SecDSM

SecDSM, a monthly meetup providing the opportunity to network with other InfoSec pros and listen to short tech talks presented by your fellow members (or give a presentation yourself!) while enjoying some beer/drinks/food. No sales pitches. The idea is to provide you actionable knowledge for you to take back to your $dayjob while building a top tier InfoSec community in the Des Moines area. If you have the desire to learn about real world InfoSec scenarios - get out of your comfort zone - and join us in a relaxed vendor neutral environment. No registration is required.

Schedule

We meet monthly, on the 2nd Thursday starting at 6pm at Speed Lyceum Center at Grandview University in Des Moines.

Submit a Talk!

Permission to record

Permission to stream

Permission to publish recording

SecDSM 101 6:00 PM

A brief introduction to the group along with any announcements and general communication.

James Beal - SecDSM News 6:05 PM

Quick Review of the Month's InfoSec news.

Andy Neller Digital Hapkido: Redirecting the Attacker's Energy.6:30 PM

Attendees will see a proven defense-in-depth control structure that deals well with complex adversaries and ransomware/malware. The talk will be structured in a plug-and-play way so that the attendee can take different aspects of the security controls back to protect their organizations. During the presentation I will also talk through some alternative options to some of the covered controls to help increase the success of the attendee raising their security posture in their own environment. Attendees will see practical adversary obstruction and how to leverage the home-field advantage to flip the script on hackers giving their organization the upper hand. Mr. Neller is also co-founder of Digital Revelation, a security research and award winning competitive hacking team.

Dynamic leader in cybersecurity focusing on providing best-in-class security programs, security architecture, governance and regulation compliance, secure cloud migration, and IT security risk management strategies and services to enable delivery of solutions to the business. Over 20 years of cybersecurity experience providing innovative and scalable capabilities, services and consulting to stakeholders in support of a preventive data loss security posture.

Tom Hegel Intro and Analysis of the StrongPity APT7:30 PM

This presentation will not be recorded or avaialble for streaming.

StrongPity is an active APT operating since at least 2012 with many interesting attack techniques. They remain active today and have a high rate of success. In this talk we will discuss the background of the adversary and walk through an analysis of recent attack campaigns. The talk will benefit both offensive and defensive teams by learning real world attack techniques while walking through analysis steps and capabilities.

Tom Hegel is a Security Researcher with AT&T Alien Labs and spends his days focusing on targeted and non-targeted threats with the end objective of detection, adversary tracking, and production of finished intelligence. He comes from a background of threat research, incident response, and security operations.