The Forum of Incident Response and Security Teams (FIRST)

The 24th Annual FIRST Conference focuses on the practical aspects of security and incident response in the face of a rush toward adoption of cloud computing and other distributed architectures.

When:	Jun 17 - 22, 2012
Where:	The Hilton
Web:	http://conference.first.org/program/index.aspx
Tickets:	https://reg.first.org/conference/2012/
Prices:	Early Bird - Non-Member (by 18:00 GMT, 1 April 2012) $1900 US Early Bird - Member (by 18:00 GMT, 1 April 2012) $1500 US Standard - Non-Member (after 18:00 GMT, 1 April 2012) $2299 US Standard - Member (after 18:00 GMT, 1 April 2012) $1899 US Single Day Fee $800 US Full Time Graduate or Doctoral

The field of information security is a large mosaic of technical, procedural and physical controls that seeks to protect the confidentiality, integrity and availability of data.  Security, however, is not an island unto itself.  It must co-exist and collaborate with application developers, cloud computing environments and mobile platforms, not to mention regulatory compliance and law enforcement needs.

The 24th Annual FIRST Conference seeks to bridge this gap by focusing on the practical aspects of security and incident response in the face of a rush toward adoption of cloud computing and other distributed architectures. Considering the inroads that mobile devices are making in our daily workplaces, perhaps it is time for security to redefine itself in some fundamental ways.

This year we seek materials in three major tracks: technical foundations, deep technical dives, and policy and management issues. We are looking for presentations that address the following topics or goals:

• Provide cutting edge Technical Training
• Facilitate Knowledge Transfer
• Educate on the Threat Environment
• Address the softer side of Effective Communication Skills
• Demonstrate effective "Trusted Sharing" in action
• Privacy Breaches
• Case Studies
• Policies and Prevention
• Forensic Tools and Procedures
• Legal Counsel/Law Enforcement
• How to Respond to and Counter-Act Breaches
• Guidelines for Incident Response Teams
• New Developments in Protection of Privacy
• Communication with stakeholders and Public as to Minimize Damage after Breach
• Provide examples of collaborative multi-lateral defensive work

We are also looking for presentations that are relevant to Incident Handling newcomers, and also presentations of success stories or lessons learned from a team, a larger organization or an ecosystem perspective.

The Forum of Incident Response and Security Teams (FIRST) is a global non-profit organization dedicated to bringing together computer security incident response teams (CSIRTs) and includes response teams from over 240 corporations, government bodies, universities and other institutions spread across the Americas, Asia, Europe and Oceania.

The annual FIRST conference provides a setting for conference participants to attend a wide range of presentations delivered by leading experts in both the CSIRT field and from the global security community. The conference also creates opportunities for networking, collaboration, and sharing technical information and management practices. The conference enables attendees to meet their peers and build confidential relationships across corporate disciplines and geographical boundaries. FIRST conference participants include not only CSIRT staff, but also IT managers, network and system administrators, software and hardware vendors, law enforcement representatives, security solutions providers, telecommunications organizations, ISPs, and general computer and network security personnel. The FIRST Annual Conference covers a broad range of security related topics such as (but not limited to):

• Advanced techniques in security incident prevention, detection and response
• Latest advances in computer and network security tools
• Shared views, experiences, and resolutions in the computer security incident response field

The conference runs from Monday through Friday with registration starting at 14:00 on Sunday and includes a Sunday evening welcome reception to kick off the week. Each day begins with a keynote address and is followed by one or more invited speakers. The presentations that follow - Special Interest Groups (SIGs) and panel sessions are split into three tracks:

1. Incident Response
2. Management
3. Technical

Features planned for this year's conference include:

• Specialist Tracks—increased focus on Incident Response, Management and Technical topics relevant to CSIRTs.
• Case Studies—lessons learned in dealing with real events, from discovery to remediation. Share practical experiences in dealing with cyber incidents along with the tools that provided most valuable.
• Special Interest Group (SIG) Meetings—providing a forum where FIRST members can discuss topics of common interest to the Incident Response community.
• Lightning Talks—Attendees are welcome to sign-up first-come, first-served and present to their peers in the main ballroom at scheduled times.
• Vendor Showcase—special Tuesday evening event showcasing FIRST vendors and attendees to network in a relaxed setting with beverages and appetizers.

The conference language is English.

Conference attire for 2012 is business casual.

You do not need to be a member of FIRST to attend the conference. Any individual with interest, involvement or responsibility in the field of incident response and computer security should attend. The conference will also be of interest to:

• Technical staff who determine security product requirements and implement solutions
• Policy and decision makers with overall security responsibility
• Law enforcement staff who are involved in investigating cyber crimes
• Legal counsel who work with policy and decision makers in establishing security policies
• Senior managers directly charged with protecting their infrastructure
• Government managers and senior executives who are responsible for protecting systems and critical infrastructures

Past conference participants have included CISOs, IR management, system and network administrators, software and hardware vendors, security solutions providers, ISPs, telecommunication providers and general computer and network security personnel.

FIRST conferences promote worldwide coordination and cooperation among Computer Security Incident Response Teams (CSIRTs). The conference provides a forum for sharing goals, ideas, information, and information on how to improve global computer security. The five-day event includes:

• Learn the latest security strategies in incident management
• Increase your knowledge and technical insight about security problems and their solutions
• Keep up-to-date with the latest incident response and prevention techniques
• Gain insight on analyzing network vulnerabilities
• Hear how the industry experts manage their security issues
• Interact and network with colleagues from around the world to exchange ideas and advice on incident response
• Earn up to 26 CPEs credits towards professional certifications

Tweet