

BEGIN:VCALENDAR
VERSION:2.0
PRODID:-//ISACA Chennai Chapter - ECPv4.9.4//NONSGML v1.0//EN
CALSCALE:GREGORIAN
METHOD:PUBLISH
X-WR-CALNAME:ISACA Chennai Chapter
X-ORIGINAL-URL:https://isaca-chennai.org
X-WR-CALDESC:Events for ISACA Chennai Chapter
BEGIN:VTIMEZONE
TZID:"Asia/Kolkata"
BEGIN:STANDARD
TZOFFSETFROM:+0530
TZOFFSETTO:+0530
TZNAME:IST
DTSTART:20240101T000000
END:STANDARD
END:VTIMEZONE
BEGIN:VEVENT
DTSTART;TZID="Asia/Kolkata":20240201T080000
DTEND;TZID="Asia/Kolkata":20241130T170000
DTSTAMP:20260425T190624
CREATED:20241223T001034Z
LAST-MODIFIED:20241223T001034Z
UID:38533-1706774400-1732986000@isaca-chennai.org
SUMMARY:ISACA Chennai Chapter SIG 2024
DESCRIPTION:SIG activities for year 2024 by members across the three SIGs namely\, AI\, Privacy and SecOps \n
URL:https://isaca-chennai.org/events/isaca-chennai-chapter-sig-2024/
LOCATION:Virtual Event\, India
ORGANIZER;CN="ISACA%20Chennai%20Chapter":MAILTO:officemanager@isaca-chennai.org / hon.secretary@isaca-chennai.org
END:VEVENT
BEGIN:VEVENT
DTSTART;TZID="Asia/Kolkata":20241109T170000
DTEND;TZID="Asia/Kolkata":20241109T190000
DTSTAMP:20260425T190624
CREATED:20241027T120903Z
LAST-MODIFIED:20241105T093333Z
UID:36161-1731171600-1731178800@isaca-chennai.org
SUMMARY:EQS 5: Nov 2024 PDM - Securing the Pipeline: Threat Modeling in Modern CI/CD
DESCRIPTION:Welcome to our Enlightening quarterly series (EQS) #5. This quarter’s theme is “Securing the Pipeline: Threat Modeling in Modern CI/CD\,” focusing on Threat Modeling  \nIn this three-month Enlightening Quarterly Series (EQS)\, we explore the critical role of threat modeling in enhancing security across the Continuous Integration and Continuous Deployment (CI/CD) pipeline. Each month\, we dive deeper into the concepts and frameworks\, starting with the fundamentals of threat modeling and its importance in modern cybersecurity. The series will also cover hands-on demonstrations of various threat modeling methodologies\, including STRIDE\, DREAD\, and PASTA\, while addressing real-world use cases in cloud and application security. \nProgram Details  \nDate: Saturday November 9 2024\nMode: Virtual\nCPE 2:00 Hours\nAgenda \n17:00 - 17:15: Virtual Networking \n17:15 - 17:18: Welcome by ISACA Chennai Chapter Director Programs\n17:18 - 17:35: Monthly Security News Round Up by ERT Volunteer\n17:35 - 17:40: Chapter Updates & Speaker Introduction\n17:40 - 18:50: Comprehensive Threat Modeling: Hands-On Exploration of STRIDE\, DREAD\, and PASTA with Essential Tools\, by  Vimalaasree Anandhan\n18:50 - 19:00: QnA\n\n\nDescription: Exploring Threat Modeling: Frameworks\, Methodologies\, and Essential Tools \nThis session provides an in-depth overview of various threat modeling frameworks\, offering participants valuable insights into identifying and mitigating security threats. \nAgenda: \n\nSTRIDE Framework: An exploration of the STRIDE methodology\, delving into its six core components—Spoofing\, Tampering\, Repudiation\, Information Disclosure\, Denial of Service\, and Elevation of Privilege. Discover how each element contributes to a structured approach in identifying potential threats.\nDREAD and PASTA Frameworks: Understand the DREAD framework and its application in risk assessment\, as well as an introduction to PASTA (Process for Attack Simulation and Threat Analysis) for a strategic\, attack-based approach to threat modeling.\nThreat Modeling Tools: An overview of popular tools\, including the Microsoft Threat Modeling Tool and OWASP Threat Dragon. This segment will showcase how these tools facilitate structured threat modeling across various use cases.\n\nSpeaker Details: Vimalaasree Anandhan \nVimalaasree is a Cybersecurity Leader at Poshmark India with nearly two decades of expertise in application and cloud security\, as well as DevSecOps practices. She oversees security operations\, governance\, risk management\, and compliance\, ensuring a robust security posture for the organization. Her focus includes securing applications\, mitigating vulnerabilities\, and building resilient systems.\nShe has previously held key positions at Ernst & Young (EY)\, Tata Communications\, Cognizant\, and BNY Mellon\, where she significantly advanced cybersecurity measures.\nShe holds a Master’s in Science and a Bachelor’s in Engineering\, along with several industry-recognized certifications in cybersecurity and risk management.\nShe is a member of many vibrant cybersecurity communities like ISACA\, ISC2\, WiCyS and serves as the President of NexGenCyberWomen\, a community dedicated to empowering women cybersecurity. \n
URL:https://isaca-chennai.org/events/eqs-5-nov-2024-pdm-securing-the-pipeline-threat-modeling-in-modern-ci-cd/
LOCATION:Virtual Event\, India
ORGANIZER;CN="ISACA%20Chennai%20Chapter":MAILTO:officemanager@isaca-chennai.org / hon.secretary@isaca-chennai.org
END:VEVENT
END:VCALENDAR