TECH WORKSHOP

Advanced E-mail Security:

“Best Practices for Infrastructure, Architecture, Policy, Security, & Encryption”

Half day in-depth workshop by a world expert
 

SYNOPSIS:

 

Email security is vital for all organizations today. In our global online economy email is ubiquitous and often regarded as mission critical.

Problems faced by many organizations today include:
1. Increased volume of mail that is overwhelming MTAs and internal mail servers
2. Spam continuing to be a problem as spammers figure out how to bypass the latest filters
3. Understanding the content and context of outbound messages in order to comply with government, industry, or corporate policies
4. Being able to manage message quarantines effectively and meet SLAs for message deliverability
5. Being able to send and receive confidential information by email to external organizations or individuals

Now you can learn from a leading specialist the Best Practices of email security as implemented by leading organizations around the world. How to send and receive emails over the internet, reliably and securely, how to increase system uptime and performance, and how to maximize user productivity.

This advanced workshop, frequently interactive in style, will include: Architecture, inbound threat identification, policy enforcement, outbound management, encryption, authentication, operations issues, administration and automation. It will focus on MTAs and other software components within existing Exchange, Groupwise, Notes, and similar environments. Attendees specific questions will also be answered.

Part I of the workshop covers generics of technology and best practices;
Part II provides case studies as to how customers are using some of these best practices; and
Part III discusses planning and testing when implementing these best practices or new technology in these areas.
 

WHO SHOULD ATTEND:

CTO/CSO, IT Infrastructure Mgr/Team/Architects, IT Security Mgr/Team/Architects, e-Commerce Mgr/Team/Architects, IT Risk Mgr & Auditors, Network Mgr/Team, IT Ops Mgr/Team, IT Consultants.

AGENDA & TOPICS:

PART I: Best Practices Tutorial (2 hours 30 mins)

1. Infrastructure Architecture:
- Email protocols & standards: SMTP, MIME, ...
- Components
- MTA’s role vs email server
- Firewall role vs MTA’s role
- Email archival role vs MTA’s role
- Role of DNS in mail routing
- Security
- DMZ Components
- Multi-tier Architecture
- Multiple Layer Defense
- Failover, Clustering, DR and Relay Settings for Business Continuity
- MX records, round robin
- Design for Performance
- Scalability
- Virtualization
- Central Management and Replicated Policy Configuration
- Directory Integration (AD, LDAP, Secure LDAP)
- Multiple domain environments
- Multiple tenant environments

2. Message Verification and Threat Identification:
- Dark Traffic
- Virus Management
- Dynamic Virus Outbreak Protection
- Sp-am Management & Detection Techniques
- Recipient Verification
- Phishing
- Anti-Spoofing
- Alias Rewriting
- Domain Rewriting

3. Compliance & Risk Management & Governance:
- HIPPA, Digital Receipts, etc
- ACSI33 Protective Markings Classification (30 mins for Canberra session)

4. Policy Architecture & Enforcement:
- Internal Routing & Relay
- Multi-domain Routing
- Annotations
- Attachment Management
- Inbound vs Outbound Management
- Mail Classification
- Advanced Management and Rules Sets
- LDAP/AD Awareness in Advanced Policy Management
- Policies for Sender, Recipient, Subject, Body Content, Attachment Content
- Policies for Signature, Priority, Size, Date/Time, Header Info

5. Outbound Email Management

6. Encryption and Message Privacy:
- Server Based vs Desktop Based for B2B vs B2C vs C2C
- Gateway to Gateway (G2G)
- Desktop to Desktop (D2D)
- Gateway to Desktop (G2D)
- Secure Webmail (Web)
- S/MIME Desktop (RFC 3852)
- S/MIME Gateways (OpenGroup SMG)
- TLS Protocol Level Encryption (RFC 3207)
- OpenPGP Desktop (RFC 2440)
- Content & Policy Management for Encrypted Emails
- VPNs and Private Networks

7. Message Authentication:
- Certificate Management and Verification, Desktop and Server
- Non Repudiation
- Sender Verification
- PKI without the hassle
- Domain Keys Identified Mail (DKIM)
- Sender ID Framework (SIDF)
- Reputation of an IP Address or Domain

8. Operational:
- Event Logging
- Auditing
- Message Tracking
- Reporting
- Problem Solving
- Database Sizing, Defragmenting, Reindexing
- Backups

9. Admin & Automation:
- Access Permissions
- Policies
- Quarantine
- End User Quarantine Management
- Monitoring, Alerting, Exception Handling

10. Application Integration:
- Integration with backend corporate applications
- Integration with file transfer (FTP vs email)

11. Question Time
 

Part II: Case Studies of Best Practices at Customer Installations (20 mins)

- Case 1: Architecture in high performance, mission critical environment
- Case 2: Policy Enforcement (with live example policy configuration)
- Case 3: Encryption for trading partners, and individual customers
- Case 4: Threat Identification outside of the corporate network
- Question Time
 

PART III: Planning & Testing for Best Practice Implementation (15 mins)

- Assessing and/or auditing current email environment
- Implementing Best Practices and/or new technology
- System Design / Architecture Verification
- Developing Proof of Concept / Prototype for implementation
- Acceptance Criteria
- Testing
- Migrating to the Production Environment
- Question Time
 

INSTRUCTOR:

Ken Beer, a USA based secure messaging technical expert, has been on the forefront of email security technology and industry standards for the past decade, and is the Director of Product Management at Tumbleweed Communications Corp. Ken is highly knowledgeable about the technical aspects of secure systems implementation (eg. for SEC, HIPAA, GLB, etc), has authored articles addressing messaging security, intellectual property protection and government-mandated privacy regulations, and is a frequent presenter at industry conferences (eg. RSA Security Conference, USA DoD PKI User’s Forum, Computer Security Applications Conference, Council of Security and Strategic Technology Organizations Annual Conference, MIS & IIA's Annual Conference on the Control & Audit of Information Technology, National Medical Healthcare Conference (NMHCC), etc).

Ken actively participates in many cross-industry initiatives analyzing the future of secure messaging technology. Prior to joining Tumbleweed 10 years ago, Ken worked at Network General Corporation (McAfee, now Network Associates) responsible for the technical content, and security aspects, of all their public and private intranet web sites. At Tumbleweed Ken also liaises with many email security vendors (eg. ProofPoint, Ironport, Borderware, CypherTrust, Microsoft/Sigaba, Clearswift, MailMarshal, et.al.) who have licensed some of the 23 Tumbleweed patents (Tumbleweed provide secure messaging solutions, advice, and training, for email protection, file transfers, and identity validation to allow organizations to safely conduct business over the Internet).

STUDENT CERTIFICATES:

Attendees will receive a workshop certificate upon completion of some practical exercises subsequent to the workshop.

PRICE:  Your organization may attend FREE (Normally A$600 p.p)

CANCELLATIONS:  24 hours prior no charge

ENQUIRIES:  Please phone Melissa on Sydney +61 2 9496 9496 or
                    New Zealand 0800 442 637