Welcome to the Pittsburgh Chapter of ISSA

A local chapter of an independent, professional organization committed to improving the effectiveness of Information Security through awareness, education and networking with fellow Security professionals.

A special thanks to our chapter sponsors

Cadre_logo Aruba_logo ism_logo CyberImperva_logo sophos_logo
Infoblox_logo One Identity logo Seiso_logo Gigamon_logo Logrythm_logo
Sentinel One logo Secureworks_logo Logrythm_logo Wombat_logo

Chapter Announcements

Chapter Meeting

The next meeting will be held on Tuesday October 2nd. Registration is at 10:30 am and the meeting starts at 11:00 am. Lunch will be at noon. During lunch we will have our second presenter.

Our first presenter, Andy Thompson, of Cyber Ark another of our new chapter sponsors. They will present ‘Attacking SWIFT with Golden Ticket Attacks’.

Description: This talk highlights the risk of Kerberos attacks against Active Directory, specifically the Golden Ticket attack. Andy demonstrates the phases of an advanced targeted attack against a SWIFT banking organization using nothing but PowerShell-Empire. After the demonstration, Andy will discuss best practices for defending against and responding to these attacks.

Andy Thompson is the Strategic Advisor of Customer Success in the Southwest region for CyberArk Software. He is responsible for providing guidance in securing organizations with technologies and security best practices in order to prevent credential theft and breach. Andy spent the last 20 years in the fields of Web Development, Systems Engineering/Administration, Architecture, and the last 6 in Information Security and Architecture primarily focusing on large retail organizations. Andy is also active in the Information Security communities of Texas as a member of Shadow Systems Hacker Collective and the Dallas Hackers Association. Andy holds a Bachelor's of Science degree in Information Systems from the University of Texas at Arlington as well as the Certified Information Systems Security Professional (CISSP), and Systems Security Certified Practitioner (SSCP) certifications from (ISC)2. He is also COMPTIA Security+ Certified as well as a GIAC Certified Penetration Tester (GPEN). Andy is also a member of the SANS advisory council and CISSP instructor Previous speaking events include BSidesTampa 2017, BSides Oklahoma 2017, BSides Iowa 2017, BSides Denver 2017, BSides Cincinatti 2017, Information Warfare Summit 2016, ISSA International 2016 and others. 

We’ll take a break around noon to grab some lunch and then we will have a presentation by SOPHOS. More information on that presentation will be forthcoming.

After the second presentation we will have the drawing for $50 AMEX gift card and lunch. The winner must be present to claim the prize or we will redraw. There will be 2 CPE given to attendees of the lunch meetings.

Meeting location: The Gulf Tower; Gulf Theater. 707 Grant Street on the 3rd floor.

Cost: $10 for members of AITP, ARMA, InfraGard, ISACA, ISC2, ISSA, OWASP, Steel City InfoSec and TRCPA with advance registration. $15 for non-members with advance registration. $5 for students with advance registration

To register in advance for this meeting contact Mike Sotace at mpsotace@edmc.edu. Deadline for advance registration is Friday September 28th, there is an extra $5.00 charge for registration after this date.