Phishing simply is one of the most effective attack vectors used today by cyber criminals. Gone are the days when we could easily spot the fake email riddled with spelling errors, bad grammar, and from a prince or dead relative in Africa. Criminals have apparently figured out what spell check is along with proper grammar. Phishing emails are much more sophisticated and can carry a more damaging payload. In some instances, these attacks can be spoofed into making you believe they are coming from within the company. Even from the CEO!

Many companies have programs and tests in place to educate their end-users. Some people don’t think this is the most effective way to thwart scammers and rely on technology. What do you think? Our experts will weigh in on this topic and give you some ideas on creating successful phishing exercises using the “new school” methods for Security Awareness Training.

Be sure to include your questions for the group when you register for the live or on-demand version of the broadcast. CPE credit is available.

Generously Supported By:

supported by logo
Speakers
speaker photo
Rebecca Brown
Program Manager, Information Security & Compliance, Arizona Public Service

Rebecca Friedenthal Brown is the program manager for the Information Security & Compliance department at Arizona Public Service (APS). Based in Phoenix, APS is Arizona’s largest electric company and serves nearly 1.2 million customers across the state.

At APS, Brown is responsible for oversight of several aspects of the company cyber security, data privacy and compliance programs, including security awareness, security governance, risk management, policy development and maintenance, governance, metrics and stakeholder reporting. She also is responsible for delivering presentations on a wide variety of cybersecurity-related topics, including creating great passwords, phishing, ransomware and data privacy, to help improve security awareness across the organization.

speaker photo
Erich Kron
Security Awareness Advocate, KnowBe4
Erich Kron is a veteran information security professional with over 18 years’ experience in the medical, aerospace manufacturing and defense fields. He is the former security manager for the 2nd Regional Cyber Center-Western Hemisphere and holds CISSP, CISSP-ISSAP, MCITP, CCENT and ITIL v3 certifications, among others. He has managed the technical integration and functional testing of multi-million-dollar enterprise level technology projects within the Department of Defense, as well as large military security programs. Erich has worked with information security professionals around the world to provide the tools, training and educational opportunities to succeed in the InfoSec industry.
speaker photo
Daniel Reither, CISSP, CISM, CEH
Manager of Information Security, Health Partners Plans

Certified IT Security Professional with over 25 years’ experience, providing all facets of IT Security and Technology support, including Security Operations, Analysis, Architecture and Engineering. Additionally, Threat Intelligence, Endpoint Protection, Encryption, Vulnerability Management, Penetration Testing, Patch Management, Mobile Device Management, Project Management, installations, monitoring, maintenance and troubleshooting within a large business, Insurance and medical environments. Demonstrating repeated success in the development and execution of security and business strategies, to meet evolving business challenges, by maintaining an in-depth knowledge and understanding of industry technologies.

Vice President of the ISC2 Philadelphia Chapter

Moderator
speaker photo
James McQuiggan
Product & Solutions Security Officer, Siemens Gamesa Renewable Energy

James R. McQuiggan, CISSP is a cyber security expert in the Central Florida area. He is the Product & Solutions Security Officer of the Service Americas division at Siemens Gamesa Renewable Energy.  He is responsible for the developing the strategy and policies for securing the SCADA products deployed to America’s customers.  With over 16 years at Siemens, James has consulted and supported various corporate divisions on cybersecurity standards, information security awareness and securing their networks.  His previous position at Siemens in the Information Security group, he implemented the phishing program that assessed the Siemens US employees Energy division ability to “be thinkers and not clickers”

James has been an (ISC)2 member since 2008 and a volunteer of the Safe and Secure Online Program for the Center for Cyber Education & Safety.  Since 2011, he has volunteered and taught their Safe & Secure Online education and awareness program.  Over 7,000 students, parents, teachers and the “life experienced” (seniors) in the greater Orlando region have learned about cyber safety, cyber ethics, cybersecurity, and digital citizenship. He is a member of the North American Advisory Council (NAAC) and within the Central Florida community he has been President of the Central Florida ISSA chapter and is now the President of the Central Florida (ISC) 2 chapter.  He is the recipient of the 2016 (ISC)2 President’s Award for his valuable contributions toward advancing the information security profession. 

James is the father of two teenage daughters and continues to make sure they are safe and secure online while using their smartphones and social media.