Blockchain Security Special Seminar
March 27 @ 8:00 am - 5:00 pm EDTGWDC Members: $350, Other ISACA Members: $450, Non-Members: $500
Security experts anticipate an increase in the adoption of blockchain technology in 2019 as enterprises seize opportunities pursue new business models and reduce transaction costs using blockchain technology. As a result, the blockchain security vulnerabilities and data breaches are expected to rise to a new level. To safeguard against these threats and vulnerabilities, IT professionals need to have a strong understanding of how blockchain technology actually works and can potentially be exploited.
This full-day seminar provides the attendees with a strong foundational knowledge of public and private blockchains, in-depth understanding of common attacks on blockchain components. The attendees will gain practical takeaways such as what are the basic security hygiene and specific security actions to be considered when reviewing blockchain implementation. The seminar utilizes examples from Ethereum public and Hyperledger Fabric private blockchains and demonstrates blockchain exploits against mining nodes, user wallet and smart contracts.
Who Should Attend
IT security professionals and IT auditors requiring an in-depth understanding of blockchain technology, the underlying mechanisms and techniques, typical attacks on blockchain, and security mechanisms. This class is well suited for those who want to learn more about blockchain technologies, the associated risks, and the importance of secure implementations.
- Learn the key concepts of a public and private blockchain platforms
- Identifying and differentiating between security threats and attacks on a Blockchain network
- How to conduct blockchain security risk analysis
- Identify and implement blockchain security methods, best practices, and risk mitigation
- Fundamental Concept of Blockchain
- Advanced Cryptographic Techniques and Methods
- Generalize Attacks Against Blockchain
- Blockchain Security Details
- Smart Contract Security
MEET THE INSTRUCTOR
CISSP, PMP, Security+, Six Sigma Black Belt
Tuan Phan is a partner with Caplock Security, LLC with strong expertise in the implementation and management of emerging technologies, information assurance programs, technical projects and operations, and risk management across several industries including government, software, specialty product, drug and medical device manufacturing. As the practice leader for blockchain technology at Caplock Security LLC, Tuan leads the development of several proofs of concept using Hyperledger Fabric and Ethereum private blockchains and advises clients on security matters of smart contracts and blockchain infrastructure.
In addition to being an avid software developer on the implementation of tools to enhance and accelerate risk assessments, Tuan has also presented on numerous topics on cybersecurity, IT governance, and regulatory compliance at several industry conferences and seminars. Tuan has also authored several articles on blockchain and regulatory compliance topics in several industry magazines and journals and served as SME reviewer for ISACA Blockchain Audit Program.
All Students: Please bring your laptop to the course to be able to participate in the lab exercises.
ISACA Members from Other Chapters: You will need to bring your ISACA Membership Card to the event to verify your ISACA Membership.
Requests for Assistance: If you require assistance for an audio, visual, or other disability, please contact the Programs Director to discuss your needs, as soon as possible. We need as much advance notice as possible to determine whether requests can be accommodated. Thank You.
If you are unable to attend an event, you can cancel your registration. To receive a refund, all cancellations must be received by March 25, 2019. A $15 cancellation fee is charged.
To cancel, access your payment confirmation e-mail message and click the UNREGISTER link.
Earn up to 7 Continuing Professional Education (CPE) credits in the area of Specialized Knowledge. The ISACA® GWDC is registered with the National Association of State Boards of Accountancy (NASBA) as a sponsor of continuing professional education on the National Registry of CPE Sponsors. State boards of accountancy have final authority on the acceptance of individual courses for CPE credit. Complaints regarding registered sponsors may be submitted to the National Registry of CPE Sponsors through its website: http://www.learningmarket.org.
CPE Distribution and Evaluation Survey
CPE's will be distributed via e-mail along with the event evaluation survey after the completion of the event. Attendees must be present the full day to receive full CPE credit.
- Prerequisites and Advance Preparation: N/A. Please bring your laptop to the course.
- Program Knowledge Level: N/A. Attendees are not required to have a programming background.
- Delivery Method: Classroom Live
Kenneth joined ISACA in 2013 and presently serves as the GWDC Communications Director. Kenneth also volunteers with ISACA International and some of his volunteering consists of the Learning Visions Working Group, Identity Management Topic Leader, and Emerging Technology Topic Leader. Kenneth is a Senior Manager for Protiviti Government Services within the Security and Privacy Practice. He holds the CISM, CISA, PMP, CIPP/G, AWS CCP and is a trained CyberArk Delivery Engineer.