SecDSM, a monthly meetup providing the opportunity to network with other InfoSec pros and listen to short tech talks presented by your fellow members (or give a presentation yourself!) while enjoying some beer/drinks/food. No sales pitches. The idea is to provide you actionable knowledge for you to take back to your $dayjob while building a top tier InfoSec community in the Des Moines area. If you have the desire to learn about real world InfoSec scenarios - get out of your comfort zone - and join us in a relaxed vendor neutral environment. No registration is required.

Schedule

We meet monthly, on the 2nd Wednesday starting at 6pm at The Basement Bar at the Des Moines Social Club in Downtown Des Moines.

Permission to record
Permission to stream
Permission to publish recording
Please take note of the new venue location and date
SecDSM 101 6:00 PM

A brief introduction to the group along with any announcements and general communication.

James Beal - SecDSM News 6:05 PM

Quick Review of the Month's InfoSec news.

Chen Cao AWS Cloudformation + Lamba Functions Security Fun

AWS CloudFormation enables the automation of resource creation and management but extending this using Lambda functions is a powerful way to provide additional security functionality. We will discuss an approach that uses a CloudFormation custom resource and a Lambda function to automatically scan for web application vulnerabilities based on CI/CD commits.


Chen Cao is an Information Security Engineer at Dwolla specializing in Application Security. He enjoys cryptography, session management and beating Ben Schmitt in ping pong on a regular basis.

James and John CYBERTABLETOPS, SOME D20 DICE AND A FEW OF YOU!

We would like to present a workshop and presentation in the style of a DnD / RPG cyber incident response tabletop exercise. This will be loosely based on Lesley Carhart’s “Gamemaster’s Guide to Incident Response”.

The objective is to:
1) Introduce incident responders to the benefits of tabletop exercises with IT and management stakeholders.
2) Simulate for incident handlers how to manage the IR process and test out the process or plans inside their own organizations in a demonstrable way.
3) Plan to have mini-CTF challenges for the technical responders, hoping to tie the challenges into the conference CTF.
4) Conduct a debrief and lessons learned exercise – using the results for a later public presentation at Drake, Grand View, or SecDSM.
5) Have fun and gamify the entire process itself.


James Beal - Senior Security engineer at FHLBDM, focused on endpoint protection, network security monitoring, threat intel, vulnerability mgmt, primary incident responder for FHLBDM.

John Notch - Senior Security Engineer at FHLBDM, focused on cyber risk management, incident response and overall info sec program policy&metrics

Sponsored by

SecDSM 101 6:00 PM

A brief introduction to the group along with any announcements and general communication.

James Beal - SecDSM News 6:05 PM

Quick Review of the Month's InfoSec news.

Jim Hebler IOT, Device Saturation - Zero-Trust @CyberSecurity's Mid-Life Crisis

Leveraging daily headlines, a unique career arc from journalism to CISSP-trained CyberCowboy - this talk quantifies mobility challenges, device-application saturation, how much is at stake in alignment to Zero-Trust, SDP and Secure-Access-IAM alignment throughout the entire network. The presentation is fun, interactive - and geared toward the audience - not selling specific solutions - customer-centric, vendor-agnostic.


Pulse Secure’s Director of Americas’ CyberSecurity Solutions brings considerable security, technology, business and brand experience to the organization. Jim Hebler has driven security solutions, business value and development within most every industry vertical for large global enterprise security firms and entrepreneurial niche’ providers alike.

Sponsored by

SecDSM 101 6:00 PM

A brief introduction to the group along with any announcements and general communication.

James Beal - SecDSM News 6:05 PM

Quick Review of the Month's InfoSec news.

Sponsored by

SecDSM 101 6:00 PM

A brief introduction to the group along with any announcements and general communication.

James Beal - SecDSM News 6:05 PM

Quick Review of the Month's InfoSec news.

Sponsored by

Merchandise and Donations

Shirts (and other items) are for sale online.

T-Shirt

Venue

We meet in The Basement Bar at the Des Moines Social Club located at 901 Cherry Street.

More info about The Des Moines Social Club

The Basement Bar at the Des Moines Social Club

901 Cherry St, Des Moines, IA 50309

Sign up for Slack!