| Event Details: | Matt Burnburg of Clifton Gunderson and Sean Scranton of RLI Corp will present this session devoted to general security testing utilizing the new version of Nessus Vulnerability Scanner. They will test a Microsoft Windows System with security controls in place, a Microsoft system without controls in place, and a Linux system. They will review the use of hacker root kits and software used to hide this activity. Detection of root kits from a vulnerability scanner aspect as well as review of system logs on Microsoft Windows systems will be discussed and demonstrated.
Matthew Burnburg, MS, CISA, CISSP
Mr. Burnburg is a Manager, IT Security for Clifton Gunderson LLP based in Peoria, Illinois. He has over twenty four years of information technology experience ranging from application/systems development of inventory control and educational software to network architecture and security design and implementation. His security experience started in the United States Army as a launch site security NCOIC stationed at White Sands Missile Range, New Mexico.
Mr. Burnburg received his Bachelor’s degree from the University of the State of New York – Albany in Business and his Master’s degree from the University of Illinois at Springfield in Management Information Systems. He currently holds multiple vendor and industry certifications including Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), Certified Ethical Hacker (CEH), Certified HIPPA Security Specialist and multiple Novell and Microsoft certifications.
Sean Scranton, CISSP, CISM, CISA, CCNA
IT Audit Director, RLI Corp
Sean Scranton began his security career in 1986 with the U.S. Air Force, working on the central mainframe system at the North American Aerospace Defense (NORAD) Center in Colorado Springs. He obtained a Computer Science degree and became a network and router/firewall administrator with a regional healthcare corporation. He then moved to a midrange accounting firm in 1999, implementing networks and firewalls, and expanded into the security realm, performing IT security reviews, audits, and Internet vulnerability assessments for financial institutions, federal agencies, state governments, and other organizations. He joined RLI in 2008 as an IT Audit Director, and currently performs IT and integrated audits.
|
