Abstract: Information security management is about discipline - the notion of having a fundamental approach to security that allows you to stay the course and not be distracted by the "latest and greatest" threats. This session outlines the "Four Disciplines of Security Management," a strategic information security model that includes Identity Management, Vulnerability Management, Trust Management, and Threat Management. The goal of the model (and the session) is to provide insight into specific control objectives and the activities surrounding the proper security of an enterprise.

Biography: Pete Lindstrom is Research Director for Spire Security, an industry analyst firm providing analysis and research in the information security field. Pete has held previous positions as a security architect and auditor at Fortune 500 companies, a public accounting firm, and the United States Marine Corps. He is a frequent speaker and writer, and has developed a comprehensive reference model for information security called the Four Disciplines of Security Management. He is a graduate of the University of Notre Dame and is a Certified Information Systems Security Professional (CISSP).