SecDSM 101 6:00 PM

A brief introduction to the group along with any announcements and general communication.

James Beal - SecDSM News 6:05 PM

Quick Review of the Month's InfoSec news.

Chen Cao AWS Cloudformation + Lamba Functions Security Fun

AWS CloudFormation enables the automation of resource creation and management but extending this using Lambda functions is a powerful way to provide additional security functionality. We will discuss an approach that uses a CloudFormation custom resource and a Lambda function to automatically scan for web application vulnerabilities based on CI/CD commits.

Chen Cao is an Information Security Engineer at Dwolla specializing in Application Security. He enjoys cryptography, session management and beating Ben Schmitt in ping pong on a regular basis.

James and John CYBERTABLETOPS, SOME D20 DICE AND A FEW OF YOU!

We would like to present a workshop and presentation in the style of a DnD / RPG cyber incident response tabletop exercise. This will be loosely based on Lesley Carhart’s “Gamemaster’s Guide to Incident Response”.

The objective is to:
1) Introduce incident responders to the benefits of tabletop exercises with IT and management stakeholders.
2) Simulate for incident handlers how to manage the IR process and test out the process or plans inside their own organizations in a demonstrable way.
3) Plan to have mini-CTF challenges for the technical responders, hoping to tie the challenges into the conference CTF.
4) Conduct a debrief and lessons learned exercise – using the results for a later public presentation at Drake, Grand View, or SecDSM.
5) Have fun and gamify the entire process itself.

James Beal - Senior Security engineer at FHLBDM, focused on endpoint protection, network security monitoring, threat intel, vulnerability mgmt, primary incident responder for FHLBDM.

John Notch - Senior Security Engineer at FHLBDM, focused on cyber risk management, incident response and overall info sec program policy&metrics