PRELIMINARY PROGRAMME
 










DAY 1             DAY 3
 

Day 2 – Tuesday, 7 July 2009

07:30–08:30

Registration

 

Session chair: Hein Venter

08:30-08:40

Welcome address: Dr Marijke Coetzee, Conference Co-chair, University of Johannesburg

08:40-09:10

Security Non Innovation

Marinus van Aswegen, Security Architect, (CISSP, ISSMP, ISSAP, CSSLP) Telic Consulting

This presentation looks at the impact of security innovation and how this has affected business.

09:10-09:50

Governance of Information Security

Winston Hayden, GCEIT, CISA, Vice President & ITGI Liaison - ISACA South Africa

This presentation falls within the IT Governance space and focuses on the governance of Information security.

09:50-10:30

The criminological profile of a cyber criminal

Dr Alice Maree

This talk highlights crime risk factors, predisposing factors, and vulnerability factors that are related to cybercrime. The characteristics of organisations and individuals at risk are discussed with the intent to create awareness of this problem.

10:30-11:00 

Tea 

 

Session chair: Hein Venter

11:00-11:45

King III

Johan Coetzee - DLA Cliffe Decker Hofmeyr

King III deals for the first time in detail with IT governance and IT security. The role of an audit committee will be discussed as part of the effective oversight of risk management of a company. On overview will be given of the provisions contained in King 3 with regards to the principle that the board of directors of a company should ensure that IT is aligned with business objectives and sustainability.

 

11:45-12:30

Data privacy at ABSA

Ritasha Jethva  - ABSA

Data Privacy @ Absa is all about sharing and unpacking the thrills, challenges and lessons learnt on the Absa Group wide Data Privacy Programme

 

Lunch 

 12:30-13:30

Stream 7 –  
(
Reviewed Papers)

Stream 8

(Reviewed Papers)

 

Enterprise security

Session chair: Marthie Grobler

Network security

Session chair: Kamil Reddy

 

13:30-14:00

An Introduction to Emerging Threats and Vulnerabilities to Create User Awareness.

Namosha Veerasamy and Barend Taute

Automated Firewall Rule Set Generation Through Passive Traffic Inspection.

Georg-Christian Pranschke, Barry Irwin and Richard Barnett

14:00-14:30

A survey of computer crime and security in South Africa.

Adrie Stander, A Dunnet and J Rizzo

Phishing: How an organization can protect itself.

Edwin Frauenstein and Rossouw von Solms

14:30-15:00

Evaluating information security controls applied by Service-Oriented Architecture governance frameworks.

Jacqui Chetty and Marijke Coetzee

A Framework for the Rapid Development of Anomaly Detection Algorithms in Network Intrusion Detection Systems.

Richard Barnett and Barry Irwin

15:00-15:30

Tea 

 

Stream 9 -
(
Reviewed Papers)

Stream 10 -
(
Reviewed Papers)

 

Enterprise security

Session chair: Talania Grobler

Security and Law

Session chair: Michael Köhn

 

15:30–16:00 

E-mail Security awareness at Nelson Mandela Metropolitan University (Registrar's Division)

Ryno Boshoff and Johan van Niekerk

Too many laws but very little progress! Is South African highly acclaimed information security legislation redundant?

Rabelani Dagada, Mariki Eloff and Lucas Venter

16:00-16:30

Investigating identity concealing and email tracing techniques.

Ickin Vural and Hein Venter

 Inductively deriving an organisational information security risk management agenda by exploring process improvisation.

Kennedy Njenga and Irwin Brown

16:30-17:00

RBAC Enhanced Presence Handling.

Rudi Victor, Andrew Rutherford and Reinhardt Botha

Integrating Information Security with Information System Architecture and Administration Curricula.

Erik Hjelmas, Nils Kalstad Svendsen and Stephen D. Wolthusen

17:00–19:00

Cocktail reception at STH