The original Metricon 3.5 Call for Participation can be found here
Metricon 3.5 Digest is forthcoming. Thanks to Dan Conway for compiling it.
Below is the final agenda with links to pdf's of most of the presentations.

Metricon 3.5 Agenda with Links to Presentations

Monday, 20 April 2009 - San Francisco, California

8:00: Breakfast in room

8:30: Welcome: Google, our sponsor

Four grouped sessions plus the hour long CISO MashUp to follow. Each session has three atmost 20 minute presentations of ideas followed by 30 minutes of discussion and general interaction with all attendees. Breaks will be 10 minutes in the AM and 15 minutes in the PM.

8:45am-10:15am - Enterprise Metrics Case Studies

Carolyn Wong, Ebay : Metrics at Ebay Slides

Richard Seierson, Kaiser-Permanente : Foundations for Security Business Intelligence

John Flynn/Steve Weis : Metrics at Google Slides

Discussion Leader: Steve Piliero

10:25am-11:25am - CISO MashUp

Discussion Leader: Andrew Jaquith

11:30am-12:30am - Lunch with CISOs

Provided by Google

12:45pm-2:15pm - Metrics from Real Data

Wade Baker, Verizon : Data Breach Investigations Project Update Slides

Steve Kruse and Bill Pankey : Security Awareness Metrics Slides

Jeremiah Grossman, Whitehat Security : Top Website Vulnerabilities Slides

Discussion Leader: Ray Kaplan

2:30pm-4:00pm - Frameworks

Jennifer Bayuk : Frameworks for Architecture, Metrics and Risk Slides

Lilian Wang : Metrics MashUp Slides

Fred Cohen : Metrics Framework for Legal Matters Slides

Discussion Leader: Jeremy Epstein

4:15pm-5:45pm Enterprise plans and lessons learned

Mauren Doyle : Security of Open Source Web Applications Slides

Brenda Larcom : Attack Resistance Score Slides

William Kruse : Penetration Testing Metrics Slides

Discussion Leader: Fred Cohen

5:45pm : Closing Remarks - Betsy Nichols, Chair

The original call for papers.

Attachments