Red Team Assessment: Critical Step in Safeguarding Your Organization
February 19, 2014 - 5:30 p.m.
Maroon & Gold Room
McNamara Alumni Center
Space is limited. Reserve your complimentary seat now!
Whether you work at a start-up company with a shoe string security budget – or - a multi-national with teams of people doing compliance and information security, you need to test your security posture. Red Teaming is the art of finding critical vulnerabilities in your organization by thinking like the "bad guys". This panel discussion will bring together four security professionals to discuss how they apply Red Team methods and techniques to improve overall security for their clients and organizations. The panel will be led by Brian Isle, who teaches Red Teaming methods in his class on risk assessment methods in TLI's Master of Science in Security Technologies program.
About the moderator:
Brian Isle, P.E.
Brian Isle has 15+ years' experience in red team assessments and research in the underlying process of multiple-expert assessment processes. Brian has applied the red team assessment process to a broad range of systems, organizations, and critical infrastructure. Brian incorporates teaching the red team process into his MSST classes. Brian continues his research at Adventium with focus on assessment of critical infrastructure safety and security. Brian is currently supporting the DOE NESCOR program to improve the cyber security readiness of the next generation power grid. Brian held key roles on several security-related research programs including a DoD program focused on vulnerability assessment for force protection and a Department of Homeland Security program to apply advanced cyber protection technology to control systems for critical infrastructure.
Mr. Isle is on the Board of Directors of the Minnesota chapter of the FBI sponsored InfraGard organization focused on critical infrastructure and improving regional resilience. Brian is on the Board of Advisors for the University of Minnesota's Engineering and Computer Engineering department, a member of the National Classification Management Society, a trained Facility Security Officer, and a professional engineer registered in Minnesota.
About the panelists:
Security and Emergency Management Consultant
Rozin Security Consulting (RSC)
Mr. Abelson has used red team assessments to assist various clients across the state and country to determine vulnerability to physical and social engineering attacks. Shawn's work with RSC includes physical red team assessments of high rise commercial buildings, oil refineries, universities, and government buildings. Additionally, Shawn is developing an assessment and intervention product to assist organizations in identifying and preventing workplace violence and counterproductive work behavior. Shawn recently received his master's degree in Security Technologies from the University of Minnesota, and works part time with UMEMS, the University's emergency medical and disaster response department.
Steen J. Fjalstad, MS, CISA, CISSP, CGEIT, CRISC
Security and Mitigation, Principal
Midwest Reliability Organization (MRO)
Mr. Fjalstad currently works as part of the Critical Infrastructure Protection team at MRO helping to secure the North American Electric Grid ('The Grid'). Working for MRO Steen has managed, led, and supported cyber security work with over fifty North American Electric Reliability Corporation (NERC) registered entities on critical infrastructure protection. Steen coordinates with industry, local, state, and federal agencies to manage outreach efforts on threats & vulnerabilities to the Grid. Steen also manages mitigation efforts with NERC registered entities. Prior to joining MRO, Steen obtained significant experience as a security, audit, risk, and project manager with a focus on securing, designing, implementing, and auditing information technology systems. Steen has served more than ninety different organizations spanning three continents. Steen holds a Masters Degree from University of Minnesota-Twin Cities in Security Technologies and a Bachelors degree from the University of Wisconsin-Whitewater in Management Computer Systems.
Information Security Professional
Mr. Walker is a physical security practitioner turned information security professional who works for a Fortune 50 company. He loves to translate the security gospel into business speak and help folks make smart risk trade-offs. Chad is also on a crusade to merge the physical and information security silos, and help self-described "non-technical" people take the plunge into infosec. Chad is a Master of Science in Security Technologies graduate with a handful of professional certifications.
Natalie Wood, MS
IT Consultant, RBA Consulting
Owner, Spartan Security Strategies
Ms. Wood is the owner of Spartan Security Strategies providing client services including red team and physical security assessments. Spartan has initially focused on assessments of higher education institutions and utilities. Natalie started Spartan with the help of her classmates from the MSST program. In addition to her physical security work, Natalie has worked in IT for over 10 years at RBA Consulting providing data security audits, legal compliance audits, and remediation work for companies in a broad range of industries including health care, medical device, and legal. Natalie has a Master's degree in Security Technology from the University of Minnesota.