Looking for presentations from past meetings? Members can access them HERE on the ISSA.org web site.
Please join the ISSA Chicago Chapter for our monthly chapter meeting. This month’s featured speaker will be Jordan Rogers, Principal Consultant, Rapid7. Hours ‘d oeuvres will be served. Cash bar available. ISSA Chicago Chapter members receive a complimentary drink if they register for the meeting as a member.
Topic: Monsters, QBOTS, and RATS, oh My!: How to effectively defeat coinciding, evolving threats
While they sound more like the evil monster in a classic fairy tale than something your IT and security team is facing, polymorphic worms are indeed real. This presentation will focus on how we defeated QBOT, a polymorphic worm that was used as part of a targeted attack. Of course, just one bit of evil wasn’t enough for this story: enter villain number 2: simultaneously deployed RATS. In this particular instance, the RATS were very targeted within the organization. We believe that QBOT was used to distract from other activities the attackers were performing as they ramped up. At the end of this presentation, attendees will walk away with the most effective ways to face these types of evolving threats, practical guidance on where to start when it feels like there’s no beginning, and how to identify key characteristics that signal a change in attack method. And we didn’t have a magic wizard, goblet of fire, or genie on our side.
Speaker: Jordan Rogers, Principal Consultant, Rapid7
Jordan is a Principal Consultant at Rapid7, leading incident response engagements and is responsible for building out the Program Development, Tabletop Exercise, Breach Readiness Assessment, and Forensic programs.
Prior to joining Rapid7, Jordan worked for HALOCK Security Labs as a lead consultant for the company’s Incident Response and Forensics practice, performing a variety of duties including, designing its forensics lab, writing incident response and forensics templates and policies, performing tabletop exercises, breach readiness assessments, litigation forensics support, first responder training, and malware analysis.
Prior to HALOCK he was a contractor working in the federal space with RSA NetWitness and Security Analytics full packet capture and log correlation platforms. Jordan was responsible for deploying the solution, training the clients, and assisting with investigations. Other industry experience includes, defense, aerospace, hedge funds, banking, high frequency trading, and institutional investment firms, where among other things he assisted in preparing for SEC/FINRA audits and responded to breaches.
Jordan also has experience with healthcare and insurance organizations where he lead HIPAA/HITECH and Meaningful Use initiatives. Jordan is passionate about cybersecurity education and has spoken at almost a dozen security conferences over the past two years. When he’s off the clock, Jordan enjoys speaking, training, and volunteering at infosec conferences across the globe.
Event Anti-Harassment Policy
The ISSA Chicago Chapter is dedicated to providing a harassment-free event experience for everyone, regardless of gender, sexual orientation, disability, gender identity, age, race, or religion. We do not tolerate harassment of event participants in any form. Sexual language and imagery is not appropriate for any event venue, including talks. Event participants violating these rules may be sanctioned or expelled from the event at the discretion of the event organizers/management.
Please follow this link to see the full text of our Anti-Harassment Policy.