Chapter Meeting, Friday, August 18, 2017

August 2017 Chapter Meeting
Location: Rancho Cordova Library
9845 Folsom Blvd, Sacramento, CA 95827
Near the corner of Bradshaw Rd and Folsom Blvd.

Please RSVP by Wednesday, 8/16, so we can order enough lunch for everyone.

Speaker: Mark Heckman, Ph.D., CISSP, CISA

Organization: University of San Diego Center for Cyber Security Engineering and Technology


Bio: Mark Heckman has worked in the field of information security for over 30 years as an engineer, researcher, practitioner, and educator. His wide-ranging career has spanned many areas of information security, including research and development of very high-assurance, multi-level secure systems for use in government and the military, research and development of intrusion detection and security event management systems, and general IT security and compliance for commercial organizations in the financial and health industries. Heckman earned his M.S. and Ph.D. degrees in Computer Science at the University of California, Davis and is a Certified Information Systems Security Professional (CISSP) and Certified Information Systems Auditor (CISA).  He is currently a Professor of Practice at the University of San Diego Center for Cyber Security Engineering and Technology (USD CCSET).

Topic: Why Everyone Gets Their Security Policies Wrong

Synopsis: A security policy is the definition of what it means to say a system is "secure". The policy is the starting point for determining threats, requirements, and controls, yet many organizations that claim to have a security policy get this essential element wrong, so their security is incomplete. In this talk, Heckman will clarify what a security policy is, why starting with a good policy is so important, and describe a variety of types of policies commonly used in different systems and organizations.

This event is proudly sponsored by Randstad Technologies (

Friday, August 18, 2017 - 11:30am to 1:00pm