Space is limited, please RSVP to This e-mail address is being protected from spambots. You need JavaScript enabled to view it

Tuesday, March 10th, 1:00 pm-4:00 pm

Class size/Format: 25 attendees, 1/2 Day, Lecture and Workshop

Workshop Overview: This half-day workshop is a hands on and interactive session designed to drive a common ground for addressing the new Massachusetts Privacy legislation. While it has been pushed out (yet again) to January 1^st, 2010, it is important that we as constituents, drive for a consensus approach to addressing its requirements. Attendees will leave the session with plenty of pragmatic advice that can be applied immediately in their own organizations.  This advice is derived from the collective insights of your peer attendees and is designed to be actionable and practical. The size of the session is kept small enough to allow for the highly interactive format sessions.

The output of this workshop will be released as an Open Source Response Framework for other organizations to leverage in their activities around addressing this and other privacy legislation. The Response Framework will be released through The Consensus Controls Project (www.consensuscontrols.org) and made available to the public for review and use, free of charge.

Intended Audience:  Massachusetts Privacy Workshop is intended for security and compliance managers who have a desire to work together to derive a common set of criteria in response to this legislation.  This is an interactive session that will provide a unique setting for familiarizing yourself with this law, as well as interacting and networking with your peers.

Trainer Bio: Brandon Dunlap has more than 15 years of experience managing business technology risk in large and small organizations. He has served in a variety of roles across heavily regulated industries, successfully leading all aspects of IT security programs, including policy and procedure management, oversight and control, strategy, architecture, development, and training. Currently, he is the Managing Director of Research of Brightfly, an independent, advisory and research firm that focuses on building a collaborative practitioner community and bridging the gaps within information technology, security, risk, compliance, and audit disciplines.

In his role at Brightfly, he uses his unique background to guide the firm’s research agenda and cultivate the community involvement. Additionally, he develops and delivers curriculum on key security and compliance topics for leading professional associations.

Brandon’s broad presentation history, charismatic speaking style, credible experience, and vendor-neutral perspective have made him a popular presenter at technical and business-focused events. In addition to headlining Brightfly events, he has recently addressed professionals at international gatherings and regional events of the Institute of Internal Auditors (IIA) and ISACA, as well as the Institute for Applied Network Security (IANS), the ASIS International, and other events. Brandon has been quoted and profiled in major industry publications, including CSO Online, Information Security Magazine, Dark Reading, and TechTarget's SearchSecurity.