Skip to Content


Tuesday, October 11, 2016
Boar's Head Conference Center - Charlottesville, VA
Registration is free this year!*

The Information Security, Policy and Records Office (ISPRO) is pleased to announce the 2016 UVa ISPRO Conference.

This annual event will include information sessions on records management, information security, UVa information policies, and speakers from various departments within the University. The day will close with a raffle for some wonderful prizes donated by our vendors.

We have hit our registration limit! However, you can get on the waiting list by registering. That way if someone cancels, you'll be all signed up and we'll notify you.

CLICK HERE to register now!

IMPORTANT: If you find you are unable to attend, you must cancel your registration by September 30, 2016 or your PTAO will be charged a $50 no-show fee.
On-site registration will not be accepted.
We are using EventBrite for our conference registration this year.

ISPRO Awards: Nominations are now closed.
Awards are given for significant contributions in records management and/or information security. Nominees may be an individual or a department.

Participating Vendors (as of September 16, 2016)

Vendors: CLICK HERE for Information


Conference Schedule & Program

Conference Schedule: Conference session titles will be posted outside of each break-out room. If you would like to have your own full copy of the Conference Program - including session descriptions and session locations - you can download, print and bring it with you. Conference programs will also be available the day of the event. Please think twice before you print!

	icon Printable version (PDF file) of the Conference Program including session descriptions

8:00 - 8:45

Registration, socializing, morning refreshments, and greet the vendors! [Original Ballroom]

8:45 - 9:00 Welcome & Opening Remarks
9:00 - 10:00 General Session: UVa's Security Enhancement Program
Jason C. Belford, UVa Chief Information Security Officer (CISO) [Original Ballroom]

Meet the new Chief Information Security Officer at UVa and hear about the Security Enhancement Program underway and other work UVa is doing to protect our information and information systems from daily threats.

10:00 - 10:15 BREAK [Original Ballroom]
10:15 - 11:05 Breakout Sessions (A) [Ground Level Meeting Rooms]

It's Just My Email, So What If It Got Hacked? Brian Davis and Michael Grinnell- ISPRO [Hearth Room]

Real world examples of the damage attackers can do with phished email credentials and social engineering. We will follow up with some tips on how to protect yourself and your identity.


Records Management Update. Caroline Walters, Jessie Graham, and Jessica Tyree - ISPRO [Arbor Room]

Come learn about our new, easy-to-navigate website, recent updates to the University Records Management Application (URMA), and using ServiceNow for a variety of records management requests. For those with records management questions, be sure to stick around for a short Q&A session, if time allows.


What happens in Vegas doesn't always stay in Vegas. Anh Nguyen-Tuong [Patio Room]

DARPA conducted the final event of the Cyber Grand Challenge (CGC) in Las Vegas in August 2016. The challenge in CGC was to build an autonomous system capable of playing in a Capture The Flag hacking competition. The final event pitted the systems from seven finalists against each other.
Our team built Xandra, the system that won the $1M second-place prize in the final event. In this talk I will give an overview of CGC, describe our experience participating in CGC, outline the techniques and approaches used in creating Xandra, and highlight future research directions.
Xandra was jointly developed by researchers at GrammaTech (D. Melski, D. Nguyen, E. Rizzi) and the University of Virginia (M. Co, J. Davidson, W. Hawkins, J. Hiser, D. Morris, A. Nguyen-Tuong, and awesome support from the UVA CS System Staff)

11:10 - 12:00 Breakout Sessions (B) [Ground Level Meeting Rooms]

Held Hostage: Keeping Ransomware Out of Your Computer Tony Townsend - ISPRO [Arbor Room]

Ransomware is the latest, and scariest, form of malware. What would you do if suddenly you were denied access to ALL the files on your computer? Would you pay the extortion demands just to unlock them and get them back? Tony Townsend will talk about how ransomware can infect your machines, how to protect yourself from this threat, and what to do if you fall victim to the bad guys.


Case Study: Going Paperless in SEAS Post Award with Image Now Carey Reinicke, SEAS Grant Administrator; Rachel Sligar, Document Imaging Services, ITS [Patio Room]

This session will review the process that the SEAS Post Award office is following to go paperless with Image Now. Learn about their initial thoughts on going paperless, how their plans have changed as the project has moved forward and where they are now. Discussion about what they have learned and what they may have done differently will close the session.


The UVa eDiscovery Project Caroline Walters (ISPRO), Shana Fabio (ITS) [Hearth Room]

Learn about the eDiscovery Project, including the need for policies, procedures, and software to improve the University's response to legal actions, FOIA requests, and investigations. Upon completion the procurement of software and standard operating procedures will help simplify and increase the productivity of the records management staff charged with this important service.

12:00 - 1:05 LUNCH - ISPRO Award Presentations - [Original Ballroom]
1:10 - 2:00s Breakout Sessions (C) [Ground Level Meeting Rooms]

Phishing and Ishing, How to Protect Your Data and Identity Karen McDowell - ISPRO [Arbor Room]

Did you know that 90% of all breaches start when someone clicks on a phishing email? We like to think mastermind hackers cause security breaches, but the sad reality is that when we fall for ordinary phishing emails, we are giving hackers just what they need to create a breach. Learn how to identify phishing emails and other forms of ishing in this session, so you don't become the next victim statistic.


Want to go Paperless? A Checklist for Change Caroline Walters and Jessie Graham - ISPRO [Hearth Room]

Thinking of going paperless but don't know where to start? This session will provide attendees with the necessary steps to begin the process of going paperless. Join us to learn about what to do before you scan, document management options at UVA, compliant reformatting of paper records, and tips for successful storage and management of electronic information.


Ufirst - Transforming Human Resources at UVa Sean Jackson - Executive Director, Ufirst [Patio Room]

The University of Virginia employs nearly 21,000 faculty, staff, and team members across its Academic Division, Health System, and the College at Wise. In early 2015, a group of executive sponsors charged the University with transforming the way it provides human resource services. Ufirst is the result of that charge. It will create a customer-centric HR function through updated processes, procedures and technology and is focused on making the employment experience at UVA an exceptional one.

2:00 - 2:15 BREAK [Original Ballroom]
Thank you to Kodiak Document Destruction for sponsoring the afternoon refreshments!

Kodiak Document Destruction

Make sure to stop by their table and thank them for their generosity!

2:15 - 3:30

The Confluence of Data Security Challenges Patrick Gray (former FBI Special Agent and IT Security Consultant) [Original Ballroom]

The Internet threat landscape has shifted. What used to be a playground for hackers, crackers, script kiddies and packet monkeys is now a borderless abyss of organized crime fueled by financial gain and state sponsored forays into our critical infrastructures, academia, governments, businesses and our personal lives. I will explore the current threat landscape by highlighting the newest cyber criminals and examining the latest tactics employed by these predators. I will also address how organized criminal groups, state-sponsored groups, botmasters and hackers interact with this new crime element utilizing incredible technologies and how we can prepare to stave off these relentless attacks and protect our assets. The focus will include public sector agencies, advanced persistent threats, IoT ventures, Nation State forays into our critical infrastructures and why is Academia at such a high risk and what can we do?

3:30 - 4:00 Conference Wrap-Up, Closing Remarks & Drawings for the Door Prizes [Original Ballroom]

*Registration for the conference is FREE! However,if you find you are unable to attend, you must cancel your registration by Friday, September 30, 2016 or your PTAO will be charged a $50 no-show fee. To cancel your registration or for any other questions regarding the conference, please send email to
On-site registration will not be accepted.
Click here to go back to the top.