I went to the Phoenix ISSA meeting today, saw some people I used to work with, and also had a short refresher in PCI and got a few good tips on where to look for creating a MDM solution that works with BYOD.
Prior to the meeting officially kicking off, we were educated a little on the HeartBleed Bug. Before logging into a website, check out this website by Filippo Varsoda. http://filippo.io/Heartbleed/
A good resource is the Ponemon Institute for figuring out costs for breaches, which is pretty essential when creating a quantitative risk and somewhat needed when looking at a qualitative risk.
Another good resource is the NIST 800-124 Guidelines for Managing the Security of Mobile Devices in the Enterprise (pdf).
And of course, I would be remiss if I didn’t include the ISO 27000.
Aside from all that good information, I got some CPE credits.
Sometimes I’m not a big fan of vendor presentations, but since they help pay for food and keep membership fees and guest fees affordable, I tolerate. I really like speakers who are passionate about what they are talking about. There was a gentleman from ECTrust and he was enjoyable to listen to.