Social networking threatens business IT

Social networking via sites like Twitter and Facebook is growing exponentially, and no enterprise can afford to ignore the potential benefits of connecting with customers and colleagues online. But this connectedness poses risks to enterprise data security.
At the 6th annual ITWeb Security Summit, to be held in Sandton, South Africa, from 10 - 12 May 2011, international and local IT security experts will discuss hot topics like Stuxnet, WikiLeaks and data privacy in an increasingly connected world.

The ITWeb Security Summit is South Africa's premier ICT security event. It includes a conference, expo and workshops to inform business managers, CIOs and chief IT security officers about the current and future information security threat landscape.

This year, the event will focus on security in an increasingly connected world, featuring cloud security, web services and online security, as well as the growing trend to use malicious code for industrial espionage and sabotage.

On the agenda are experts from powerhouses like SalesForce, Google and Zynga Game Network, with practical insights coming from leading financial institutions such as Nedbank, Standardbank, Barclays, Absa, and the Co-operative Bank of Kenya.

Among the key speakers at the event are:

Caroline Wong, strategic security manager at Zynga Game Network.
She will explain how to plan for cloud implementations. Wong was formerly the chief of staff for the Global Information Security Team at eBay, where she built the security metrics program from the ground up. She is well known for her expertise in the area of security metrics and has been a featured speaker at numerous industry conferences.

Patrick Gray, host of the RiskyBusiness Security News Podcast. Gray, a renowned international IT security news journalist, will elaborate on the three things that shaped the information security news agenda in 2010: Stuxnet, WikiLeaks and the resulting militarisation of the Internet.

Robert Fly, who heads up the Product Security team at, will take a look at what has done to build a security ecosystem around and the challenges associated with doing so.

Parisa Tabriz, Google's information security engineer, will describe some of the unique approaches Google's information security engineering team takes to help secure Google's wide array of web services, including engineering practices and technologies to address common web security bugs.

Other international speakers include:
  • Bradley Anstis, VP Technical Strategy at M86 Security will demonstrate how readily available attack toolkits are used and explain how Cyber Criminals make their money
  • Greg Day, Director of Security Strategy, EMEA at McAfee, will examine how such attacks bypass existing security controls and how they can be stopped.
  • Rik Ferguson, Trend Micro's solutions architect, will discuss "life after Stuxnet, what businesses should know".
  • Haroon Meer, lead researcher of thinkst, an applied research company with a deep focus on information security. He will discuss "the IT security lies we tell ourselves".
Additional highlights at this event will be:
  • A one-day workshop on governance, risk and compliance in public and private clouds presented by Dan Crisp, Strategic Director, Global of Operational Risk Initiatives at Barclays Bank, Caroline Wong of Zynga and Lynn Terwoerds of the Cloud Security Alliance. The international panel of experts will examine the business and IT processes, which need to be governed in public and private clouds, including the top threats and mitigations with a specific focus on PCI DSS requirements.
  • An innovative expo area offering hands-on demonstrations of the latest information security solutions from leading global anti-virus and information security vendors.
  • A community hub where infosec bloggers will congregate.
For further information on the ITWeb Security Summit visit

12 Apr 2011 11:49


LEGAL DISCLAIMER: This Message Board accepts no liability of legal consequences that arise from the Message Boards (e.g. defamation, slander, or other such crimes). All posted messages are the sole property of their respective authors. The maintainer does retain the right to remove any message posts for whatever reasons. People that post messages to this forum are not to libel/slander nor in any other way depict a company, entity, individual(s), or service in a false light; should they do so, the legal consequences are theirs alone. will disclose authors' IP addresses to authorities if compelled to do so by a court of law.