Post-Conference In-depth Learning Sessions
27 March 2015
These full-day workshop style sessions will provide participants with the opportunity to deepen their understanding of fundamental tools enhancing security management. Delivered using a combination of seminars, interactive formats and hands-on exercises both sessions will provide a practical understanding of risk management and threat mitigation, tailored to your specific needs.
Each session runs for one full day. Registration and morning coffee is at 08:30 and sessions will conclude at 17:00. Lunch, morning and afternoon tea will be provided.
In-depth Learning Session A:
Red Teaming alternate reality testing – learn to test your organisation’s defences to get a more realistic picture of its security readiness
In this session Wayne will be talking about the process of a Red Team Assessment with real life case studies, demonstrated using specially tailored alternate reality environment scenarios.
He will be presenting the following key elements of red teaming, which he will demonstrate through a real case study:
- Company reconnaissance
- Social engineering
- Executive profiling
- Advanced attacks
- Third party supply chain
Red teaming is designed to penetrate security in a real world test of the effectiveness of security controls, policy, technology and infrastructure. Wayne will play the role of an adversary using a range of physical, social and electronic techniques in order to simulate realistic attack scenarios.
By attending this session you will:
- Gain a better understanding of possible adversaries
- Improve counter measures against them and future threats
- Challenge your underlying assumptions, think outside the box, and enhance your decision-making.
- Ensure security testing is always tied to the context and reality in which the risks exist
Facilitator:
Wayne Ronaldson, Co-owner, Risk Offensive
In-depth Learning Session B:
Corporate Security and Integrated Risk Management - how to identify risks and prioritise threats in line with their business impact
This interactive session has been specifically tailored for security, risk, compliance and business continuity managers across all industry sectors. This session will link the concepts of integrated risk into an applicable structure. This structure will include an overview of related guidelines, legislative considerations and best practice. These concepts will be correlated with practical solutions and options and linked back to actual case studies.
Learning outcomes:
- Understand the role that an integrated approach to security, safety and risk can play in reducing asset risk and company expenditure
- Understand the realities of on ground operations and possible solutions
Workshop content:
- History and rationale behind the Integrated Risk concept
- Comparison between the Australian methodology vs other countries
- Overview of the compliance and legislative examples
- Understanding proactive and an intelligence-led approach
- The business case for integrated risk management
- Solutions and case examples
Facilitator:
Gavriel Schneider, CEO, Risk 2 Solution