Start: 17:35

Attendees: 30, # first time

Sponsor: Dell

Location: Improving, Independence, OH

Officers in attendance

• Rob Netgen
• Chris Hartley
• Troy Sheley
• Ted Kozenko

Chapter Updates

• Elections in October
• Charging for attendance in 2023
• Fees charged to the chapter covered by sponsorship
• Possible meeting 18:00-20:00 in 2023.

Job openings

• Parkplace Technologies - Security 1
• Current - SAP Security Lead
• Vitamix - Business Systems Analyst, Enterprise Engineer, Systems Architect.

Security Friends

• Public wi-fi worries WaPo
• American Airlines breached through phishing attack
• London police arrested 17yo of Uber hack
• Firing the entire cybersecurity team by Patreon
• Russian RSOCKS botmaster arrested
• Colonial Pipeline hackers add startling new capabilities to ransomware
• Hackers target unpatched Atlassian Confluence servers
• Malware bytes blocks google domain
• LockBit ransomware builder v3.0 leaked online by developer
• Unpatched 15yo Python bug allows code execution
• $35M fine for Morgan Stanley
• Critical flaw in airplane wi-fi.

Information Security Summit Announcement

• Call for volunteers
• Announcement of registration
• Security Friends will be there

Topic 1: Chris Hartley - Adventures in Cybersecurity (group discussion)

• Downloading images to company laptops
• Running websites on company servers
• Assessment vs. Audit = grades vs. proof
• Document what you do then prove it
• Is the CMDB actually up to date and what is in it
• Leaders in all levels have to be involved in security to drive it in the organization
• Assign work and delegate authority
• Can have policies, but can it be enforced as written; if not, it's not a policy
• What does good look like
• How is infosec viewed in the org - enabler, deterrent, etc.
• Know time to detect and time to defeat
• ISAO.org group for info sharing
• Resources: CSO mag, Gartner, Forester,
• what is my competitor doing.

End 19:35