Marek Pietrzyk - SIGS Special Event Zurich - Digital Rights Management for Data Protection - March 2015
1. Topic:
Learn how to enhance the value of Data Loss Prevention with Data
Classification triggering Rights Management
Applying advanced classification and extended RMS functionalities to fully protect your organization’s
sensitive data
Target Audience Senior Information Security Executives
CIO’s, IT Manager, Security Engineers and all other persons who are
responsible and interested in Security
Security Vendor, Consultants and Reseller (please only technical interested
persons)
CPE Credits Earn 3.75 CPE (Continous Professional Education) for attending
a SIGS Afterwork Event. Please request a confirmation.
Location Hilton Zurich Airport Hotel
Hohenbuehlstrasse 10
8152 Opfikon-Glattbrugg
There are a lot of free park spaces available.
Train: railway station Zurich Airport – take the Hotel Shuttle
Date of Event 4th
of March 2015
Language German/English (if English-speaking persons attend, whole event in English)
Schedule See below
Participation Costs Fr. 30.—per participants
Drinks are taken by the sponsor!
Sponsors
More information at www.imtf.ch
More information at www.microsoft.com
More information at www.secureislands.com
2. Agenda
14:30 – 15:00 Registration & Coffee
15:00 – 15:05 Welcome & Introduction
15:05 – 15:35 Christian Schmalisch, Business Development at IMTF
From perimeter-based to data-centric security– Why and How our clients have
walked that way?
As Archive provider with more than 250 clients worldwide, IMTF has been
approached with the same question again and again: How can the data, which leaves
the Archive, be secured and controlled across systems and company borders! IMTF
has learned together with and from its customers that optimum data protection can be
guaranteed only if classification, -encryption and IRM is applied immediately when
data is generated. Learn in this session, how IMTF has developed, planed and
technically implemented the data classification with its customers to ensure an
efficient Rights Management.
15:35 – 16:05 Lorenz Neher, Senior Manager, Cyber Security at PwC
How to protect enterprise data appropriately?
Data protection, cyber security and data leakage among others are buzz-words we
come across in many news article and marketing brochures. The selection of the
reight approach and its implementation, however, is a challenge. Lorenz Neher will
share a pragmatic and step by step approach how to firs identify the most valuable
date of your enterprise and apply a classification schemata. As a next step the
enterprise has to define what “appropriate” means for its specific situation and
environment. Finally, some tips what to consider when defining and implementing
information security measures. As a general guideline: data protection is not a
product or a status – it is a continuous practice.
16:05 – 16:35 Martin Sieber, Senior Consultant at Microsoft Switzerland
Microsoft’s RMS is helping organizations to share sensitive documents within their
organization or to other organizations in a secure manner. The session will cover the
latest advancements in RMS, and new features to its encryption and rights
management mechanisms. Topics discussed will include:
• The RMS Experience
• New possibilities with Azure RMS
• Advancements and new features of RMS
16:35 – 17:00 Break
3. 17:00 – 17:30 Yuval Eldar, Founder and CTO, Secure Islands (in English)
Persistent Data Immunization: Embedding security at the point of creation for
sensitive unstructured data
Business data explodes; every day, billions of files and emails are created, used and
shared between employees at enterprises all over the world. The mobile and cloud
revolutions enable people to use data anywhere, from any device and share it with
others with a click of a button. The business moves faster, but at the same time –
organizations have completely lost control of their sensitive data.
Yuval Eldar, a 20 year veteran of the security market, will present the new concept
of Data Immunization that is aimed at helping organizations regain control over their
sensitive information by focusing on the data itself, rather than continue to sink
money and resources into inefficient perimeter defenses. Topics will include:
• Why perimeter-based protection is no longer effective
• How to apply active immunity for the entire data lifecycle
• Data Immunization and how it changes the data protection paradigm
17:30 – 18:00 Marek Pietrzyk, CDC DRM Business Project Manager at UBS AG
As a global operating financial institution UBS provides investment banking, asset
management, and wealth management services for private, corporate, and
institutional clients worldwide. UBS is the biggest bank in Switzerland, operating in
more than 50 countries with about 60,000 employees around the world.
As a leading financial services provider, UBS defines information security as the
backbone of our business. Our clients, as well as employees trust us to keep their
information safe and secure, so it is critical that we prevent any accidental or
unauthorized access to them.
The session will present UBS’ experience in defining and executing an enterprise-
wide data classification and protection project to ensure the safety and integrity of
the firm’s sensitive client data. The presentation will focus on UBS’ experience on:
Classification and protection of reports generated from applications containing
CID (Client Identifying Data).
Methods for automatic protection of downloaded or user generated files.
Measures for effective controls of internal and external transmissions of
emails with sensitive content.
Keeping all activities logged, reported and monitored enterprise-wide.
And how to successfully deploy such a major security infrastructure release –
avoiding number of security traps.
4. 18:00 – 18:30 Panel Discussion moderated by Erich Vogt, SIGS
18:30 – open end Apéro Riche & Networking
The speakers will be onsite for Q&A
This is a ‘must attend’ event for all security professionals! We are confident that the relationships you
develop here will prove to be crucial to your continuing success. So don’t wait and register at
https://www.xing.com/events/sigs-special-event-marz-2015-zurich-thema-datenklassifizierung-
advanced-dlp-1484964 if you have a XING account. If you don't have or don't like to have a XING
account, just send us an email to info@sig-switzerland.ch.
We’re looking forward to see you there!
Your Security Interest Group Switzerland