James Arlen, Chris Clymer, Mick Douglas, and Brandon Knight

Synopsis
Finding security vulnerabilities is easy. Getting them remediated is HARD. Many of the real problems in information security are not about technical prowess with packet dumps or disassemblers, they're about exercising the "soft skills" you discarded when entering IT. In this talk the four of us will show how social engineering can be applied not to break into systems, but to secure them. How do you convince your DBAs they really do need to apply the latest Oracle patch? How do you convince the CIO that you need funds and people to perform dedicated vulnerability scanning? How do you convince your users that they really shouldn't put that password on their monitor? We'll cover all this and more with a little shouting, a lot of scolding, and some live demonstrations.
Bio

James Arlen is a contributor to Liquidmatrix.org Security Digest, a frequent ranter at security cons, and originator of the term "cyberdouchery."

Chris Clymer is a frustrated security professional and co-host of the Security Justice podcast.

Mick Douglas is a P2P seal clubber and co-host of PaulDotCom Security Weekly podcast.

Brandon Knight is a security professional and Notacon organizer, which has nothing to do with this panel being accepted. Honest!