The Department of Homeland Security is charged with securing the government's nonmilitary networks, and cybersecurity experts said the Obama administration will have to better define the extent of this military support to Homeland Security. "It's a fine line" between providing needed technical expertise to support federal agencies improving their own security and deeper, more invasive programs, said Amit Yoran, a former senior cybersecurity official at the Homeland Security Department.
Years earlier the Israeli Michael Goff working for PTech, an arab owned software company that developes key enterprise software for many government institutions like Norad and FAA, using his secure channel with another Israeli Amit Yoran, somehow manages to give Israeli army computer programmers access to this critical computer code. It was due to this manipulation that the hijackings on 9/11 remained unnoticed by the flight controller of Norad. Once this was in place the planes could be taken over by remote control and flown into the World Trade Center.
The hijacking of airliners by remote control had been tested as a dress rehearsel for 9/11 on the Egypt Air flight 990 that crashed into the Atlantic on october 31, 1999.
________________________________________________________________________http://www.guardium.com/index.php/prprint/380Nation’s Former Cyber Security Chief Joins Guardium Board of Directors
Amit Yoran to Provide Insight and Guidance to the Leading Database Security Company
WALTHAM, MA, June 16, 2005 – Guardium, Inc., a leading provider of database security solutions, today announced that Amit Yoran, a renowned expert in cyber security, has joined its board of directors. Mr. Yoran, who formerly served as the Bush Administration’s cyber security chief, will provide invaluable guidance into the security risks facing global enterprises and ways in which Guardium can help companies mitigate critical data security exposure.
“Databases and the information they store represent very critical corporate assets. They also rank among the most vulnerable and frequent cause of significant business disruption,” said Amit Yoran, President of Yoran Associates. “I am pleased to join Guardium’s board of directors because their database security solutions provide innovative, effective ways to safeguard the data stores typically considered an organization’s crown jewels. These types of solutions are and will increasingly be a fundamental and critical component of every information protection strategy.”
“We are extremely pleased that Amit Yoran, an internationally distinguished cyber security leader and visionary, is joining Guardium’s board of directors,” said Ram Metser, President and CEO of Guardium. “We are gratified he is joining based on his strong belief in our direction and solutions, and we are confident that Mr. Yoran will contribute significantly to our continued high growth.”
Mr. Yoran is President of Yoran Associates, a firm providing advisory services to global enterprises on technology strategies for addressing business exposure. Working with the Secretary of Homeland Security, Mr. Yoran was appointed by President Bush as the Administration’s cyber chief, responsible for coordinating national cyber security activities. Mr. Yoran previously served as CEO of Riptech until its acquisition by the Symantec Corporation, where he served as Vice President of Worldwide Managed Security Services.
Headquartered in Waltham, MA, Guardium (http://www.guardium.com
) develops and delivers innovative database security solutions that remove complexity, and provide visibility and effective controls over database access activities of IBM, Oracle, Microsoft, and Sybase environments. Guardium’s family of non-intrusive, robust applications addresses key database security concerns that include database security assessment, access policy control and enforcement, auditing, and regulatory compliance. Guardium’s growing customer base includes some of the world’s most technically advanced organizations representing a wide range of industries. Financial services, telecommunications, media, manufacturing, healthcare, and government organizations trust Guardium’s solutions to protect their mission critical data and handle their compliance challenges. Guardium investors include the Cedar Fund, Veritas Venture Partners, and StageOne Ventures.
Copyright © 2006 Guardium. All rights reserved. Information in this document is subject to change without notice. Guardium, SQL Guard, Safeguarding Databases, SQL HealthGuard, SQL AuditGuard, SQL PolicyGuard, SQL RemoteGuard, and SQL Guard Security Suite are trademarks of Guardium, Inc. All other trademarks and trade names are the property of their respective companies. Copying and redistribution of this material is expressly permitted by the copyright owner.
Corinne Sheen or Adam Parken
August 7, 2008 5:00 AM PDT
'Cybersecurity commission' to proffer advice to next president
LAS VEGAS--Transitions between presidential administrations are typically influence-peddling, power-consolidating, appointee-vetting exercises run by Washington insiders. Perhaps that's why the quintessential Washington think tank, the Center for Strategic and International Studies, is trying to insert itself into the process.The private organization, which has close ties to the U.S. military and counts Henry Kissinger on its payroll, has gathered about 35 people and awarded them the official-sounding title of "Commission on Cyber Security for the 44th Presidency." Adding to the formality are some closed-to-the-public meetings and ex-officio members from federal agencies, congressional offices, and the nebulous "intelligence community."
One panelist said that the FBI's "InfraGard" information-sharing relationships with the private sector shouldn't change.
"We're not recommending to do away with InfraGard," said Jerry Dixon, director of analysis at the Team Cymru research firm, a former Homeland Security official, and a commission member. "That's something that the executive departments have set up... We're certainly not recommending to do away with those different partnerships because they belong to the different departments."
The CSIS panel is composed mostly of industry, government, and ex-government types. Among the other members: Mary Ann Davidson, Oracle's chief security officer; Doug Maughan, a Homeland Security program manager; Will Pelgrin of New York's cybersecurity office; Phil Reitinger, a Microsoft security strategist; and Amit Yoran, chairman of NetWitness and a former Homeland Security official.
The commission plans to publish the final report in "early November" and, perhaps, an earlier draft for public comment.
"It has to be elevated to the highest echelons of this government and internationally," Tom Kellermann, a vice president at Core Security Technologies, a former World Bank security official, and a commission member, said, referring to cybersecurity topics. "We're losing the war. It's essential. That's the key theme of the recommendations that will come out."
Louie, who was based in San Francisco during the dot-com heyday, went on to build the flight-simulation game F-16 Fighting Falcon. In-Q-Tel tapped him in 1999 when he was head of toymaker Hasbro Inc.'s interactive unit. Louie quit in December 2005. He says he had started to sound more like a federal employee than a techie. The CIA awarded him the Seal Medallion, an award that recognizes the contributions of nonagency personnel, the next year.In a world rocked by the Sept. 11 attacks and the U.S. invasion of Iraq, In-Q-Tel's board sought a leader with better counterterrorism credentials. It hired Amit Yoran, 37, former director of the Department of Homeland Security's national cybersecurity division, which is charged with protecting the U.S. from Internet-based threats.
Yoran left four months later, in April 2006. He joined Herndon, Virginia-based NetWitness Corp., an Internet security startup, that November. In-Q-Tel then approached Mark Frantz, one of its managing general partners, who'd joined from buyout firm Carlyle Group. He declined and quit two months after Yoran, leaving the spy fund to Interim Chief Financial Officer Scott Yancey until Darby took over.
Amit Yoran, CEO, Yoran Associates
Amit Yoran is president and CEO of Yoran Associates and currently serves as an independent director and advisor to several early stage security technology companies and large corporations. He was appointed by President Bush as the Administration's cyber chief, responsible for coordinating the national activities in cyber security. Working with the Secretary of Homeland Security, Mr. Yoran coordinated among federal departments, law enforcement and intelligence efforts, as well as direct interaction with many leading IT and IT security companies. These efforts were particularly focused on protection of the 13 critical infrastructures of the United States. Prior to joining the Bush Administration, Mr. Yoran was the Vice President of Worldwide Managed Security Services at the Symantec Corporation. Mr. Yoran was the co- founder of Riptech, a market leading IT security company, and served as its CEO until the company was acquired by Symantec. He previously served an officer in the US Air Force as the Director of Vulnerability Programs for the Department of Defense's Computer Emergency Response Team. Mr. Yoran received a Master of Science degree from the George Washington University and Bachelor of Science from the United States Military Academy at West Point.[/color]
See this post: BAH - WARGAMING *ALERT* - INTERNET FALSE FLAG - Preemptively Exposedhttp://forum.prisonplanet.com/index.php?topic=87140.msg506510#msg506510
________________________________________________________________________http://www.guardium.com/index.php/pr/724Guardium Hosts Executive Cybersecurity Seminar on Best Practices for Database Security, Privacy & ComplianceLeading Data Protection Experts Highlight Pressing Government Issues Including Cybersecurity and Emerging Threats
WALTHAM, Mass. (June 2, 2009) - Guardium, the database security company, is hosting a “Best Practices for Data Security, Privacy & Compliance” seminar, featuring Gartner’s John Pescatore, Booz Allen Hamilton’s Andy Singer and Guardium CTO Ron Ben Natan, Ph.D. The seminar will be held on June 16th from 8 a.m. to 12 p.m. at the Ritz Carlton, Pentagon City in Arlington, VA.
According to a recent report from IBM, SQL injection attacks jumped 134% in 2008, increasing from an average of a few thousand per day in 2007 to 450,000 attacks per day. The report also states that China has now surpassed Russia and the U.S as the country hosting the most malicious Websites.
And a data breach study by Verizon Business Services revealed that more electronic records were breached in 2008 than in the previous four years combined. In addition, the study found that database servers accounted for 75% of all records breached, while end-user devices such as laptops and USB drives accounted for only 0.01%.
Protecting against cyberattacks, breaches, fraud and insider threats has heightened the need for federal agencies and contractors to carefully review their security programs against the FISMA-mandated NIST 800-53 standard and comply with the OMB M-06-16 directive ("Protection of Sensitive Agency Information"), in order to secure Personally Identifiable Information (PII) and other sensitive data such as financial data and classified information. At the same time, agencies and contractors are looking to streamline their data security infrastructures with automated and centralized controls for complex, heterogeneous and highly-distributed environments.
This executive seminar will include the following cybersecurity experts:
* John Pescatore, Gartner Vice President
and Research Fellow, who has 28 years of experience in computer, network and information security. John will discuss the federal government’s role in stimulating progress towards higher levels of cybersecurity; new and emerging threats such as SQL injection and privileged insider breaches; best practices for improving vulnerability management to reduce risks; and the security implications of cloud computing.
Prior to joining Gartner, Mr. Pescatore was senior consultant for Entrust Technologies and Trusted Information Systems, where he started and managed security consulting groups. His previous experience includes 11 years with GTE, as well as employment with NSA and the U.S. Secret Service. John has a BSEE from the University of Connecticut and is an NSA-certified Cryptologic Engineer.
* Andy Singer, Principal at Booz Allen Hamilton
, who recently retired as the Navy rear admiral holding positions as the director for intelligence in the Pacific and deputy of Naval Network Warfare Command, after spending 31 years in the Navy. Andy will describe why traditional “fortress approaches” (such as firewalls and IDS/IPS systems) are no longer sufficient to protect against 21st-century attackers who can easily bypass perimeter defenses; best practices for implementing NIST 800-53 controls for critical database infrastructures; and a new way of thinking about cybersecurity that focuses on a “megacommunity” approach in which government, business and civil society collaborate to advance shared vital interests. Mr. Singer also worked at Spawar Systems Center Charleston, NETWARCOM and was Vice Commander at the Naval Network Warfare Command. He has an MS in Security Strategy from the National War College.
Ron Ben Natan, Ph.D. and Guardium CTO, who has more than 20 years of experience developing enterprise applications and security technology for blue-chip companies. Ron will discuss best practices for database security and compliance; how to leverage the latest technologies for database activity monitoring (DAM) and logging, vulnerability assessment, data discovery and configuration change control; and how to reduce the cost and complexity of compliance with automated controls and workflow processes. Prior to Guardium, Dr. Ben Natan worked for Merrill Lynch, J.P. Morgan, Intel and AT&T Bell Laboratories. Ron has also served as a consultant in data security and distributed systems for Phillip Morris, Miller Beer, HSBC, HP, Applied Materials and the Swiss Armed Forces.
He is an expert on distributed application environments, application security, and database security, and has authored 12 technical books including HOWTO Secure and Audit Oracle 10g and 11g (CRC Press, 2009) and Implementing Database Security and Auditing (Elsevier Digital Press, 2005), the standard texts in the field.
In this session, attendees will hear how key government agencies such as the FTC and Washington Metropolitan Transit Authority (WMTA), and private sector organizations including 3 of the top 4 U.S. banks, have implemented granular access controls and real-time monitoring to track all access to sensitive data - across all DBMS platforms and applications - without impacting performance or changing databases or applications. You’ll also learn best practices for hardening your database environments and mitigating risk.
WHAT: Executive seminar: “Best Practices for Database Security, Privacy & Compliance”
WHO: John Pescatore, Vice President and Research Fellow, Gartner
Andy Singer, Principal, Booz Allen Hamilton
Ron Ben Natan, Ph. D., Guardium CTO and author of the newly published book: HOWTO Secure and Audit Oracle 10g and 11g, the definitive guide for database security and risk management professionals
WHEN: Tuesday, June 16th, 2009
8:00 a.m. - 12:00 p.m.
WHERE: Ritz Carlton, Pentagon City in Arlington, VA.
WHO SHOULD ATTEND: C-level executives and day-to-day practitioners involved with IT security, risk management and compliance, governance and privacy, database administration and enterprise application architectures.
Register today to qualify for complimentary admission to “Best Practices for Data Security, Privacy & Compliance” and get strategic insights delivered by the most respected data security and compliance experts.
Guardium, the database security company, delivers the most widely-used solution for preventing information leaks from the data center and ensuring the integrity of enterprise data.
The company’s enterprise security platform is now installed in more than 450 data centers worldwide, including top government agencies; 3 of the top 4 global banks; 3 of the top 5 insurers; 2 of the top 3 global retailers; 15 of the world’s top telcos; 2 of the world’s favorite beverage brands; the most recognized name in PCs; a top 3 auto maker; a top 3 aerospace company; and a leading supplier of business intelligence software.
The company has partnerships with Oracle, Microsoft, IBM, BMC, EMC, Accenture, McAfee and ArcSight, with Cisco as a strategic investor, and is a member of IBM’s prestigious Data Governance Council and the PCI Security Standards Council.
Founded in 2002, Guardium was the first company to address the core data security gap by delivering a scalable enterprise platform that both protects databases in real-time and automates the entire compliance auditing process.
Guardium is a trademark of Guardium, Inc.