Scottish Information Assurance Forum

PCI DSS Workshop
Friday 26th October, Stirling Enterprise Park, Stirling

During its October Seminar, the Scottish Information Assurance Forum (SIAF) will provide an interactive workshop around PCI DSS (the Payment Card Industry Data Security Standard). Delegates are asked to come long with an open mind and the view to contribute to a lively debate around PCI DSS.

Throughout the workshop, delegates will be invited to participate in a number of workgroups including scenario setting and special guidance.

This workshop would appeal to a wide audience including the individuals responsible for compliance with PCI DSS, auditors, Information Security Professionals and the key stakeholders within your organisation.

Please remember that SIAF members are able to bring up to 2 colleagues free of charge. Additional attendees will be charged at £29pp + VAT.


Agenda: PCI DSS Workshop

Pricing: This event is free to SIAF members. If you are not a member of SIAF and would like to attend, a registration fee of £79pp + VAT is applicable

 Ethical Hacking: The Pros & Cons 
Friday 31st August, Stirling Enterprise Park, Stirling

Synopsis: How can we protect ourselves from the unknown? Understanding the methods and tools used by today's hackers allows us to build stronger and better defences.

Download Agenda

The Scottish Information Assurance Forum were delighted to bring this seminar to our members in conjunction with Sec-1.

This workshop included providing our members and attending guests an excellent overview to understand the threats to their organisations as well as recent attack trends.

Throughout the day we covered attacks on the network perimeter, internal attacks and the benefits of penetration testing.

The seminar also included a live demonstration on the common attacks techniques followed by an understanding on how to protect your organisation from such attacks.

“SIAF offer excellent seminars providing a blend of both business and security requirements to protect our information assets.” Dave, SIAF Member (3 years)

  End to End Security
Friday 27th April, Stirling Enterprise Park, Stirling

Land's End to John O'Groats - this seminar will cover the security issues when defining and securing your corporate infrastructure.

Topics discussed will include; Endpoint Security, IRM and SSO.

Download Agenda

During its April seminar, SIAF featured presentations from James Spooner, Director at Oracle and Mike Francis, Channel Manager at Portsys.

Mike’s presentation highlighted the risks associated with the explosion of mobile devices across all sectors. The Consumerisation of IT and the adoption of Cloud technologies meant this session prompted an in depth discussion from members and attendees many of which were facing similar issues within their own organisations. At the end of Mike’s presentation he was inundated with questions, which he handled extremely well.

James Spooner (Director, Oracle) provided a lively and enjoyable presentation on the specifics around the security of databases and virtualisation which generated a lot of discussion during the lunch time networking session and set the scene for the SIAF roundtable workgroup session that afternoon.

The SIAF roundtable session comprised of a mixed group of representatives from private and public sectors who engaged in an open and passionate debate around the issues they are experiencing within their own organisations and the sharing of good practice amongst our members.

The Diminishing Network Perimeter - RANT
Wednesday 13th June, The Westerwood Hotel, North Lanarkshire

SIAF was delighted to deliver its June seminar during the first day of the UKs largest Information Assurance conference, the National Information Security Conference (NISC -

Download Agenda

Alan Moffat (SIAF Founder) chaired the NISC Conference which featured presentations from DC Thompson, Serious Organised Crime Agency (SOCA), Get Safe Online, Edinburgh Napier University, Baillie Gifford and the CPNI.

 Seminar: Security Starts at the Basics – The SANS Top 20 Critical Security Controls
Friday 30th August, Stirling

The latest shiny object will not solve a security issue if you don't have the basics in place first. The vast majority of breaches that take place exploit known vulnerabilities using readily available methods of attack. The SANS Top 20 Critical Security Controls provides an excellent guideline as to where to start when ensuring that your organisation is secured appropriately against these threats. This session will discuss the most critical of the SANS Top 20 Critical Security Controls, why they exist, how best to implement them into an enterprise and how this will facilitate the reduction in risk within the organisation. 

This event was supported by SIAF Platinum Member, Tripwire.