SOUTHFIELD ? Vulnerability assessment methodology and tools for the non profit sector will be the topic addressed Sept. 18 at the Motorcity chapter of ISSA.

Public awareness of security issues in the non-profit sector has focused on large organizations such as Goodwill and The Red Cross. The risks faced by these companies are also faced by smaller organizations. We will discuss the business drivers of the average NPO, including privacy, liability, and regulatory compliance. These drivers will form the context for a discussion of security requirements. We will discuss a methodology and toolset with which to conduct a vulnerability assessment and remediation that will not exceed their financial constraints. A case study will be presented on how this approach was used to conduct an assessment and remediation session with a Detroit non-profit organization.

Speakers include:

Steven F. Fox ? Systems Engineer, Ratheon Professional Services

Dan Zendell ? GM Security Officer, Hewlett Packard

The meeting will be held at 6 pm at Cisco Systems Southfield Office, 2000 Tower ? Suite 405, 4th floor, Southfield Town Center.

Speaker Bios:<./p>

Fox is a Systems Engineer at Raytheon Professional Services and ISSA member. He is a recent graduate of Walsh’s MSBIT program. His professional experience includes working as a computer science instructor for a bilingual school in Honduras, starting an internet consulting practice, and working as a web-master at Ford Motor Company. Shortly after joining RPS, he developed a client-server web-based authentication system for use with online courseware. This system allowed RPS to identify cheaters. He has served as the CTO and Chairperson for Intense Mentoring, a Detroit non-profit organization. In June, 2007 he was the project manager and co-developer of a security assessment toolkit for NPower Michigan. His research interests include risk assessment, authentication, and human-factors analysis as it pertains to the enforcement of security policies.

Zendell has over nine years of experience in Information Technology and currently works at Hewlett Packard as the Lead North American Security Officer for the General Motors account. He has worked as a Security Consultant for various financial, health care and automotive organizations. Dan has experience in analyzing and documenting various information security systems to meet government requirements, as well as providing risk assessments, internal and external host assessments, computer forensics analysis, intrusion detection and prevention services to Fortune 500 companies. He is a Certified Information Systems Security Professional (CISSP) and recently obtained a Masters of Science in Business and Information Technology (MSBIT) from Walsh College.

Please send RSVP to [email protected]

a>>