Oracle Software Security Assurance Related Sessions at Oracle OpenWorld 2010
By Eric P. Maurice-Oracle on Sep 13, 2010
Hello, this is Eric Maurice again!
Oracle OpenWorld is taking place in San Francisco, on September 19th through the 23rd. As with previous conferences, a number of sessions will focus on Oracle Software Security Assurance topics. These sessions provide attendees with an opportunity to interact with members of the Development and Global Product Security teams. These interactions are extremely useful and rewarding to the Oracle security teams .
Attendees interested in Security Assurance topics may find the following sessions interesting:
• Monday, September 20th : "Recommendations for securely deploying Oracle technology" (Session S316903) with John Heimann and Sven Petersen. In this session, John will discuss Oracle's Secure Configuration Initiative, which is the program that aims at enhancing default configurations in Oracle products to make default deployments more secure. Sven will bring the user's point of view. Sven will discuss Oracle's own internal approach to securely deploying Oracle products, and will talk about some of the "lessons learned" that Oracle's own internal IT organization has experienced.
• Wednesday, September 22nd: "Security governance in a global organization: a case study" (Session 316905) with Chris Gavin and John Heimann. In this session, Chris Gavin, VP for Information Security at Oracle, will discuss some of the challenges in which Oracle operates. Chris will discuss the relationships that exist between IT governance and software Security Assurance, and will provide recommendations around topics including proper vetting of software vendors, etc. John will present the various Oracle Software Security Assurance programs, and how these programs are inscribed in Oracle's own internal governance framework.
• Thursday, September 23rd: "Maintaining a proper security posture with the Critical Patch Update" (Session 316904) with Gaye Stevens and Bruce Lowenthal. This session will be focused on discussing recommendations for deploying Critical Patch Updates (CPUs). Bruce will provide an overview of the CPU program, and will discuss among other things, how to properly interpret the CPU Advisories and make proper patching decisions. Gaye will present the procedures that have been put in place in the Oracle On Demand environment to deal with CPUs. She will also share some of the "lessons learned" that her organization has experienced. Many of the recommendations that will be discussed in this session have been compiled in a recently published technical white paper after interviewing a number of customers and with the input of various Oracle organizations.
For more information:
To register to Oracle OpenWorld, point your browser to http://www.oracle.com/us/openworld/036763