RealSecurity

Here is some information about some of my activities.

• (April 16, 2010) The World Economic Forum (WEF) published “Rethinking Risk Management in Financial Services” as a result of a comprehensive workshop in New York, NY late last year that I had the distinct honor in participating in. Some of the brightest minds in the field across multiple industries and specialties were in attendance. It was a great experience for me personally and professionally, and I’m thrilled that I had the opportunity to contribute.

• (February 16, 2010) I’m presenting at the North Carolina OWASP Chapter event tonight on Cloud Security. I’m personally looking forward to the event seeing this is the first time I’ve had the opportunity to collaborate with those in the security industry in Raleigh since I've moved here. I’ll add notes and link to the presentation after the event. It starts at 6pm ET at Coastal Federal Credit Union Headquarters, 1000 St. Albans Dr. Raleigh. (UPDATE) I think the session went well. I did run pretty far over the 30-45 slot making for over an hour (oops), but I think it was good conversation. A lot of great guys, great questions, and good discussion. It was good to connect with the local security community. Here is the preso.
• (February 16, 2010) I wrote an article titled, “Security challenges during mergers and acquisitions” for the BT Secure Thinking, which highlights six steps companies can use as part of their security integration strategy. This is the latest of several posts I’ve written for BT Secure Thinking and I have plans to provide many more, so continue to visit the site – there are a lot of other great authors to hear from.
• (January 29, 2010) I wrote an article for CEO Q Magazine about the "Threats from Within" concerning how business adjustments in tough economic times can increase the insider threat potential.
• (November 18, 2009) I’m going to be presenting a keynote presentation (5mb PDF) at BT’s Managed Security Leaders Conference in NY. UPDATE: The event went very well and seemed well received by our customers. It was also a great opportunity to hear Mark Hughes, Director of BT Security, effectively BT Group’s global CSO, speak on the security strategy for BT and how these translate to our ability to delivery best-in-class solutions. Also, we had a chance to hear from Ray Stanton, executive responsible for security in BT’s Global Services, on our future from the UK via BT’s Customer Experience Center (CEC) in NY and our telecommunications video systems, which are impressive.
• (October 20, 2009) Jim will give the introduction speach on Cloud Security at the ISSA event in New York city. UPDATE: Here is the presentation (pdf) given at the event. It was a very, very good event. The panel was excellent and the other presenters were very informative.
• (October 19, 2009) Jim posts an entry on BT's SecureThinking Blog "Maximizing the Return on your Security Investment"
• (September 30, 2009) Jim participated as a member of a panel to discuss compliance in the cloud. Here is a recording of the event.
• (September 23, 2009) Jim posts an article on BT Secure Thinking's blog about the Ethical Hacking Framework.
• (July 16, 2009) Jim attended the World Economic Forum's (WEF) Rethinking Risk Management Workshop in NYC. A day-long workshop comprised of financial industry experts, professors from various universities, and representatives from a number of different industries, such as Telecom, Aviation, Fisheries, Pharmaceutical, and Fire Management. It was an excellent workshop and a great deal was discussed. (BT is a positive force and very much involved in the WEF, something I'm proud to be part of. See here.)
• (June 19, 2009) Jim spoke at the ISSA/ISACA event in Clearwater, Florida at the Tech Data facility. Here is a copy of the presentation (pdf). The details for the event can be found on the ISSA Tampa Chapter Website.
• (June 10, 2009) Jim gave a presentation/webinar on Adaptable Security. (Note) Unfortunately, we didn't have a great turn out. I think this was due to 1) we changed the registration process after the invite was sent out, 2) there were a lot of webinars from many vendors going on that week, and on a similar topic, and/or 3) it just wasn't an interesting topic :) If you're interested you should be able to view the replay here.
• (April 22, 2009) Jim Tiller speaks on addressing today's economic challenges in security at a BT sponsored event during this year's RSA Confernence. Bruce started the event, and Jim was followed by Tom Lee, director of R&D for the managed security services group, speaking about Conflicer, who writes regularly on the group's blog.
• (April 1, 2009) Jim Tiller authors Four steps to mastering security kung fu for Networkworld
• (March 25, 2009) Jim Tiller gives the closing keynote speech at the Rocky Mountain Information Security Conference. It was a very good event and you can find the presentations here, and read the feedback.
• Jim Tiller was the Managing Editor for Information System Security Journal produced by Auerbach Publications and an (ISC)² Press publication.
• Jim Tiller writes "Security Virtues of a Common Infrastructure" paper for Cisco Systems with regards to Cisco's Self-Defending Network solution.
• Jim Tiller, CSO and Managing VP of INS, speaks about business value of security on Microsoft Security 360 Webcast.
• In June, Jim Tiller spoke at The Philadelphia Area Chapter of The Society for Information Management about Security in Today's Business Environment.
• Quoted in NetworkWorld about building Security Operation Centers (SOC). Also appears in NetworkWorld's Executive Guide.
• Quoted in Baseline Magazine about Procurement Fraud: How Tech Insiders Cheat Their Employers.
• Quoted in the May issue of IT Business Edge on compliance.
• My paper, "IPSec Virtual Private Networks: A Technical Review", written while at Bell Labs, has been referenced in multiple VPN standards and in multi-lingual publications, most recently with NISTsp800-77, Cairo University, and a paper by Robert Kolar in Slovenia.
• Quoted in a Dallas News article about Texas electric grid security.
• Quoted in CRN 2002 cover story concerning security products.
• Jim Tiller speaks with other security professionals about Best Practices for Implementing ISO-17799 during a BindView event.