Workshops‎ > ‎cs-ga-2010‎ > ‎

Eddie Schwartz

Chief Security Officer, NetWitness Corporation, Herndon, VA, USA


Eddie Schwartz is Chief Security Officer of NetWitness and has 25 years technical experience in the information technology and information security and privacy fields.  Previously, he was Chief Technology Officer of ManTech Security Technologies Corporation, EVP and General Manager for Global Integrity, SVP of Operations at Guardent, CIO and CISO for Nationwide Insurance; a Senior Computer Scientist at CSC where he was Technical Director of the DSS Information Security Laboratory for the U.S. Department of State, and a U.S. Government employee for 13 years.   Mr. Schwartz is the VP/Treasurer of the National Capital Chapter of the ISSA, and has served on the Board of Directors for Secured Services, Inc. and InfoSec (JP), has served as Director of the Financial Services and Energy ISACs, was a member of the Executive Committee for the Banking Information Technology Secretariat (BITS) of the Financial Services Roundtable and the Board of Advisors for numerous security start-ups.  Mr. Schwartz has a B.I.S. in Information Security Management and an M.S. in Information Technology Management from the George Mason University School of Management.


Living in Compromise with Advanced Cyber Threats

According to a study by the Ponemon Institute in June 2010, over 80% of public and private enterprises believe that advanced cyber threats are evading  all existing prevention and detection  approachesIn 2010, Gartner has stated that situational awareness is critical to fighting these sophisticated and constantly changing threats.  This session focuses on the true nature and most potent sources of today’s most critical security threats to both government  entities and commercial organizations, and the reality that most organizations must live in compromise with advanced threats.   The speaker discusses the need for acceptance of prevention as an imperfect security management strategy, and proposes new operational paradigms for innovative and agile approaches to enterprise-wide situational awareness. The speaker will illustrate technical case studies describing better ways to think about such  problems as:  detection of zero-day malware and botnets, understanding the impact of spear-phishing and drive-by attacks, fusing 3rd party open source and classified threat intelligence with live network traffic, training better security analysts, and building more effective intrusion detection, analysis and management processes.