Date: Tuesday, December 17, 2019
Time: 10:30 a.m. (CST)
2019 BEST OF AGENDA, TUESDAY, DECEMBER 17, 2019
10:30 am – 11:00 am CST CompTIA Event Open/CompTIA Programming
11:00 am- 12:00 pm CST Cybersecurity Skills Needed in Today’s Infrastructure Environment (approved for A+, Net+, Sec+, CASP, CySA, Cloud and PenTest +)
We’ve conducted research, and talked with IT Pros and their hiring managers around the world about essential cybersecurity skills workers need to have. The consensus is that companies see that individuals they wish to hire and promote often have some serious gaps in their knowledge. Some of these gaps are in traditional and modern network infrastructure. Others are in understanding today’s endpoints, and in the finer points of cybersecurity. Join Dr. James Stanger to learn more about these gaps, and the best way to overcome them.
Speaker: Dr. James Stanger, CompTIA’s Chief Technology Evangelist
12:00 pm – 12:15 pm CompTIA Programming
12:15 pm – 1:15 pm The Path to Modern DevSecOps (approved for A+, Security +, CySA+ and CASP +)
DevSecOps improves on Agile by focusing on people over processes and tools, modernizing the software delivery pipeline by integrating security into the full lifecycle of application development. In the past, security was isolated to a specific role or team member. Today, the collaborative DevSecOps framework effectively integrates security practices as shared responsibility from end-to-end. In this session, you will:
• Find out what is DevSecOps and why it matters.
• Understand what skills are required to be a DevSecOps engineer.
• Learn 6 best practices for successfully practicing DevSecOps.
• Discover online resources to upgrade your talent toolbox.
Speaker: Laszlo S. Gonc, Next Era Transformation Group, LLC, Co-Founder and Managing Partner, Gonc & Associates, LTD, CEO and President1:15 pm – 1:30 CompTIA Programming
1:30 – 2:30 pm Investigating Today’s Emerging Tech “mythconceptions” (approved for A+, Network+, Security+, Linux+, Cloud+, PenTest+, CySA+ and CASP+)
When it comes to cybersecurity and emerging technologies, the IT world appears to be haunted by quite a few myths. It is often useful to use “enabling narratives” to keep moving forward and contextualize the constant change in technology. But, sometimes, these narratives get in the way of progress, especially if they remain unexamined, and if everyone is using conflicting approaches. These enabling narratives can quickly become clichés, and the equivalent of “deep fakes” and “fake news.”
Join us as we deconstruct some of those myths, based on experiences from working professionals and managers in the field. Is it true that automation and AI are more likely to cure cancer than stop ransomware or replace the help desk worker? Is the “layered security” model really as silly an idea as some say? Exactly how does a cybersecurity professional clean up after messes created “upstream?” What is the real use of blockchain? What is “technical debt,” and how can cybersecurity pros pay it off in the best way? And, is it really true that we’ve only just begun to implement the cloud?
Topics will include:
• What does the word “cyber” mean, anyway?
• Why do security professionals use the word “risk” so badly?
• Is the layered security / defense in depth model as crazy as James thinks?
• Will we need security professionals, now that the cloud and AI automates security for us?
• Isn’t Security Automation and Orchestration and Response (SOAR) the next big thing?
• All we need is a SIEM, right?
• Packet capture is dead: Long live the threat hunter!
• Won’t the next big tech innovation solve all of our problems?
• More tech workers will solve our problems.
• Won’t new protocols (e.g., DoH, IoT) fix everything?
• Speaker: Dr. James Stanger, CompTIA’s Chief Technology Evangelist
If you have any questions about the event, contact firstname.lastname@example.org