ISACA and IIA – San Diego Chapters’ IT Full Day Seminar
ISACA and IIA – San Diego Chapters’ IT Full Day Seminar
November 14, 2018 7:30 am - 4:00 pm
Location: Marina Village, 1936 Quivira Way, San Diego, CA 92109,
Starboard Room
Note:Online Registration will open at regular prices through Sunday, November 11, 2018. Prices will go UP once Online Registration ends. Attendees who registered online will have priority seating. Limited seats may be available.
Program description:
Building a Successful Audit Plan for Cloud Services 2.0 hrs (100 minutes)
All organizations use the cloud in one form or another. Whether its infrastructure as a service (IaaS) or a hosted application delivered as software as a service (SaaS), our exposure to cloud services has never been greater. In many cases, the use of cloud services is actually more secure than traditional on premise IT. That being, internal auditors and IT auditors need to ensure that how they assess cloud services accurately captures and reflects different types of risk including the correct way to use these services, their impact with respect to “shadow” IT, as well as growing privacy concerns.
Learning objectives:
Develop a cloud audit program that is comprehensive and repeatable.
Validate privacy and security risks of cloud services to meet organizational objectives and risk tolerances.
Apply professional skepticism in evaluating and assessing vendor claims relative to governance and security.
Breaking Down Privacy – The Landmark California Consumer Privacy Act of 2018 and How it Compares to HIPAA and EU’s GDPR 3.0 hrs (150 minutes)
In this session we will explain the concept of data privacy and its relationship with information security. You will learn the essential elements of an effective governance framework for establishing a defensible and sustainable privacy and security program. You will be introduced to the California Consumer Privacy Act of 2018 (CaCPA), along with its recent Amendments. We will discuss key aspects of the law including, what businesses must comply with CaCPA, how broadly personal information is defined, new consumer rights, enforcement, and key operational impacts. The session lays out a roadmap for compliance, including how to conduct data mapping and a gap/risk assessment. Finally, we will compare similarities and differences between CaCPA, HIPAA and EU’s GDPR, including consumer rights.
Learning objectives:
Describe data privacy and its connection with information security.
Define information governance and how it is managed across privacy and security.
Explain key operational impacts for complying with the California Consumer Privacy Act.
Cyber Security Incident Response Best Practices 2.0 hrs (100 minutes)
This session will provide an overview of cybersecurity threat trends and incident response best practices. We will discuss how to develop a defensible incident response plan, obtain support from management, and test and refine the plan.
Learning objectives:
Prepare and test a defensible incident response plan.
Clearly communicate cybersecurity incidents to impacted parties, executive management, and board of directors.
Select a cybersecurity insurance policy using a risk-based approach.
Robotic Process Automation 1.0 hr (50 minutes)
In this interactive session, we will provide an overview of Robotic Process Automation (RPA), and the potential implications to the role of Internal Audit. We will examine how companies are establishing and advancing this business solution, and discuss proven methodologies to achieve sustainable results.
Learning objectives:
Describe the potential benefits of RPA.
Discuss the risks associated with RPA. Demonstrate an RPA application.
Refund Policy:Registered participants who give a cancellation notice less than three (3) business days in advance of an event, or who do not attend the event, will be charged the full price of the event. It is acceptable to have a substitute attend the event on behalf of the registered participant. In addition, for luncheon events only, the participant may request to apply their payment to the following month’s luncheon event. The option to apply payments to future events does not apply to seminars.
The chapter will process and issue any eligible refunds the week after the event. Please contact John Villard for additional details related to refunds, complaints, or cancellation policies.
Thank you for your interest in the ISACA and IIA - San Diego Chapters' IT Full Day Seminar. The opportunity to register and pay for the event in advance has ended. See Event Announcement regarding cost and registration information.