Register Online | Pay by Check

This seminar features several timely Information Security related topics which IT Audit professionals face on a regular basis.

Attendees will be eligible for 7 CPE.

Scheduled Speakers:

• John T. Rostern – Jefferson Wells International – Director, IT Risk Advisory Services
• Mark Lobel – PricewaterhouseCoopers – Partner
• MacDonnel (Don) Ulsch – Zeropoint Risk Research, LLC – Chief Executive Officer
• Glenn A. Siriano – KPMG LLP – Partner, Advisory, Information Protection & Business Resiliency
• Ilya Zherebetskiy  - KPMG LLP- Senior Associate, Information Protection & Business Resiliency
• Josh Shaul – Application Security, Inc. (Appsec, Inc.) – Vice President, Product Manager

The day’s itinerary includes:

• eDiscovery
  • Planning for eDiscovery.  Why You Cannot Ignore This Anymore.  The evolution of the Federal Rules of Civil Procedures (FRCP) has had a tangible and lasting impact on how organizations must prepare for discovery related to litigation.  This presentation discusses the changes in discovery requirements related to electronic artifacts and outlines considerations for preparing your organization for eDiscovery.

• 2010 PwC Information Security Survey
  • The 2010 Global State of Information Security.  For the past 11 years, PwC, CIO and CSO magazines have performed the world's largest information security survey.  One of the primary authors of the survey, PwC Partner Mark Lobel, will share the results of the current survey and the implications for your organization including perspectives on security spending, strategy, social media and cloud security.

• How Cloud Computing Impacts Privacy
  • Cloud computing, U.S. privacy laws, and third-party vendor management initiatives increase the challenges of managing information risk and compliance requirements.  This presentation examines approaches to mitigating complex risk in the context of the new Massachusetts privacy law, 201 CMR 17.00, and provides recommendations regarding third-party and cloud computing risk.

• Third Party Vendor Risk Management (from a security perspective)
  • Establishment of a vendor risk management program from a security and privacy perspective.  This presentation will discuss the importance of establishing a vendor risk management program, critical factors to consider, leading practices and trends - including integration into a broader vendor management program, and a discussion around a sample approach.

• Database Security
  • The presentation will focus on leading practices for database security, highlighting the key areas that enterprises should be focusing their efforts on to protect their data and ensure compliance with common regulation such as SOX, GLBA, and PCI.  The presentation will include real world examples of how easily an attacker can access your databases, and all the data within them, if proper security controls are not put in place.

The cost of the training seminar is $250 per IAD member and $300 for non-IAD Members, and includes continental breakfast, lunch and breaks Continental breakfast will be served from 8:30 - 9:00 am. The education program will start at 9:00 a.m. and conclude at 5:00 pm.