• United States



Metricon 6: Be there

Jul 11, 20112 mins
Data and Information Security

If you have time Aug. 9 and you are in San Francisco, Metricon 6 is worth checking out.

The event, put on by an all-volunteer staff from the community, coincides with the USENIX Security Symposium.

Speaking of metrics: Read “Security metrics: Critical issues

The Usenix event has always been one of my favorites because of the caliber of speakers and, in my opinion, the nice balance between the human and technical content. Last year it was held in Washington D.C. and it was the first time I checked out the Metricon sessions.

That was a particularly eventful security con for me, because I drove down with the family from Boston and got hassled by the Secret Service for apparently hanging around the White House for too long taking pictures.

Given the change of location this time, attendees need not worry about the Secret Service.

Here’s a look at the agenda, which includes some good friends who know their stuff:

–Allison Miller, Itai Zukerman: Operationalizing Analytics

–Richard Lippmann and James Riordan: Critical Control Security Metrics for Continuous Network Monitoring

–Wendy Nather: Quantifying the Unquantifiable: When Risk Gets Messy

–Brian Keefer and Jared Pfost: Moneysec: Applying the “Moneyball” philosophy to information security metrics

–David Elfering: Security Metrics Workshop: The Impossible Dream… or Maybe Not

–Dominic White, Marco Slaviero, Charl van der Walt: SensePost Corporate Threat Modeller

–Dr. William Claycomb, Michael Hanley: Measuring the Impact of Insider Activity

–Richard Seiersen: ORM: Operation Risk Management

–Jake Kouns: CyberInsurance

–Mike Rothman panel: Collecting and Sharing Security Metrics: Overcoming Fear (or not!)

Related content: The security data and survey directory

I’ve been to the Bay Area twice this year and can’t make it back a third time for this, but I’ve learned a lot over the years from several of the speakers.

So if you’re in town, be there.

–Bill Brenner