SecDSM, a monthly meetup providing the opportunity to network with other InfoSec pros and listen to short tech talks presented by your fellow members (or give a presentation yourself!) while enjoying some beer/drinks/food. No sales pitches. The idea is to provide you actionable knowledge for you to take back to your $dayjob while building a top tier InfoSec community in the Des Moines area. If you have the desire to learn about real world InfoSec scenarios - get out of your comfort zone - and join us in a relaxed vendor neutral environment. No registration is required.

Schedule

We meet monthly on the 3rd Thursday of every month starting at 6pm at The Forge By Pillar Technology in Downtown Des Moines.

SecDSM 101 6:00 PM

A brief introduction to the group along with any announcements and general communication.

James Beal - SecDSM News 6:05 PM

Quick Review of the Month's InfoSec news.

Area515 Staff Area5156:15 PM

Area515

Stacy Monroe Principal CTF6:45 PM

Principal CTF

I work at Principal Financial Group where I've been in various roles over my 24 year career. I'm currently a part of the Information Security Organization as the Application Security Team leader.

In February, Principal held it's first ever Capture the Flag event that was a huge success. This talk will cover the setup, execution, and lessons learned from the event.

Special Agent Jordan Loyd Current Cyber Threats7:45 PM

Current Cyber Threats

Special Agent Loyd has been with the FBI since 2009. SA Loyd conducts investigations into computer intrusions with criminal and national security focus. Prior to being assigned to Cyber investigations in mid-2010, SA Loyd conducted operations targeting organized crime entities in the New York area. SA Loyd served as a Network Manager for six years after graduating from Oklahoma State University in 2006.

This presentation details the FBI’s current cyber mission as it pertains to criminal, counterintelligence, and counterterrorism computer intrusions and related threats. This presentation will also include a case brief on an investigation where the FBI's resources were leveraged to identify, locate, and arrest global cyber criminals.

SecDSM 101 6:00 PM

A brief introduction to the group along with any announcements and general communication.

James Beal - SecDSM News 6:05 PM

Quick Review of the Month's InfoSec news.

SecDSM 101 6:00 PM

A brief introduction to the group along with any announcements and general communication.

James Beal - SecDSM News 6:05 PM

Quick Review of the Month's InfoSec news.

Merchandise and Donations

Shirts (and other items) are for sale at each meeting and online.

T-Shirt

Upcoming Events

The following events might be of interest to the SecDSM community.

Be sure to check out Des Moines Web Collective for updated list of local user groups

If you'd like to see an event listed, please email us at events@secdsm.org

Please reach out via our Slack channel or email us at events@secdsm.org if you have an idea for a presentation you would like to give.

2017 Spring ISU CDCMarch 24-25
Practice your hacking techniques and support the CDC by volunteering to be a red team member. Free food and drink are also provided for red team members as well as the red team t-shirt. ISEAGE keeps up a list of potential red team members and emails them before every CDC inviting them to come participate. If you are a professional in the field of information security or are studying to be one, you are encouraged to contact ISEAGE to tell them to add your email to the list.
March ISSA meetingMarch 27, 2017 11:30AM-1:00PM
FBL Financial, 5400 University Ave, West Des Moines, IA.
'Elevator or Airplane?' An Exploration of Autonomous Vehicles and Their Effects; Desirable or NotTue, March 28, 2017 5:30pm - 7:30pm
We will define autonomous vehicles, including touching on the two major approaches to the design of autonomous vehicles: machine learning vs. human-designed rulesets. Join us to: Explore autonomous vehicles and how they differ from what’s on the road today. Discuss what the public knows about autonomous vehicles. Brainstorm what effects we can expect in the future. Complimentary drinks & appetizers.
How Companies Get Hacked (And What You Can Do About It!)Wed, March 29, 2017 7pm - 10pm
Sherri Davidoff LMG Security is joining us to talk about cybersecurity. Professional hackers around the world target YOU in attempts to gain access to confidential information, bank accounts, and other valuable data. Today, companies are also held hostage by ransomware, the malicious software that locks up your files until you pay a ransom. All it takes is one person in your organization to click on a link, and all of your shared files could be locked up for good. We’ll show you how attackers break into your computer, with screenshots and videos of a real attack. Finally, we'll run through the most important building blocks of a strong cybersecurity program. Learn how to effectively defend against cybercriminals so that you can protect yourself, your clients and your organization.
2017 IT-Olympics CDC (High Schools)April 21-22
Practice your hacking techniques and support the CDC by volunteering to be a red team member. Free food and drink are also provided for red team members as well as the red team t-shirt. ISEAGE keeps up a list of potential red team members and emails them before every CDC inviting them to come participate. If you are a professional in the field of information security or are studying to be one, you are encouraged to contact ISEAGE to tell them to add your email to the list.
April ISSA meetingApril 24, 2017 11:30AM-1:00PM
FBL Financial, 5400 University Ave, West Des Moines, IA.
May ISSA meetingMay 22, 2017 11:30AM-1:00PM
FBL Financial, 5400 University Ave, West Des Moines, IA.

Upcoming cons

Some members are anticipating attending the following conferences, reach out on slack to cordinate travel.

Cyphercon

Welcome to CypherCon 2.0. Wisconsin’s Hacker Conference! Our conference provides hackers with an outlet to openly demonstrate and experience creativity and ingenuity through hands-on enlightening activities and thought provoking presentations and technical projects. Come listen to over 25 security speakers, learn at 12 mind-blowing, but approachable villages (specializations), and relax with friends in a casual environment.

Cost:

$125 - analog badge

$175 - digital badge

Schedule
Day Date Start End
Thursday March 30 1700 2330
Friday March 31 1700 2330
Travel Details
Day Date Time
Depart Thursday March 30 1000
Return Saturday April 1 UNK
ForenSecure

We invite your participation as a sponsor/exhibitor, speaker, or attendee of ForenSecure’17: IT Forensics and Security Conference and Expo at Illinois Institute of Technology. This is an industry-focused technical conference (not an academic conference) with multiple tracks. It attracts 200+ professionals for an intensive one- and a half-day schedule that includes discussion and debate over forensics, security, data/information governance, cyber crime and security, cyber security legislation and legal issues, ethical hacking, eDiscovery, cloud forensics, steganography, policy and compliance, privacy, wireless security, cloud computing, identity theft, and more.

Cost:

$150 - Early Bird

$200 - GA

$40 - Student

Schedule
Day Date Start End
Thursday April 27 ??? ???
Friday April 28 ??? ???
BSidesIowa

BSidesIowa was founded in 2012 by Ken Johnson and has held 3 events in Iowa. In 2016 tragically Ken passed in a car accident. Since that time a few active members in Iowa InfoSec/SecDSM have taken the reigns to continue the work that Ken started.

Schedule
Day Date Start End
Saturday April 22 0900 ???
THOTCON

THOTCON (pronounced ˈthȯt and taken from THree - One - Two) is a small venue hacking conference based in Chicago IL, USA. This is a non-profit, non-commercial event looking to provide the best conference possible on a very limited budget.

Once you attend a THOTCON event, you will have experienced one of the best information security conference experiences combined with a uniquely casual and social experience.

THOTCON 0x8 is the eighth incarnation of this event and will be held on Thursday and Friday May 4th and 5th, 2017.

It will be held at a location only to be disclosed to attendees and speakers during the week before the event. For more information, explore this site or contact us at info@thotcon.org.

Выпить все бухло, взломать все вещи!

Cost:

$118 - Early Bird

$168 - GA

$298 - VIP

Schedule
Day Date Start End
Thursday May 4 0930 2030
Friday May 5 0930 2030
Travel Details
Day Date Time
Depart Wednesday May 3 UNK
Return Sunday May 6 UNK
BSidesKC

BSidesKC is a non-profit organization designed to advance the body of Information Security knowledge, by providing an annual, open forum for discussion and debate for security engineers and their affiliates. We produce a conference that is a source of education, collaboration, and continued conversation for information technologists and those associated with this field. The technical and academic presentations at BSidesKC are given in the spirit of peer review and advanced knowledge dissemination. This allows the field of Information Security to grow in breadth and depth, and continue in its pursuit of highly advanced scientifically based knowledge.

Cost:

$20

Schedule
Day Date Start End
Saturday May 20 0800 1730
Travel Details
Day Date Time
Depart Saturday May 20 UNK
Return Saturday May 20 UNK
CircleCityCon

CircleCityCon is a security conference held in downtown Indianapolis. Our cons last years were big successes and we are only looking to grow and make it better.

CircleCityCon is about the community. Our signature offering is the community led training classes offered to all participants. Events and contests are organized by members of the security community, including both CircleCityCon staffers and community partners. Three tracks, incredible entertainment, and technical villages help round out the CircleCityCom experience. Of course, don’t forget the chance to meet and talk with your peers about all topics including security, hacking, and the latest superhero movies.

Cost:

$100 - Early Bird

$125 - GA

Schedule
Day Date Start End
Friday June 9 ?? ??
Saturday June 10 ?? ??
Travel Details
Day Date Time
Depart Thursday June 8 UNK
Return Sunday June 11 UNK
BSidesMSP

Security B-Sides MSP 2017 is a Minneapolis based security conference which will be held on Saturday and Sunday, June 24th and 25th 2017 at the Minneapolis Convention Center. We do not sell our speaker positions to the highest bidder. Anyone submitting, as a speaker, has an equal chance to be selected as we use a community vote process to decide. The number of speakers will be dictated by the space/time constraints of our venue. Contests, Workshops, Villages, and Training events are chosen at the sole discretion of our volunteer organizers. Again, space and time constraints of our venue will impact those decisions.

Cost:

$50

Schedule
Day Date Start End
Saturday June 24 ?? ??
Sunday June 25 ?? ??
Travel Details
Day Date Time
Depart Friday June 24 UNK
Return Sunday June 25 UNK
BSidesLV

BSides Las Vegas is an Information / Security conference that’s different. We’re a volunteer organized event, put on by and for the community, and we truly strive to keep information free.

There is no charge to the public to attend BSidesLV. Our costs are covered by our generous donors and sponsors, who share our vision of free dissemination of information. The conversations are getting more potent and the “TALK AT YOU” conferences are starting to realize they have to change. BSidesLV is making this happen by shaking-up the format.

Cost:

Free - but get a room or be a donor if you want a ticket

Schedule
Day Date Start End
Tuesday July 25 ?? ??
Wednesday July 26 ?? ??
Travel Details
Day Date Time
Depart Monday July 24 UNK
Return Monday July 31 after defcon
DEFCON

Originally started in 1993, it was a meant to be a party for member of Platinum Net, a Fido protocol based hacking network out of Canada. As the main U.S. hub I was helping the Platinum Net organizer (I forget his name) plan a closing party for all the member BBS systems and their users. He was going to shut down the network when his dad took a new job and had to move away. We talking about where we might hold it, when all of a sudden he left early and disappeared. I was just planning a party for a network that was shut down, except for my U.S. nodes. I decided what the hell, I'll invite the members of all the other networks my BBS (A Dark Tangent System) system was a part of including Cyber Crime International (CCI), Hit Net, Tired of Protection (ToP), and like 8 others I can't remember. Why not invite everyone on #hack? Good idea!

Cost:

$225 - estimated

Schedule
Day Date Start End
Thursday July 27 ?? ??
Friday July 28 ?? ??
Saturday July 29 ?? ??
Sunday July 30 ?? ??
Travel Details
Day Date Time
Depart Monday July 24 early for BSidesLV
Return Monday July 31 ???
BroCon

BroCon ’17 offers the Bro community a chance to meet face-to-face, share new ideas, and better understand and secure our networks. The conference is composed of presentations from members of the community and the Bro Development team.

Cost:

$100 - estimated

Schedule
Day Date Start End
Tuesday Sept 12 ?? ??
Wednesday Sept 13 ?? ??
Thursday Sept 14 ?? ??
Travel Details
Day Date Time
Depart Monday Or Tuesday Sept 11 or 22
Return Thursday Sept 14 ???
MISC CONF

The Minnesota Information Security Community understands that the success of security is cross-disciplinary and relies on skills and knowledge from multiple domains of knowledge. The Minnesota Information Security Community is a local group with nationwide contacts in all areas of information security and skill levels from entry ­level to Vice Presidents and CEOs of major Security firms.

Cost:

$50 - estimated

Schedule
Day Date Start End
Saturday Oct 21 ?? ??
Sunday Oct 22 ?? ??
Travel Details
Day Date Time
Depart Friday Oct 20
Return Sunday Oct 22 ???
GrrCon

GrrCON is an information security and hacking conference that provides the Midwest InfoSec community with a fun atmosphere to come together and engage with like minded people. We keep GrrCON small with around 1,500 attendance to allow us to provide those things other events leave out. Whether you are a Fortune 500 executive, security researcher, industry professional, student, or a hacker of flexible morals you will find something for you at GrrCON.

Cost:

$50 - Student

$90 - Early Bird

$150 - GA

$350 - VIP

Schedule
Day Date Start End
Thursday Oct 26 ?? ??
Friday Oct 27 ?? ??
Travel Details
Day Date Time
Depart Wednesday Oct 25
Return Saturday Oct 28 ???
Wild West Hacking Fest

This conference is going to be about breaking things. Non-standard things. Often, this is called “Stunt hacking”. Or, it can be called hacking of the Internet of Things (IoT). The best example one hears about is hacking a toaster, or a fridge. Each of these exploits teach us all something about the type of testing we should be doing in our own organizations. It is these non-standard devices that are going to lead to the next wave of rampant security vulnerabilities that we’ll need to address and remediate. Unfortunately, we do not have a Patch Tuesday for these devices. Much like the Wild West, the IoT is a new frontier – it’s wild, untamed and full of amazing opportunities! Saddle up, grab your lasso, and join us for this adventure!

Cost:

$100 - Early Bird

$250 - GA

Schedule
Day Date Start End
Friday Oct 27 ?? ??
Saturday Oct 29 ?? ??
Travel Details
Day Date Time
Depart Thurday Oct 26
Return Sunday Oct 29 ???

Venue

We meet in The Forge by Pillar Technology. Enter on the west side of the building and then procede up to the 2nd floor.

More info about Pillar Technology

The Forge by Pillar Technology

1420 Locust St, Des Moines, IA 50309

Sign up for Slack!