Shea Nangle

Senior Security Advisor @ Leviathan Security Group

Specialties: Compliance, Incident response, Vulnerability management, Log analysis, Informationsecurity standards, PCI DSS, FedRAMP/FISMA, HIPAA/HITRUST, SOC 2, ISO 27001/27002

Session: Best Practices for DIY Alfresco Security

How do you best secure a new instance of Alfresco during deployment? What can you do to secure your existing Alfresco deployments?

The session will start by exploring a number of platform-independent steps for increasing security. Some common mistakes made in deployment will be outlined, and strategies will be identified for avoiding these mistakes. From there, the session will drill down into security recommendations that are specific to Alfresco deployments. Additionally, the session examine some “easy wins” to help comply with the requirements of specific security and compliance frameworks such as PCI DSS and HIPAA.

Attendees will leave this session with concrete tactical recommendations for implementation on their Alfresco instances. While this session contains technical material and recommendations, it is accessible to audience members with a range of technical expertise.

Speaker Sessions

Session: Best Practices for DIY Alfresco Security How do you best secure a new instance of Alfresco during deployment? What can you do to secure your existing Alfresco deployments? The session will start by exploring a number of platform-independent steps for increasing security. Some common mistakes made in deployment will be outlined, and strategies will be identified for avoiding these mistakes. From there, the session will drill down into security recommendations that are specific to Alfresco deployments. Additionally, the session examine some "easy wins" to help comply with the requirements of specific security and compliance frameworks such as PCI DSS and HIPAA. Attendees will leave this session with concrete tactical recommendations for implementation on their Alfresco instances. While this session contains technical material and recommendations, it is accessible to audience members with a range of technical expertise.