new specialized training program at this year’s Hacker Halted USA. It will feature highly advanced infosec training sessions from EC-Council’s new Center for Advanced Security Training (CAST). These advanced technical training programs will delve deeply into specific areas of security. These trainings are definitely not for those still trying to get their feet wet in the rapidly evolving information security landscape.
Founded in 2004, the Hacker Halted conference series has been held in cities such as Myrtle Beach, Mexico City, Singapore, Kuala Lumpur, Guangzhou, Tokyo and Dubai, among others. The series recently celebrated its 20th edition in Cairo in December 2010.
The Call for Papers is now open until March 15, 2011. For those interested in submitting a paper to be presented at Hacker Halted USA in Miami this October, please visit www.hackerhalted.com/cfp.
Corporate and organizational partners interested in becoming involved in this year’s Hacker Halted USA should contact Leonard Chin, Global Director of Marketing for the EC-Council (firstname.lastname@example.org).
Be sure not to miss the 2011 Hacker Halted USA, one of the year’s most important information security events: Oct. 21-27, 2011, Miami, Florida. To keep track of conference updates, follow us on Twitter (@hackerhalted).
The International Council of E-Commerce Consultants (EC-Council) is a member-based organization that certifies individuals in various e-business and security skills. It is the owner and developer of the world famous Certified Ethical Hacker (CEH) course, Computer Hacking Forensics Investigator (CHFI) program, License Penetration Tester (LPT) program and various other programs offered in over 60 countries around the globe. EC-Council has trained over 80,000 individuals and certified more than 30,000 security professionals. These certifications are recognized worldwide and have received endorsements from various government agencies including the US federal government, National Security Agency (NSA), Committee on National Security Systems (CNSS), US Army, FBI, Microsoft and CERTs (Computer Emergency Response Team) of various nations. The UUS Department of Defense has included the CEH program into its Directive 8570, making it one of the mandatory standards to be achieved by Computer Network Defenders Service Providers (CND-SP). www.eccouncil.org
Sep 28, 2010 – Gaithersburg, MD – EC-Council was invited and will be presenting at the upcoming 13th Semi-Annual Software Assurance (SwA) Forum, co-sponsored by organizations in the Department of Homeland Security, the Department of Defense, and NIST.
Presenters at this forum comprise senior executives from both the federal space and public corporations, including Joe Jarzombek from DHS, Kristin Baldwin of DoD, and Ron Ross of NIST.
Jay Bavisi, president of EC-Council, who also presented at another Software Assurance conference held in earlier in the year, will be presenting on the first day of the conference on Sep 28, 2010. Jay’s topic, “The 10 Things Hackers Don’t Want You To Know”, will see him shed light on some of the darkest secrets of the underground hackers community.
“Information security encompasses more than just protecting sovereign IT systems of governments and those of organizations. The rapid evolution of cyber threats makes forums like these excellent platforms for knowledge exchange and sharing,” said Jay. He adds, “It is an honor and privilege for EC-Council to be invited once again to participate and contribute to this forum.”
The SwA Forum meets semi-annually to provide a public-private gathering for government, industry, and academia to collaborate in efforts focused on advancing security and resilience in software.
For more information about the SwA Forum, please visit https://buildsecurityin.us-cert.gov/bsi/events/1133-BSI.html
Jay Bavisi, President of EC-Council explains what ethical hacking is all about and the importance it plays in cyber defense.
Berlin (Germany), December 2, 2009 – Jay Bavisi, President and Co-founder of EC Council, presented “Defenceless Defence against Corporate Breaches” at the Security and Defence Learning, held in conjunction with Online Educa Berlin.
The presentation highlighted the risks and impact of Equipment-Based Security Mentality (EBSM) has on today’s information security landscape. Many organizations depend solely on security vendors and tend to over-complicated their networks with multiple security solutions without evaluating real needs. They tend to measure the security posture of their company based on the amount of investment they make on appliances, a mentality that Jay defines as EBSM.
As such, corporations operating with EBSM are at a much higher risk of encountering security breaches due to human errors. Even the simplest mistake committed by an administrator or user of a network presents an opportunity for a breach or compromise to occur.
Said Jay, “Hackers have grown to become more intelligent. They are able to exploit on the slightest mistakes made by users of a network and latch on any semblance of vulnerability to trespass into a ‘defenceless defence’. In any case, once this simple breach occurs, a butterfly effect will follow after when the tiny transgression escalated into something much more severe and this could potentially cripple the entire operation of an organisation”.
Among the dignitaries who sat through the presentation were Peter-Martin Meyer, Director of Swiss Police Institute, John Gretes, Director of Swiss Police College, Rainer Greiger, President of University of Applied Sciences of the Police Brandenburg and Dale L. Sheehan, Director of Police Training and Development Interpol. Other representatives included influential decision makers from Free University Berlin, International Association of Emergency Managers, State Academy and Technical Facility for Fire & Emergency Protection, Berlin University for Professional Studies and ICTS Europe Holding B.V.
“To offset the risks posed by over-reliance on security equipment, it’s important to have a systematic and comprehensive security policy in place, and best practices cultivated among IT users across all levels. The IT infrastructure of any organization has to be tested regularly through penetration testing and updated with improvements learnt from investigations of previous attacks to guarantee its functionality. This ensures that your business will be properly protected in the event of a catastrophe”, Jay added.
The International Council of E-Commerce Consultants (EC-Council) is a member-based organization that certifies individuals in various e-business and security skills. It is the owner and developer of the world famous Certified Ethical Hacker course, Computer Hacking Forensics Investigator program, License Penetration Tester program and various other programs offered in over 60 countries around the globe. These certifications are recognized worldwide and have received endorsements from various government agencies including the US Federal Government via the Montgomery GI Bill, and the US Government National Security Agency (NSA) and the Committee on National Security Systems (CNSS). For more information about EC-Council, please visit the website: http://www.eccouncil.org
About Security and Defence Learning 2009
Security and Defence Learning 2009 is the annual conference at which the words of security and technology-assisted learning meet. The conference, which is held in Berlin every year, brings together key officials, training directors, security planner, academics and suppliers. It has now established a firm reputation both as one of Europe’s leading conferences on technology-assisted learning for security and as an excellent opportunity for informal networking with key-decision-makers. For more information about Security and Defence Learning 2009, please visit the website: http://www.security-defence-learning.com/
About Online Educa Berlin
Online Educa Berlin is the largest global e-learning conference for the corporate, education and public service sectors, is the key annual networking event for the international e-learning and technology-supported learning and training industry, attracting and bringing together experts in the vanguard of technology-enhanced learning from around the world. Participants forge essential cross-industry contacts and partnerships, thereby enhancing their knowledge and expertise. Over 2000 delegates from more than 90 countries and every continent attend the conference to discuss the latest developments in the field. For more information about Online Educa Berlin, please visit the website: http://www.online-educa.com/the-conference
Singapore Infocomm professionals to benefit from National Infocomm Competency Framework (NICF) and Critical Infocomm Technology Resource Program (CITREP) endorsement.