2012 Platinum Sponsors

IBM helps financial services clients maximize their efficiencies and gain sophisticated insight and agility through information-led transformation. Forward thinking institutions will use these insights to transform their business within four imperatives: attract and retain customers, develop new revenue sources, streamline operations and pro-actively address risk and regulatory requirements. Our clients benefit from decades of deep IBM industry experience integrating hardware, software and services to holistically bridge their business and IT strategies.

Learn more: ibm.com/banking

As the world's most complete, open, integrated business software and hardware systems provider, Oracle can uniquely safeguard your information throughout its entire lifecycle. With over 30 years of information security innovation, Oracle is the recognized leader in Database Security, Identity Management, and Governance, Risk, and Compliance. The Oracle Security Inside Out platform offers complete protection of their databases, middleware, and applications.

Learn more: http://www.oracle.com/

RSA, The Security Division of EMC, is the premier provider of security, risk and compliance management solutions for business acceleration. RSA helps the world's leading organizations succeed by solving their most complex and sensitive security challenges. These challenges include managing organizational risk, safeguarding mobile access and collaboration, proving compliance, and securing virtual and cloud environments. Combining business-critical controls in identity assurance, encryption and key management, SIEM, data loss prevention, and fraud protection with industry-leading eGRC capabilities and robust consulting services, RSA brings visibility and trust to millions of user identities, the transactions that they perform and the data that is generated.

Learn more: http://www.netwitness.com/

Silver Tail Systems is the leading provider of predictive analytics for detection and prevention of fraud and abuse to some of the most prominent websites in the world. The company offers the industry's most comprehensive suite of fraud detection and mitigation solutions. Serving some of the world's largest financial institutions and e-commerce companies, Silver Tail Systems' award-winning solutions are made possible by the unmatched expertise of its management and technology teams, who bring deep experience, know-how and personal commitment to protect their customers' businesses against online fraud.

Learn more: http://www.silvertailsystems.com

Stroz Friedberg is a leading global digital risk management and investigations firm. The company specializes in digital forensics, data breach and cybercrime response, electronic discovery, security risk consulting and business intelligence and investigations. Working at the crossroads of technology, law and behavioral science, the company provides technical assistance and strategic advice to help manage the inherent risks and responsibilities of doing business in a digital era.

Learn more: www.strozfriedberg.com

Symantec is a global leader in providing security, storage and systems management solutions to help our customers – from consumers and small businesses to the largest global organizations – secure and manage their information, technology infrastructures and related processes against more risks at more points, more completely and efficiently than any other company. As the world's fourth largest independent software company and backed by the Global Intelligence Network, our unique focus is to eliminate information, technology and process risks independent of device, platform, interaction or location. Our software and services protect completely, in ways that can be managed easily and with controls that can be enforced automatically – enabling confidence wherever information is used or stored.

Learn more: www.symantec.com

2012 Gold Sponsors

Accenture Information Security services help clients protect information, critical infrastructures, applications and key business processes against cyber threats. At the same time, we help enable new business initiatives and innovation, by managing and understanding risks and balancing them against the rewards of growth. Accenture Information Security services are differentiated by our deep expertise and comprehensive capabilities in security, paired with our global reach. We approach security as a fundamental building block to be integrated into all business processes. With approximately 244,000 people serving clients in more than 120 countries, the company generated net revenues of US$25.5 billion for the fiscal year ended Aug. 31, 2011. For more information on our security capabilities, please visit www.accenture.com/security.

AGARI collects terabytes of email data from sources across the Internet to create a cloud-based solution to assess, visualize, and protect against email threats to brands, such as phishing and other fraud. Founded by the thought leaders behind Cisco's IronPort solutions, the Agari platform provides global brands with the tools needed to proactively protect brand reputation, eliminate email threats, protect customers and prevent the loss of sensitive data.

Learn more: http://www.agari.com

Authentify provides global online authentication services based on using an end user's telephone as an authentication tool. An automated phone call, when synchronized with an online event, enables the end user's telephone to become an effective proxy for a security credential. Authentify offers authentication schemas to suit many application requirements including user authentication and real time transaction approval or cancellation. The combination of online activity and phone-based interaction offers a strong security process that is difficult to spoof. Voice channel and SMS options are available. The Authentify process helps thwart today's biggest threats to online financial services including keystroke loggers and other advanced persistent threats such as Zeus/Zbot, SpyEye, Carberp and others.

Learn more: http://www.authentify.com

Booz Allen Hamilton has been at the forefront of strategy and technology consulting for nearly a century. Today, the firm provides professional services primarily to the US government in defense, intelligence, and civil markets, and to major corporations, institutions, and not-for-profit organizations. Booz Allen offers clients deep functional knowledge spanning strategy and organization, engineering and operations, technology, and analytics—which it combines with specialized expertise in clients' mission and domain areas to help solve their toughest problems. Booz Allen is headquartered in McLean, Virginia, employs more than 25,000 people, and had revenue of $5.59 billion for the 12 months ended March 31, 2011.

Learn more: http://www.boozallen.com

Ernst & Young is a global leader in assurance, tax, transaction and advisory services. Worldwide, our 141,000 people are united by our shared values and an unwavering commitment to quality. We make a difference by helping our people, our clients and our wider communities achieve their potential. Our 20,000 advisory professionals form one of the broadest global advisory networks of any professional organization, delivering seasoned multidisciplinary teams that work with our clients to deliver a powerful and superior client experience. We use proven, integrated methodologies to help you achieve your strategic priorities and make improvements that are sustainable for the longer term. It's how Ernst & Young makes a difference.

Learn more: http://www.ey.com/

Since 2002, Fidelis Security Systems has been providing organizations with the network visibility, analysis and control necessary to manage advanced threats and prevent data breaches. Built on a patented Deep Session Inspection®, platform, Fidelis XPS™ is the industry's only network security solution capable of seeing, studying, and stopping advanced threats in real-time by uniquely working at the session-level where today's threats occur.  Fidelis enables government, military, and commercial enterprise customers around the globe to achieve proactive situational awareness, content protection, threat mitigation, and application activity control.

Financial institutions use behavior-based FraudMAP® to detect suspicious activity and anomalous transactions, thereby stopping ACH, wire, bill pay and other online and mobile banking fraud before the money is gone. FraudMAP monitors ALL online sessions, automatically protecting ALL account holders from the WIDEST array of threats.

Our anomaly detection solution uses behavioral analytics to model each online session and detect suspicious activity inconsistent with legitimate prior behavior. FraudMAP is available as a SaaS solution or a managed service, speeding deployment, lowering maintenance costs, and enabling institutions of all sizes to offer today's best online fraud protection.

Come see how you can meet new FFIEC expectations for anomaly detection and expand online and mobile banking services with confidence, resulting in increased customer trust and loyalty.

HBGary Inc. was founded in 2003 to develop products to counter APT and other unknown cyberthreats. HBGary has in-depth expertise in advanced malware, rootkits, zero-day exploits, and targeted threats. Customers include Fortune 500 corporations, DOD and other U.S. government agencies. HBGary Inc. is headquartered in Sacramento, CA with offices in the Washington D.C. area.

Learn more: http://www.hbgary.com

Mandiant is the information security industry's leading provider of advanced threat detection and incident response solutions and services. Mandiant provides products, professional services and education to Fortune 500 companies, financial institutions, government agencies, domestic and foreign police departments and leading U.S. law firms.

Learn More: www.mandiant.com

McAfee is the world's largest dedicated security technology company. Delivering proactive and proven solutions and services that help secure systems and networks around the world, McAfee protects consumers and businesses of all sizes from the latest malware and emerging online threats. Our solutions are designed to work together, integrating antimalware, antispyware, and antivirus software with security management features that deliver unsurpassed real-time visibility and analytics, reduce risk, ensure compliance, improve Internet security, and help businesses achieve operational efficiencies.

Backed by an award-winning research team, McAfee security technologies use a unique, predictive capability that is powered by McAfee Global Threat Intelligence — enabling home users and businesses to stay one step ahead of online threats.

McAfee's security products and solutions span the following areas:

• Data Protection Database Security Email & Web Security Endpoint Protection Mobile Security

  Network Security Risk & Compliance Security-as-a-Service (Security SaaS) Security Management

Learn more: http://www.mcafee.com

NCC Group is a leading global information assurance firm, providing freedom from doubt that all critical material is available, protected, and operating as it should be at all times. Information assurance is delivered through escrow and verification, security testing, audit and compliance, software testing and web performance services.

Secunia is the leading provider of IT security solutions that help businesses and private individuals globally manage and control vulnerability threats and risks across their networks and endpoints. This is enabled by Secunia's award-winning Vulnerability Intelligence, Vulnerability Assessment, and Patch Management solutions that ensure optimal protection of critical information assets.

Learn More: www.secunia.com

Trusteer is the leading provider of malware and phishing protection solutions that prevent financial fraud and data breaches. Hundreds of organizations and millions of end users rely on Trusteer to protect their computers and mobile devices from zero-day malware that is invisible to legacy endpoint security solutions. Trusteer's Fraud Prevention Architecture combines multi-layer security software and real-time threat intelligence to defeat Man-in-the-Browser and Man-in-the-Middle attacks. HSBC, Santander, The Royal Bank of Scotland, SunTrust and Fifth Third are among Trusteer's clients.

Learn more: http://www.trusteer.com

VeriSign, Inc. (NASDAQ: VRSN) is the trusted provider of Internet infrastructure services for the networked world. Billions of times each day, Verisign helps companies and consumers all over the world connect between the dots.

Learn more: http://www.verisigninc.com

2012 Silver Sponsors

3LM

3LM is the only company providing enterprise-grade security, management and remote access for Android-based mobile devices across multiple Android handset manufacturers, giving security-conscious IT departments the required Android support and data protection needed to mobilize their business. The Company is a wholly-owned but independently managed subsidiary of Motorola Mobility and is headquartered in Mountain View, California.

Learn More: www.3lm.com

Agiliance is the leading independent provider of Security Risk Management (SRM) solutions for Governance, Risk and Compliance (GRC), automating Global 2000 organization and government agency risk analysis to make better investment decisions. Agiliance RiskVision™ provides a unified view of organizations' risk posture, combining policy, risk, compliance and threat /vulnerability management applications in one platform.

Learn more: http://www.agiliance.com

AirWatch

Arxan

Arxan Technologies Inc. is the industry leader of software security solutions that protect the App Economy. Arxan's application protection secures mobile, desktop, server and embedded applications against tampering and reverse engineering attacks as an integral part of end to end application security.

Our security defends against unauthorized use, insertion of exploits, piracy, and theft of intellectual property for global leaders in markets such as  F500 enterprises, financial services, ISV, gaming and digital media to proactively defend the integrity of their code and business models. Arxan's proven, scalable and durable application protection solutions defend, detect, alert and react to application attacks through a threat-based, customizable approach. Arxan Technologies is headquartered in the U.S. with global offices in EMEA and APAC.

Learn More: Arxan:  www.arxan.

Aspect Security, Inc.

Aspect provides application security services and we verify approximately 5,000,000 lines of critical code per month. Aspect unearths over 10,000 vulnerabilities every year and our expertise improves our clients' security posture dramatically. We support a worldwide clientele with critical applications in the government, defense, financial, healthcare, services and retail sectors.

Mocana secures the "Internet of Things" - the 20 billion non-PC devices that are increasingly connecting to networks across every sector of our economy including Smartphones, Datacom, Smartgrid, Federal, Consumer and Medical. These devices already outnumber workstations on the Internet by about five to one, representing a $900 billion market that's growing twice as fast as the PC market.

Today, sophisticated attacks that evolved on PCs and became more virulent on the Internet are being re-targeted towards the comparatively defenseless Internet of Things. Unfortunately, PC security approaches can't solve this rapidly evolving "device integrity problem." A new approach is needed.

Mocana is developing the industry's only device-independent Smart Device Security platform that secures all aspects of IP addressable devices as well as the information, applications and services that run on them. Mocana's solutions and services dramatically increase confidence, trust and compliance among OEMs, service providers and their customers. Every day, millions of people use products sold by over 150 companies that leverage Mocana's Device Security solutions, including Cisco, Honeywell, Dell, General Electric, General Dynamics, Avaya and Harris, among others. Mocana won Frost & Sullivan's Technology Innovation of the Year award for 2008 for Device Security, and was named to the Red Herring Global 100 as one of the "top 100 privately-held technology companies in the world" in January 2009.

Brinqa

Brinqa provides enterprises and government agencies with governance, risk management, and compliance solutions that enable the continuous improvement of operational and regulatory efficiencies and effectiveness. Brinqa's offering is the most comprehensive available on the market today, based on our forward-thinking vision of a centralized, fully automated, and re-usable governance, risk and compliance (GRC) platform combined with targeted applications to meet program specific GRC needs. Brinqa streamlines compliance through automation, monitoring of controls, measurement of key metrics and visibility through executive dashboards and reporting.

Learn more at www.brinqa.com.

Cigital

Cigital, Inc. is the leading software security consulting firm in the world. Established in 1992, Cigital plans and implements initiatives that help organizations ensure their applications are secure and reliable while also improving how they build and deploy software. Our recognized experts apply a combination of proven methodologies, tools, and best practices to meet each client's unique requirements. Cigital is headquartered outside Washington, D.C. with regional offices in the U.S., Europe, and India. For more information visit: http://www.cigital.com.

CIPHER Security

CIPHER is a full solution provider in Information Security, with over 300 employees located in offices in the United States, United Kingdom, and Brazil. We are committed to delivering excellence and innovation through highly specialized products and services, including Consulting, System Integration and Managed Security Services (MSS), provided by next-generation 24x7 Security Operation Centers (SOC). CIPHER has over 12 years of experience, countless success cases and international awards, with a highly qualified and certified experienced team.

CIPHER holds certifications in ISO 27001 (Information Security Management) and ISO 20000 (IT Service Management System), along with experience with ISO 15408 (Evaluation Criteria for IT Security), PCI, ITIL (Information Technology Infrastructure Library) and COBIT (Control Objectives for Information and related Technology). CIPHER offers compliance consultancy, including PCI DSS (Payment Card Industry Data Security Standard) and SOX (Sarbanes-Oxley). CIPHER adopts PMI / PMBoK (Project Management Institute / Project Management Body of Knowledge) guide as the basic guideline for conducting enterprise management activities.

Learn more:

http://www.ciphersec.net

CSC

CSC is a global leader in providing technology-enabled business solutions and services. Headquartered in Falls Church, Va., CSC has approximately 98,000 employees and reported revenue of $16.0 billion for the 12 months ended December 30, 2011. For more information, visit the company's website at www.csc.co

FireEye is the leader in stopping advanced targeted attacks that use advanced malware, zero-day exploits, and advanced persistent threat (APT) tactics. FireEye's solutions supplement traditional and next generation firewalls, IPS, anti-virus, and gateways, which cannot stop advanced threats, leaving security holes in networks. FireEye offers the industry's only solution that detects and blocks attacks across both Web and email threat vectors as well as latent malware resident on file shares. It addresses all stages of an attack lifecycle with a signature-less engine utilizing stateful attack analysis to detect zero-day threats. Based in Milpitas, California, FireEye is backed by premier financial partners including Sequoia Capital, Norwest Venture Partners, and Juniper Networks.

FishNet Security is the #1 provider of information security solutions that combine technology, services, support, and training. FishNet Security solutions have enabled over 5,000 clients to better manage risk, meet compliance requirements, and reduce cost, while maximizing security effectiveness and operational efficiency.

Intellinx Ltd.

Intellinx Ltd. is the innovative leader in enterprise fraud management, providing protection from internal and external fraud and data theft committed by legitimate end-users. Intellinx captures application data directly from the corporate network providing a detailed forensic audit trail of all end-users with unparalleled visibility into user activity. Intellinx detects fraud attempts in real-time with powerful analytics based on genuine behavior profiling. Intellinx is recognized by Gartner as #1 in two important categories: internal fraud protection and deployment simplicity. The Intellinx patented, agent-less, technology imposes no risk or overhead to the organization and enables seamless compliance with government regulations (including PCI, GLBA, FACTA Red-Flags, Sarbanes-Oxley and Basel II). Intellinx serves over 120 large and medium sized financial, healthcare, government and telecom organizations worldwide.

Internet Identity

IID (Internet Identity) delivers technology and services that secure the Internet presence for an organization and its extended enterprise. It recently introduced a number of unique approaches to secure organizations' use of Internet infrastructure with ActiveTrust® BGP, ActiveTrust DNS, and ActiveTrust Resolver with TrapTrace. IID also provides anti-phishing, malware and brand security solutions for several top banks in the U.S., and many of today's leading financial services firms, e-commerce companies, social networking destinations, federal agencies and Internet Service Providers (ISPs). Through its extensive data, and deep relationships with law enforcement, service providers and security experts around the world, IID delivers unrivaled ways to keep the Internet safe and trusted for businesses.

Invincea, Inc.

Invincea brings to the market solutions that address the growing scourge of web and application borne malware that target corporate and government networks. The company's solutions offer a unique ability to protect networks against all types of threats – including zero-days – by moving highly targeted web browsers and PDF readers into controlled virtual environments that automatically detect and terminate threats in real-time.

PhishMe, Inc.

PhishMe.com provides organizations the ability to train their employees and customers about the risks of spear phishing. With over three million individuals trained, PhishMe has proven that its trainings can reduce the threat of employees and customers falling victim to phishing attacks by up to 80 percent.

PinDrop

Pindrop Security provides enterprise solutions that help prevent phone-based fraud. Its acoustical fingerprinting technology detects fraudulent calls and authenticates legitimate callers, helping customers eliminate financial losses and reduce operational costs. Pindrop's breakthrough technology is the first of its kind to fingerprint individual phone calls, providing verification of caller provenance. Recently named one of the 10 Most Innovative Companies at the 2012 RSA conference and a Gartner "Cool Vendor" in Enterprise Unified Communications and Network Services for 2012, Pindrop's solutions help companies feel more confident in the security of phone-based financial transactions. www.pindropsecurity.com

Quest Software

Quest Software (Nasdaq: QSFT) simplifies and reduces the cost of managing IT for more than 100,000 customers worldwide. Our innovative solutions make solving the toughest IT management problems easier, enabling customers to save time and money across physical, virtual and cloud environments. For more information about Quest solutions for administration and automation, data protection, development and optimization, identity and access management, migration and consolidation, and performance monitoring, go to www.quest.com.

Research in Motion

Research In Motion (RIM), a global leader in wireless innovation, revolutionized the mobile industry with the introduction of the BlackBerry® solution in 1999. Today, BlackBerry products and services are used by millions of customers around the world to stay connected to the people and content that matter most throughout their day. Founded in 1984 and based in Waterloo, Ontario, RIM operates offices in North America, Europe, Asia Pacific and Latin America. RIM is listed on the NASDAQ Stock Market (NASDAQ: RIMM) and the Toronto Stock Exchange (TSX: RIM). For more information, visit www.rim.com or www.blackberry.com.

Return Path

Founded in 1999, Return Path helps over 2,000 of the best known senders get more email delivered to the inbox. Our solutions provide data, insight and resources to diagnose and prevent email deliverability, subscriber engagement, brand and rendering failures. In addition, Return Path offers the most widely used third-party whitelist, the Return Path Certification Program covering more than 2 billion inboxes with images on and links enabled at both Yahoo! and Hotmail. To learn more about Return Path and how we can help you to get in, stay in and keep pretenders out, visit us online at www.returnpath.net.

Securonix

Securonix is the Risk Intelligence Platform. The platform consumes activity, identity, and access information from critical systems or existing security tools and identifies high-risk users, activity, and access for focused, proactive security management. Securonix uses powerful correlation, behavior, and access risk analytics to continuously enrich security information with valuable content and context. Use Securonix as an enterprise threat and risk intelligence platform or to simply get more context, focus, and value out of your current IAM, SIEM, DLP, logging, or monitoring solutions.

TrustSphere

TrustSphere's vision is to revive confidence across the messaging ecosystem. Their solutions combine reputation and authentication technologies to improve the integrity and reliability of email infrastructure. This is critical for business processes relying on email as a primary communication tool.

Learn more: www.trustphere.com

Unisys

Unisys is a worldwide information technology company. We provide a portfolio of IT services, software, and technology that solves critical problems for clients. We specialize in helping clients secure their operations, increase the efficiency and utilization of their data centers, enhance support to their end users and constituents, and modernize their enterprise applications. To provide these services and solutions, we bring together offerings and capabilities in outsourcing services, systems integration and consulting services, infrastructure services, maintenance services, and high-end server technology.

To learn more: www.unisys.com

VASCO Data Security

VASCO Data Security (NASDAQ: VDSI) is the leading provider of strong authentication and e-signature solutions to over 1,700 financial institutions in 100+ countries. VASCO brings user authentication and transaction validation capabilities into corporate cash management and retail e-banking and m-banking applications to help combat cyber fraud. Over 1,700 financial institutions currently utilize VASCO's products ranging from hardware to mobile to out-of-band solutions.

Vigilant, Inc.

Vigilant, Inc. provides on-site consulting and managed services that help IT security teams better defend and enable today's dynamic business by refining and extending their security monitoring capabilities. The company's pragmatic approach solves today's urgent security problems, while enabling rapid progress toward longer-term security program objectives. Vigilant empowers customers to more efficiently respond to shifting threats, achieve regulatory compliance, prioritize protection of services that drive revenue and competitive advantage, and measure progress of the overall IT risk management program. Founded in 2003, Vigilant is headquartered in the New York metro area and serves a wide range of global and regional organizations whose mission requires them to secure highly sensitive and regulated services.

Voltage Security

Voltage Security provides data-centric encryption and stateless key management solutions to combat new security threats and address compliance by protecting structured and unstructured data as it is used across data centers, public and private clouds and mobile devices. www.voltage.com

WhiteHat Security

Headquartered in Santa Clara, California, WhiteHat Security is the leading provider of website risk management solutions that protect critical data, ensure compliance and narrow the window of risk. WhiteHat Sentinel, the company's flagship product family, is the most accurate, complete and cost-effective website vulnerability management solution available. It delivers the flexibility, simplicity and manageability that organizations need to take control of website security and prevent Web attacks. Furthermore, WhiteHat Sentinel enables automated mitigation of website vulnerabilities via integration with Web application firewalls and Snort-based intrusion prevention systems.

Learn more: http://www.whitehatsec.com

BrandProtect

BrandProtect provides Internet monitoring, management and mitigation to financial organizations that allows them to manage and mitigate the risk over how they are represented online. Core service application areas are IDTheft , Internet Brand Protection, Social Media Monitoring for either risk or policy compliance and Mobile Application Monitoring.

BrandProtect provides detailed and actionable reports 24/7/365 on the most relevant and highest priority threats through a combination of advanced technology, round-the-clock monitoring, proven best practices and exhaustive human analysis.

Core Security Technologies

CORE Security enables our customers to go far beyond defending IT assets – we empower them to preempt business risk. CORE's predictive security intelligence platform enables customers to take control of their security infrastructure, communicate risk, and make better decisions to ensure business continuity. Only CORE solutions tap into the DNA of each customer's organization – proactively identifying critical risks and matching them to unique business objectives, operational processes, and regulatory mandates. Through real-time analytics, our solutions transform disparate security data into concise, actionable information. So customers can get ahead and stay ahead of enterprise threats – for the first time.

• The visibility to see security threats throughout the enterprise.

• The insight to proactively identify what's critical.

• The ability to take preemptive action where it matters.

That's the power of Thinking Ahead, only from CORE Security.

Cyveillance

Cyveillance, a world leader in cyber intelligence, provides an intelligence-led approach to security. Through continuous, comprehensive Internet monitoring and sophisticated intelligence analysis, Cyveillance proactively identifies and eliminates threats to information, infrastructure, individual and their interactions, enabling its customers to preserve their reputation, revenues, and customer trust. Cyveillance serves the Global 2000 and OEM Data Partners – protecting the majority of the Fortune 50, regional financial institutions nationwide, and more than 30 million global consumers through its partnerships with security and service providers that include AOL and Microsoft. Cyveillance is a QinetiQ Company. For more information, please visit www.cyveillance.com or www.qinetiq-na.com.

Entrust, Inc.

Entrust provides identity-based security solutions that empower enterprises, consumers, citizens and websites in more than 4,000 organizations spanning 60 countries. Entrust's identity-based approach offers the right balance between affordability, expertise and service. With more than 125 patents granted and pending, these world-class solutions include strong authentication, physical and logical access, credentialing, mobile security, fraud detection, digital certificates, SSL and PKI.

ForeScout Technologies

ForeScout delivers automated solutions for Network Access Control (NAC), mobile security, threat prevention and endpoint compliance. Because our agentless appliance is easy to deploy, use and scale, over 1300 of the world's most secure enterprises and military installations rely on ForeScout to enable accessibility while protecting networks and sensitive data.

HP

HP is a leading provider of security and compliance solutions for modern enterprises that want to mitigate risk in their hybrid environments and defend against advanced threats. Based on market leading products from ArcSight, Fortify, and TippingPoint, the HP Security Intelligence and Risk Management (SIRM) Platform uniquely delivers the advanced correlation, application protection, and network defense technology to protect today's applications and IT infrastructures from sophisticated cyber threats. Visit HP Enterprise Security at: www.hpenterprisesecurity.com.

IOActive, Inc.

IOActive is a pioneer member of Microsoft's SDL Pro Network and has the honor of being one of the few hand-selected firms to not only conduct the security reviews for Vista Client, Vista Server, Win7, and Win8; but also to review numerous other Microsoft technologies.

IOActive has served as a trusted PCI and technical security advisor to Amazon, Facebook, and Google since 2009, having delivered Reports on Compliance, Gap Assessments, and detailed hardware/software security assessments against numerous frameworks and properties.

Our consultants are highly skilled and experienced information security professionals who are some of the world's leading experts in their respective disciplines, which include penetration testing infrastructure and applications, code reviews, social engineering, compliance, hardware hacking, and SCADA/Smart Grid security assessments. Our experts have real-world expertise in testing some of the world's largest and most sophisticated applications/infrastructures. The team also regularly presents world-class research and applied knowledge at the largest international security conferences.

IOActive is firmly committed to staying on the competitive edge and offering unrelenting value; it's something our customers have come to rely on over the years and can depend on in the future. IOActive is the only firm in our industry that offers a 100% service satisfaction guarantee.

Lookingglass Cyber Solutions, LLC

Lookingglass Cyber Solutions is a cyber security software company delivering deep visibility into the Internet threat landscape. Lookingglass helps organizations accurately and precisely anticipate and protect against targeted attacks by gathering, correlating, and analyzing threat information from within their own networks, supply chains and the rest of the Internet. The company's core product, ScoutVisionTM, leverages an open architecture, which provides source and sensor agnostic Internet threat visibility - to help users rapidly respond to enterprise network threats – often before they can impact operations. For more information, visit www.LGScout.com.

NetSPI

NetSPI is a privately held information-security consulting company founded in 2001. By utilizing its consulting team's deep security knowledge and its CorrelatedVM vulnerability management & reporting solution, the company is a trusted advisor to large enterprises. NetSPI provides a range of assessment and advisory services designed to analyze and mitigate risks and ensure compliance with relevant regulations and industry standards. Clients include large financial services firms, retailers, healthcare organizations and technology companies. More information is available at www.netspi.com.

NSS Labs

NSS Labs, Inc. is the recognized leader in independent security research and testing. We provide subscription-based security intelligence to enterprises worldwide. Our test-based research and expert analyses provide information technology professionals with the unbiased data they need to select and maintain complex security products for their organizations.

NSS Labs evaluates both network and endpoint security products, producing both individual Product Analysis Reports and group Comparative Analysis Reports. Group tests culminate in our exclusive Security Value MapTM. Founded in 1991, the company is located inAustin, Texas. For more information, visit www.nsslabs.com.

Palamida, Inc.

Palamida is the industry's first application security solution targeting today's widespread use of Open Source Software. It uses component-level analysis to quickly identify and track undocumented code and associated security vulnerabilities as well as intellectual property and compliance issues and allows development organizations to cost-effectively manage and secure mission critical applications and products.

Perimeter E-Security

Perimeter E-Security delivers secure infrastructure from the cloud that businesses of all sizes rely on. Our advanced technology, expert intelligence, and superior scale makes our clients' information more secure, more highly available, compliant and less costly to manage. Our growing customer base includes 6,000 organizations across all major verticals.

PhoneFactor

PhoneFactor is a leading provider of multi-factor authentication. Its award-winning platform features a suite of phone-based authentication options, including a phone call, text message, and smartphone app. Out-of-band architecture, real-time fraud alerts, and voiceprint verification protect against online banking fraud by providing strong security for account logins and high-risk transactions.

RedSeal Networks

RedSeal Networks is the leading provider of proactive enterprise security management solutions that enable organizations to continually assess and fortify their cyber-defenses while automating compliance.  The RedSeal platform enables businesses and government agencies to simplify the modeling and analysis of complex network and security control interactions across the entire network of firewalls, routers, load balancers and hosts to better understand their security state and regulatory compliance, identify the inherent risk to their operations and critical assets, and drive actions that reduce the risks associated with cybertheft and cyberespionage.   For more information, visit RedSeal at www.redsealnetworks.com

SafeNet

Founded in 1983, SafeNet, Inc. is one of the largest information security companies in the world, and is trusted to protect the most sensitive data for market-leading organizations around the globe. SafeNet's data-centric approach focuses on the protection of high value information throughout its lifecycle, from the data center to the cloud. More than 25,000 customers across commercial enterprises and government agencies trust SafeNet to protect and control access to sensitive data, manage risk, ensure compliance, and secure virtual and cloud environments.

SD Elements

SD Elements is a Secure Application Lifecycle Management solution (SALM) that gathers customized, secure application coding knowledge in one place. Development, Architecture, and Security Teams get guidance through contextual code snippets, videos, tutorials and external security industry references before the first key stroke of code is typed. SD Elements prescriptively tells you how to code securely based on your project's application stack by providing an interactive checklist of secure coding task recommendations, so that by the time your application is ready to be tested for secure coding errors, the testing turns into a validation of already implemented secure coding practices. This dramatically reduces remediation time and expenses by providing a repeatable customized secure coding process, which can be consistently implemented throughout your organization. SD Elements transforms your Application Lifecycle Management into Secure Application Lifecycle Management

Security Innovation

Security Innovation focuses on the most difficult IT Security problem, and the root cause of most data breaches - insecure software applications. Our solutions are based on the three pillars of a secure SDLC, which feed into one another to create an ecosystem of repeatable, secure software development: Standards, Education, and Assessment. The company's flagship product is TeamProfessor, the industry's largest application security eLearning library that comprises technical and awareness courses.

Sourcefire, Inc.

Sourcefire is transforming the way Global 2000 organizations and government agencies manage and minimize network security risks. With solutions from the network to the endpoint, Sourcefire provides customers with Agile Security TM that is as dynamic as the real world it protects and the attackers against which it defends. Sourcefire Next-Generation IPS (NGIPS) technology, available in standalone solutions or built-in to the Sourcefire Next-Generation Firewall (NGFW), is deployed by more organizations than any other IDS/IPS technology on the market. For more information please visit: www.sourcefire.com.

Triumfant

Triumfant decisively closes the breach detection gap by detecting breaches in real-time, generating a comprehensive and actionable analysis within minutes of the attack, and building a situational remediation that stops the breach and repairs all of the damage to the machine. Triumfant detects malicious activity that evades other defenses, continuously enforces security configurations and policies, and provides comprehensive continuous monitoring.

Yubico

Yubico is changing the game for strong two-factor authentication, making it easy and affordable for everyone. A million users in 100 countries rely on the YubiKey® for securing access to computers, mobile devices, financial services, networks and cloud services. Our customers range from individual Internet users to Fortune 500 companies. For more information, visit our booth to get a demonstration, or please visit yubico.com

Authentify, Inc.

Authentify provides global online authentication services based on using an end user's telephone as an authentication tool. An automated phone call, when synchronized with an online event, enables the end user's telephone to become an effective proxy for a security credential. Authentify offers authentication schemas to suit many application requirements including user authentication and real time transaction approval or cancellation. The combination of online activity and phone-based interaction offers a strong security process that is difficult to spoof. Voice channel and SMS options are available. The Authentify process helps thwart today's biggest threats to online financial services including keystroke loggers and other advanced persistent threats such as Zeus/Zbot, SpyEye, Carberp and others.

Learn more: http://www.authentify.com

Ernst & Young, LLP

Ernst & Young is a global leader in assurance, tax, transaction and advisory services. Worldwide, our 141,000 people are united by our shared values and an unwavering commitment to quality. We make a difference by helping our people, our clients and our wider communities achieve their potential. Our 20,000 advisory professionals form one of the broadest global advisory networks of any professional organization, delivering seasoned multidisciplinary teams that work with our clients to deliver a powerful and superior client experience. We use proven, integrated methodologies to help you achieve your strategic priorities and make improvements that are sustainable for the longer term. It's how Ernst & Young makes a difference.

Learn more: http://www.ey.com/

Mandiant

Mandiant is the information security industry's leading provider of advanced threat detection and incident response solutions and services. Mandiant provides products, professional services and education to Fortune 500 companies, financial institutions, government agencies, domestic and foreign police departments and leading U.S. law firms.

PhishMe, Inc.

PhishMe.com provides organizations the ability to train their employees and customers about the risks of spear phishing. With over three million individuals trained, PhishMe has proven that its trainings can reduce the threat of employees and customers falling victim to phishing attacks by up to 80 percent.

PricewaterhouseCoopers LLP

Return Path

Founded in 1999, Return Path helps over 2,000 of the best known senders get more email delivered to the inbox. Our solutions provide data, insight and resources to diagnose and prevent email deliverability, subscriber engagement, brand and rendering failures. In addition, Return Path offers the most widely used third-party whitelist, the Return Path Certification Program covering more than 2 billion inboxes with images on and links enabled at both Yahoo! and Hotmail. To learn more about Return Path and how we can help you to get in, stay in and keep pretenders out, visit us online at www.returnpath.net.

RiskIQ

RiskIQ™ finds tangible, emerging online threats to your business. Our proprietary technology monitors the web-based content that matters most to your business — both on your website and across the web at-large — identifying emerging security risks and providing early warning for online security threats most likely to impact your customers, employees and brand.

From zero-day malware hosts, to malvertisements in ad exchanges and sophisticated affiliate fraud techniques — we're constantly analyzing real-world web content, discovering new techniques and distribution tactics used to defraud companies and consumers.

At RiskIQ™, we provide the tools that security, marketing, and legal teams need to manage risk, detect and evaluate threats, and stamp out fraud in a cloud-based economy.

Verisign, Inc.

VeriSign, Inc. (NASDAQ: VRSN) is the trusted provider of Internet infrastructure services for the networked world. Billions of times each day, Verisign helps companies and consumers all over the world connect between the dots.

Learn more: http://www.verisigninc.com

Vigilant, Inc.

Vigilant, Inc. provides on-site consulting and managed services that help IT security teams better defend and enable today's dynamic business by refining and extending their security monitoring capabilities. The company's pragmatic approach solves today's urgent security problems, while enabling rapid progress toward longer-term security program objectives. Vigilant empowers customers to more efficiently respond to shifting threats, achieve regulatory compliance, prioritize protection of services that drive revenue and competitive advantage, and measure progress of the overall IT risk management program. Founded in 2003, Vigilant is headquartered in the New York metro area and serves a wide range of global and regional organizations whose mission requires them to secure highly sensitive and regulated services.

Voltage Security

Voltage Security provides data-centric encryption and stateless key management solutions to combat new security threats and address compliance by protecting structured and unstructured data as it is used across data centers, public and private clouds and mobile devices. www.voltage.com

WhiteHat Security

Headquartered in Santa Clara, California, WhiteHat Security is the leading provider of website risk management solutions that protect critical data, ensure compliance and narrow the window of risk. WhiteHat Sentinel, the company's flagship product family, is the most accurate, complete and cost-effective website vulnerability management solution available. It delivers the flexibility, simplicity and manageability that organizations need to take control of website security and prevent Web attacks. Furthermore, WhiteHat Sentinel enables automated mitigation of website vulnerabilities via integration with Web application firewalls and Snort-based intrusion prevention systems.

Learn more: http://www.whitehatsec.com