Professional Documents
Culture Documents
Benjamin Stephan
CISSP EnCE QDSP CISA
BSt h @Chi fS
BStephan@ChiefSecurityOfficers.com
it Offi
Spectrum of Services
Internal Audit – Financial, Operational Technology Risk & Security
and Information Technology Enterprise Security
Corporate and IT Governance System Controls and Effectiveness
Risk Assessment Business Continuity Planning
Internal Audit Transformation Privacy & Data Protection
Fraud/Forensic Investigations Vulnerability Analysis and Testing
Information Technology Audit Technology & Strategy Alignment
Change Management
Computer Forensics
Customer List
1
Why Chief Security Officers?
CSO Team
Russell Rowe is a Principal with Chief Security Officers, LLC (CSO). He has over 25
years of auditing, governance and security experience in companies ranging in size
from venture capital start-ups to Fortune 500 companies.
Mr. Rowe has held the titles of Chief Information Officer, Chief Technology
gy Officer and
Chief Security Officer. Mr. Rowe holds a B.S. degree in Computer Information Systems
from Arizona State University and an M.B.A. degree from the University of Phoenix.
Mr. Rowe lecturers nationally on Sarbanes Oxley and counsels companies on how to
reduce compliance costs.
CSO Team
Kenneth Rowe – CISSP, CISA, QDSP, PMP, MCSE, MBA
Kenneth R. Rowe is a principal with Chief Security Officers, LLC. Mr. Rowe has over 25 years
experience in information technology in the healthcare, finance, education and supply chain
industries. He has worked for Scottsdale Healthcare, Good Samaritan Health Systems, United
Parcel Service, and was involved in the acquisition of Livingston Healthcare Services by
United Parcel Service.
Mr. R
M Rowe h has hheld
ld the
th positions
iti off CIO,
CIO CTO,
CTO and
d CSO in
i his
hi career. He
H received
i d his
hi Bachelor
B h l
of Science degree from Arizona State University. He also has a Masters degree in Technology
Management from the University of Phoenix. Mr. Rowe also holds a number of technical
certifications including: CISSP, CISA, PMP, MCSE, and Cisco CCNA.
Mr. Rowe is a member of the American Society for Quality, International Society of Six Sigma
Professionals, Project Management Institute, and the Information Systems Audit and Control
Association. Mr. Rowe is an expert in IT security issues and best practices for risk
management. He has worked on numerous technical projects that required compliance or
guidance under the following standards: Sarbanes-Oxley, Gramm Leach Bliley, HIPAA, CFR 21
Part 11, ISO 17799, and CobiT.
2
CSO Team
Benjamin Stephan – CISSP, EnCE, CISA, QDSP
Important Disclaimer
10
Computer Forensics
What is Computer Forensics?
Computer Forensics is the acquisition, preservation
and analysis of digital information that meets the
requirements of evidence for court presentation.
11
3
E-Discovery
What is Computer Forensics?
http://searchsecurity.techtarget.com/sDefinition/0,,sid14_gci1150017,00.html
12
13
14
4
Why Computer Forensics?
15
Digital Evidence
16
17
5
Advantages of Digital Evidence
18
Cyber Evidence
Partition Recovery
File Signature Analysis
Hash Sets
Recovering Deleted Files
OS Artifacts
Images
19
Internet Evidence
Email
Outlook PST Files
Webmail
B
Base64
64
History
Cookies
Temporary Internet Files
20
6
Computer Forensics and the Law
21
22
7
User Profiling
24
By agreement
Request for Production of Documents
Motion to Compel
Identify what is to be accessed
Narrowness and relevance of search
Not unduly burdensome
25
26
8
Discovery – What to ask…..
27
28
29
9
What a Forensic Engineer Brings
30
Technical certifications
Forensic certifications
Professional experience
Referrals from clients
31
32
10