August 7 and 8: Websense Technical Training

2 Full Days of Technical Training

 

During this two day training course, you will learn how to install, configure, administer and support Websense Web Security Suite software. Through instruction, iLabs (instructor led demos and lab exercises) and hands-on lab practice exercises, you will gain familiarity with the requirements and recommendations of Websense product deployment, installation and configuration, Websense product and component functionality (remote filtering, delegated and remote administration) and troubleshooting via internal and 3rd party diagnostic processes.

 

Topics Covered:

 

Topic 1: Course Introduction: Websense Overview and Software Architecture

 

Topic 2: Installation and Deployment Part 1

 

Topic 3: Websense Server Configuration

 

Topic 4: User Identification: Authentication and User Names

 

Topic 5: Working with Policies

 

Topic 6: Troubleshooting Part 1

 

Topic 7: Websense Reporting Tools

 

Topic 8: Remote Filtering

 

Topic 9: Deployment Part 2

 

Topic 10: Installation Part 2

 

Topic 11: Advanced Administration

 

Topic 12: Troubleshooting Part 2

 

[Optional Modules]

 

Topic 1a: Terminology, Network Essentials and Websense Software Basics

 

Topic 13a: Integrations and Websense Technology Partners

 

Topic 13b: Websense Security Labs

 

  

Lecturer:

 

Arun Chaudhury, Technical and Presales Consultant of Websense Inc, S.E. Asia.

 

Security consultant for 7 years prior joining Websense. He’s now a Certified Websense Systems Engineer (CWSE) and Certified Websense Instructor (CWI).

August 6: Websense Partners Program Seminar

Get to know more about Quantiq and Websense and how we can help you grow your business with Websense.

Learn about our solution offerings and why we are the market leader in both Web Content Security (#1 market share as ranked by IDC) and Information Loss Prevention (top the charts as indicated by Gartner and Forrester Wave).

Be a Websense Partner today and embark on our Partner Incentive Programs.

Sorry Registration is Closed.

Cenzic Web Application Security Workshop

With growing number of business applications being put online how does a company keep their applications safe from web attacks such Session Attacks, Phishing, Authorization Bypass, SQL Injection, Cross Site Scripting, Buffer Overflows, Cookies and hidden fields tampering, Cross Frame Scripting?

 

Recently, Quantiq organized a Web Application Security Workshop with Cenzic to promote preventive measures on web application loopholes last 2^nd July at Orchard Parade Hotel. The whole day event talked about everything what every organization must know about Web Application Security how to address common web vulnerabilities.

 

 

Cenzic’s Director of Worldwide Channels and Alliances, Steve Maxwell discussed on the morning session what Web Application Security is and where to implement it and how to stay on top of the entire company’s web vulnerabilities. The technical session was handled by Prashanth Ravishankar, Director of Technical Services, Cenzic Inc., where he covered common web attacks, how web application scanners work, how to handle AJAX and web services, and Spidering and navigation in Web Applications.

 

This is in line with our series of ProACTivity Day program that we’ve been running since April 2008 to update our customers with the latest trends in cyber security. The Switch to Hailstorm ARC Promo was also launched that day in Singapore.

 

A lot of attendees requested for a hands-on session that’s why Quantiq and Cenzic decided to have a 2 half day sessions of hands on workshop on 24th July. If you want to register, just email marketing@quantiqint.com.

 

Again we thank everyone who joined us on that day and we hope to see you on our future events.

 

To download Trial License of Hailstorm PRO please click the link below. This will be available after July 21, 2008.

 

https://www.cenzic.com/download/dmfeeo9eme0o430o/5.7_CHSPro.zip  

 

Cenzic Web Application Security Workshop

With growing number of business applications being put online how does a company keep their applications safe from web attacks such Session Attacks, Phishing, Authorization Bypass, SQL Injection, Cross Site Scripting, Buffer Overflows, Cookies and hidden fields tampering, Cross Frame Scripting?

Recently, Quantiq organized a Web Application Security Workshop with Cenzic to promote preventive measures on web application loopholes last 2^nd July at Orchard Parade Hotel. The whole day event talked about everything what every organization must know about Web Application Security how to address common web vulnerabilities.

Cenzic’s Director of Worldwide Channels and Alliances, Steve Maxwell discussed on the morning session what Web Application Security is and where to implement it and how to stay on top of the entire company’s web vulnerabilities. The technical session was handled by Prashanth Ravishankar, Director of Technical Services, Cenzic Inc., where he covered common web attacks, how web application scanners work, how to handle AJAX and web services, and Spidering and navigation in Web Applications.  

This is in line with our series of ProACTivity Day program that we’ve been running since April 2008 to update our customers with the latest trends in cyber security. The Switch to Hailstorm ARC Promo was also launched that day in Singapore.

 

A lot of attendees requested for a hands-on session that’s why Quantiq and Cenzic decided to have a 2 half day sessions of hands on workshop on 24th July. If you want to register, just email marketing@quantiqint.com.

Again we thank everyone who joined us on that day and we hope to see you on our future events.

To download Trial License of Hailstorm PRO please click the link below. This will be available after July 21, 2008.

https://www.cenzic.com/download/dmfeeo9eme0o430o/5.7_CHSPro.zip   

 

July 24: Hands-On Web Application Security Workshop by Cenzic

Speaker: Prashanth Ravishankar, Director of Technical Services Cenzic Inc.  

This Web Application Security Workshop is uniquely design for our recent attendees from Web security conference and Cenzic product trial users. While some security courses may brush over application security, or cover the security of small-scale “demo” applications, Quantiq / Cenzic concentrates on the latest application security attacks against modern, enterprise, applications. 

This hands-on workshop teaches you: 

• The fundamentals of modern Application Security
• Application security threats and assessment/attack techniques
• The latest threats to Web Services and AJAX-enabled applications
• How automated tools help

 

July 2: Web Application Security Workshop by Cenzic

TRAINING AGENDA

 

What is Web Application Security (Part 1)

 

Web application security is a key top-of-mind concern for general managers, CISO’s, CIO’s and security staff for all companies. Widespread data breaches and intellectual property thefts have left few organizations untouched or unaware. This session will provide an overview of the web application security space including:    

• History,
• Trends,
• Regulations, and
• Hacker profiles.
• Common Web Application Attacks

What is Web Application Security (Part 2)

 

For those of you wanting an advance session on Web application security, you will learn further details on the following items:

• Products,
• Strategies,
• Implementation, and
• Attack Vectors.
• How Web Application Scanners Really Work

Where to Implement Security

 

Current methods of addressing the application security problem focus on improving the security process within the software development lifecycle. Testing early in the development cycle has great merit, but it leaves production applications’ exposure unaddressed. Only a small percentage of Web applications are in the development or QA stage at any point of time, leaving a vast majority of the applications in production exposed and vulnerable. This session will teach you how you can test in your production environments –without affecting or corrupting the database and application — using virtualization.

 

360-Degree View of your Enterprise’s Application Security Posture

 

How can your entire team – from development, QA, and production to senior management — stay on top of the entire company’s Web vulnerabilities? This guided demonstration session will show you how to obtain a dashboard view of various security perspectives, including:

• How many web applications do I have?
• Can I prioritize vulnerabilities?
• What’s tested and what needs testing?
• How productive is my team?
• Spidering and Navigation in Web Applications

 

Technical Sessions (AFTERNOON)

 

Common Web Application Attacks

From buffer-overflows to SQL injection, hackers have various techniques at their disposal to attack Web applications. This session explains how Web application attacks occur, identifies common and obscure Web application attacks, and provides Web application security tools and tactics to protect against them.

 

How Web Application Scanners Really Work

This session will focus on the mechanisms used by scanners to learn as much as possible about the targeted Web server. Some learning highlights will include:

• Black box v white box testing and
• Signature-based scanning.

How to Handle AJAX and Web Services

Topics covered include understanding how web application risks (such as those in OWASP Guide and OWASP Top Ten) apply in a Web Services world, and Web Services security topics such as:

• Secure Exception handling in Web Services
• Understanding the impact of Web 2.0 technologies like AJAX

Spidering and Navigation in Web Applications

In this advanced session, you’ll learn how spiders and navigations can be automated or guided across your entire Web application infrastructure to best detect vulnerabilities. 

 

SPEAKERS BIO

 

Prashanth Ravishankar, Director of Technical Services, Cenzic Inc.

Prash is one of the sharpest minds in the new and evolving world of web application security. With nearly a decade of hands-on experience in the security industry, Prashanth has helped clients on a variety of issues, focusing on holographic and quantum cryptography, and more recently web application security. Prash has been with Cenzic for more than four years, and has worked in engineering, professional services, and pre-sales capacities. In his role at Cenzic, Prashanth managed the remote penetration testing arm of Cenzic, working to test a variety of web applications from Fortune 1000 organizations. He has spoken on the topic of application security in many countries around the world.

Prash holds a bachelors degree in computer science from Northwestern University in Chicago, and will be taking leave from Cenzic this fall to pursue his MBA from the Kellogg School of Business at Northwestern University in Chicago.

 

Steve Maxwell – Director of Worldwide Channels and Alliances, Cenzic, Inc.

Steve has more than 20 years experience in technology, software, and security sales and operations. Working for companies such as Hewlett-Packard, BEA Systems, Borland Software, Nokia, and SonicWALL, Steve has helped hundreds of organizations understand and deploy enterprise solutions. Over the past four years, he has turned his attention to the rapidly evolving area of security, first in the network security space with SonicWALL and Nokia, and now the area of web application security with Cenzic.

Steve holds a bachelors degree from San Jose State University in San Jose, California, and an MBA from Golden Gate University in San Francisco.

SORRY REGISTRATION CLOSED

June 13: Data Risk Assessment Workshop by Websense

This whole day hands-on event is intended for companies looking to support an investment decision in an information leak prevention solution. This workshop will help organizations quantify the daily risk posed by information leaks and illustrate the ease with which a solution may be implemented.

Workshop Entails:

Risk Management Assessment

• Private and confidential information that is being leaked.
• Who are the unauthorized recipients of sensitive information.
• How sensitive information is being leaked from the client.

Policy Creation and Tuning

• Policy violations for regulatory and corporate compliance.

Incident Remediation

• Groups or individuals responsible for information breaches.

We highly encourage all participants to bring their own laptop. Please see hardware specifications below:

·         Minimum 2 GB of RAM (more memory, the better the overall experience)

·         Screen Resolution of at least 1024×768.

·         Dual-core P4 (or equivalent) minimum 2 GHz

·         VMware Server or Workstation (free version of VMware server is fine)

·         Java installed (required to demonstrate Hatsize)

REGISTER NOW!!!

To register, we need you to answer these following questions that we will be using for this workshop and for us to evaluate if this workshop really suits you.

1. Do you have any immediate concern w/ regards to your data?

2. What are the challenges in managing data within your organization?

3. Are you currently using any DLP (Data Leakage Protection) Solutions for your company?

4. What are the critical datas in your company that you want to protect?

5. Are you aware that you will be paying $1,200 SD if you DON’T SHOW UP to this event after registering?

Please email your answer to this questions together with your contact informations (Name, Company Name, Position, Email and Handphone) to marketing@quantiqint.com and we will you send you an email notice for confirmation.

Date: June 13, 2008

Time: 9:00 AM – 5:00 PM

Registration: 8:45 AM

Venue: 89 Short Street Golden Wall Centre #10-03 Singapore 188216

Sponsored by:

 

Lunch and Learn, “Next Generation Network Security Threats — What to Protect Against”

 Guest Speaker: Ken Pappas, VP and Security Strategist of Top Layer

This educational lunch and learn is ideal for anyone responsible for network security and protecting critical assets. Industry expert, Ken Pappas, will focus on discussing how today’s technologies are failing, what the next generation of network threats are, and how to protect against these attacks. Also learn how to proactively protect your network from common threats including malicious content, undesired access, and rate-based attacks using the latest network intrusion prevention system technology.

You’ll further benefit from the session by meeting with industry peers, sharing network security issues, and having the opportunity to ask questions and speak with industry experts.

*Ken brings more than 20 years of network security, product management and marketing experience to Top Layer. Prior to joining Top Layer, Ken owned and operated his own consulting firm specializing in network security, held the Security Strategist title for the Security Solutions division at 3Com Corporation/Tipping Point and was the General Manager of the security business division at Enterasys Networks.

Ken is a global keynote speaker and has spoken on security topics to many industry and government groups including the Department Of Homeland Security, Higher education consortia, National Retailers Association, InfraGard, SIM International and NBC TV on the topic of Cyber terrorism. Ken is a forensic expert and has recently completed his CISM courseware. He also holds a security clearance with the Department of Homeland Security.

Fore more details and registration on your contry please check below:

Date                        Country

June 9, 2008             Indonesia

June 10, 2008           Singapore

June 11, 2008           Thailand

Sponsored by:

May 6: Corporate Investigation and eDiscovery Seminar

A simple, complete, powerful and cost effective solution for in-house corporate eDiscovery that has been proven and used deeply by law enforcement agencies, large enterprises in the world.

Precise End-To-End Solution for Corporate Investigations

THE CHALLENGE: More investigations to undertake, with bigger and bigger data sets, and expectations of immediate results. The reality is that corporations face an enormous (and rapidly growing) challenge to find relevant information quickly and effectively and to reduce the spiraling cost of the eDiscovery process. They require technology to assist them that is fast, simple-to-use, forensically sound and accurate.

Whether it be intellectual property theft, compliance issues, FOI requests, regulatory requirements to produce information, or other corporate investigations, the pressure on internal investigators is growing.

With as much as 90% of communication now in electronic form, investigators must be able to quickly and accurately establish who knew what, and when.

Internal investigation groups are expected to produce precise results within tight time frames. Most use a variety of software tools to search, index and analyze different email and document systems, formats and languages, resulting in an onerous and time-consuming process.

Come join us and keep abreast of technology that helps you manage the following:

 

• What is eDiscovery?
• What could be considered relevant evidence in a lawsuit or criminal inquiry?
• Where your Security and Legal departments meet?
• How to avoid ending up facing counter litigation for improper evidence collection and handling?
• Discussion

 

                            Venue : Carlton Hotel Level 2

                              Time  : 1430hrs to 1700hrs

                               Date : 6th May 2008

For Registrations:

 

Email : marketing@quantiqint.com

 

We look forward to seeing you there.