Tag Archives: isacapune

ISACA Pune Monthly Meet: Risk Assessment by Dr. Pramod Damle – 16 Jan

What: ISACA Pune meet. Risk Assessment by Dr. Pramod Damle
When: Saturday, 16th January, 6pm-8:30pm
Where: Damle Hall, Behind IndSearch Institute, Off Law College Road, Shivajinagar
Registration and Fees: Free for all to attend. No registration required

ISACA is a worldwide association of Information Security professionals dedicated to the audit, control, and security of information systems. Click on the logo to see other PuneTech articles related to ISACA.
ISACA is a worldwide association of Information Security professionals dedicated to the audit, control, and security of information systems. Click on the logo to see other PuneTech articles related to ISACA.

Risk Assessment

Risk Assessment (RA) is an integral part of information security program for any organization. It presupposes business impact analysis and embraces all the major assets/ operations. The RA process consists of a detailed study of the threats and vulnerabilities and the resultant exposure the organization faces. It opens the choices of risk treatment (RT) like mitigation, acceptance, transference etc. Hence, a successful RA focuses the limited resources of an organization on the proper risk treatment and thus brings down the residual risk to the level of acceptable risk, thus in turn paving way for the information security governance.

About the Speaker – Dr. Pramod Damle

Dr. Damle is a freelance adviser, evangelist and researcher in information security governance, and has been a member of ISACA, Pune chapter from 2000. For the past 25 years, he has been balancing his IT career between practice and preaching. On the one hand he has contributed to IT missions of MNCs like State Bank of India, Oil India Ltd, Parametric Technologies, L&T, etc., while on the other hand he has been catering to academia like IIMs, IGNOU, Pune university, Symbiosis, etc. at PG/ Doctoral level. He also teaches several IT certification programs of ISACA, ISC2, ISO, QAI. Earlier Dr. Damle worked as IT manager at Bank of Maharashtra, Director at MODVIN, Professor and IT Head at YASHADA and head of education services at MIEL, where he architected one year full-time post-graduate program in information security management (PRISM) that is being run domestically and abroad.

With articles/ research papers for ‘Control’, Computers Today, etc. and a few IT books to his credit, he has designed a series of PC-based games on serious IT topics. Dr. Damle has earned various degrees in Maths, Laws, Commerce, Computers and professional certifications like ISO9001 Tick IT Lead Auditor, ISO27001 Lead Auditor, CAIIB, CISA, CISM, CISSP, SSCP, CSSLP, GIAC GSLC, PMP and PhD in information security.

ISACA meet: Understanding Wi-Fi Security Fundamentals by Hemant Chaskar – Sat, 14 Nov

Wi-Fi logo
Image via Wikipedia

What: ISACA Pune meet. Understanding Wi-Fi Security Fundamentals by Dr. Hemant Chaskar
When: Saturday, 14th November, 6pm-8:30pm
Where: College of Agricultural Banking of Reserve Bank of India on University Road, Shivajinagar
Registration and Fees: Free for all to attend. No registration required


Dr. Hemant Chaskar is a domain expert in WiFi security.

He holds Ph.D. in Electrical and Computer Engineering from University of Illinois at Urbana-Champaign, USA. Hemant is also anchor for Pune chapter of Data Security Council of India (DSCI).

He has more than 10 years of experience in security, networking and telecommunications industry in USA and India.

For last 5 years, he has extensively worked on WiFi networking and wireless security. Currently, he is Director of Technology at AirTight Networks, which is a global leader in WiFi security and performance management products and solutions.

See the ISACA Pune website for more information about ISACA.

Reblog this post [with Zemanta]

ISACA Monthly Meet: Q and A on Information Technology Law in India

The Pune Chapter of ISACA (Information Systems Audit and Control Association) presents their monthly meeting, in which they have a Questions and Answers session with Pavan Duggal, Chairman ASSOCHAM Cyberlaw Committee, an advocate of the Supreme Court of India, and President of Cyberlaws.net.

What: Q&A session with Pavan Duggal
When: Saturday, 10th October, 6pm-8:30pm
Where: SICSR, 4th floor
Registration and Fees: Free for all to attend. No registration required

Pavan has been associated with the Ministry of Communication and Information Technology, Government of India on Cyberlaw and Electronic Governance legal issues. While a practicing Advocate, Supreme Court of India, Pavan Duggal has made an immense impact with an international reputation as an expert and authority on Cyberlaw and E-Commerce law.

Reblog this post [with Zemanta]

CSI Pune Lecture: Security Testing Using Models – 16 Jan 6:30pm


What: CSI Pune Lecture on Security Testing Using Models with Prof. Padmanabhan Krishnan, Bond University, Australia.
When: Friday, 16th Jan, 6:30pm-8:30pm
Where: Dewang Mehta Auditorium, Persistent, S.B. Road
Registration and Fees: Free for CSI/ISACA members; Rs. 50 for students & Persistent employees; others Rs. 100. Register at http://csi-pune.org

In this, we present a framework based on model based testing for security vulnerabilities testing. Security vulnerabilities are not only related to security functionalities at the application level but are sensitive to implementation details. Thus traditional model based approaches which remove implementation details are by themselves inadequate for testing security vulnerabilities. We demonstrate a framework that retains the advantages of model based testing that exposes only the necessary details relevant for vulnerability testing.

Our framework has three sub-models: a model or specification of the key aspects of the application, a model about the relevant aspects of the implementation and a model of the attacker. These three models are them combined to generate test cases. The same approach can also be used to test if a system meets a privacy policy.

Who Should Attend: Professionals interested in Test Automation and students.

About the Speaker – Padmanabhan Krishnan

Prof. Krishnan is a Professor at the Centre for Software Assurance, School of IT, Bond University, Australia. He also holds a research associate position at the United Nations University, International Institute for Software Technology. He got his BTech from IIT-Kanpur and MS and PhD from the University of Michigan, Ann Arbor. His interests are in model based testing, verification techniques and practical formal methods for software assurance. He has held positions in the USA, Denmark, New Zealand, Germany and Australia.

Update: The slides of the talk are now available. Click here if you can not see the slides below.

Security Testing Using Models

View SlideShare presentation or Upload your own. (tags: security bond)

Related Articles