2015 April Training Session

When: April 1, 2015 - 1300-1630

Where: RTP HQ

Registration: Website

Cost:  

ISACA-RTC Members - Free (Log in to register)

Affiliated Organizations (IIA, ISSA, Othe ISACA Chapters) - $25

All Others: $40

CPEs: Upto 3

Handouts:  

Session I - Social Engineering - Tools & Techniques

Social engineering has evolved over the years. While the overall tactics and goals have stayed the same, tools and techniques have changed. This session will introduce, and provide a high level overview, of a few of the latest tools available to modern "social engineer".

Speaker: Srinivas Saraswatula CIA, CISA, CISM, PMP

Srinivas is the Managing Principal with Accuratus LLC, that provides a range of services from audit co-sourcing to IT security advisory services. Srinivas's professional career includes almost 20 years in industry and professional service roles across several industries including financial services, government, healthcare, technology and power utilities. His most recent industry management role was serving as the Vice President of IT Audit at Open Solutions, Inc., a billion dollar financial services company (now part of Fiserv), where he managed the internal audit department, acted as liaison to the federal regulators,and managed the relationship with external auditors. Previous to that, he was Senior Manager of Internal Audit at Fidelity Investments and a Senior IT Auditor at Progress Energy (now Duke Energy).

Srinivas has extensive experience in the areas of IT audit and risk management, information security, privacy, process improvement, due diligence, strategic planning, systems integration, business continuity/disaster recovery and technology strategy. Srinivas has numerous globally accepted certifications including CIA, CISA, CISM and PMP. He received his MBA from the Kenan-Flagler Business School, University of North Carolina at Chapel Hill. He attended Clemson University in Clemson, SC for his MS/PhD (incomplete). Srinivas received his Bachelor of Engineering degree in Civil Engineering from Osmania University in Hyderabad, India. He is currently the Secretary (and immediate-past President) of the ISACA Research Triangle Chapter board and participates actively in the local IIA, ISSA and PMI chapters. He has spoken at various professional events covering topics on technology risk, internal audit, information security and IT risk management. In addition, he is currently Adjunct Faculty at NC State University's Poole College of Management, where he teaches a graduate level course in IT Auditing (part of the Master of Accounting degree program). 

Session II - SCADA Security

In June 2010 the world became aware of Stuxnet, a worm designed to attack industrial programmable logic controllers (PLCs).  Stuxnet has been described as a ‘game changer’ in the field of IT security. This presentation will discuss the relevance of Stuxnet to our IT audit of the water treatment plants operated by the City of Raleigh.

Speaker: Martin Petherbridge & Shirley McFadden

Martin Petherbridge is Internal Audit Manager for the City of Raleigh, with responsibility for audit oversight of sixteen City departments, including Police, Fire, Public Utilities, Parks, Recreation and Cultural Resources, IT, Finance and HR. He previously worked for the NC Office of the State Auditor, and McGladrey & Pullen LLP.

Shirley McFadden is an Internal Auditor with the City of Raleigh. She previous worked for Wake County Public Schools and the NC Office of the State Auditor.

 

2015 May Training Session

When: May 6, 2015 - 1300-1630

Where: RTP HQ

Registration: Website

Cost:  

ISACA-RTC Members - Free (Log in to register)

Affiliated Organizations (IIA, ISSA, Othe ISACA Chapters) - $25

All Others: $40

CPEs: Upto 3

Handouts:  

Session I - Business Continuity Management: A Practitioner’s Perspective

Business Continuity is an ever evolving field, which continues to gain exposure and credibility with executives who manage risk and operations in various fields.  This session will take participants through the basic elements of a business continuity program and will also delve into more mature elements, including program certification.  Concepts such as business impact analysis, prioritizing criticality, and creating a resilient organization will be discussed.  The presenters welcome a highly interactive session, so bring your questions.

Speakers: 

Margaret Millett, MSc Business Continuity, MBCP, MBCI  

Margaret Millett is an Assistant Vice President at MetLife responsible for their Global Resiliency Program.  She has been actively involved in the business continuity field since 1994 and worked for financial services companies in Boston, Massachusetts and Dublin, Ireland. She spent six years working for an ecommerce company in California prior to moving to North Carolina in 2014. Margaret has held board levels positions with business continuity organizations, written publications and spoken at business continuity management conferences in North America, Europe, Asia and the Middle East.

In 2011, Margaret was awarded a Master of Science in Business Continuity from Norwich University in Northfield, Vermont with honors. She has been certified as a Member of the Business Continuity Institute (MBCI) and a Master Business Continuity Professional (MBCP). Affiliations include: The Business Continuity Institute (BCI), Continuity Insights (CI) Editorial Advisory Board, Business Continuity Professionals of the Carolinas (BCPC), DRI International and a member of the US Technical Advisory Group to ISO Technical Committee 292.

Kenneth S. Bradbury, CBCP

Kenneth Bradbury is a Director in the Enterprise Business Continuity group at Fidelity Investments.  EBC provides oversight and guidance of Fidelity’s business continuity program across all locations and business units. Ken’s group develops program standards and guidelines, manages recovery sites for critical functions and facilitates first line response to incidents which could impact business operations across Fidelity’s global locations.  The Fidelity BCM program is certified to ISO standard 22301 and EBC ensures business unit plans align to the standard.  

Ken is a 24 year veteran of Fidelity Investments, having worked in Corporate Security and Risk functions in Boston, New Hampshire and North Carolina.  He is a past board Chair of the Business Continuity Professionals of the Carolinas (BCPC) and a past Certification Commissioner for the Disaster Recovery Institute International (DRII).  

Ken holds a Bachelor of Arts degree from Norwich University and a Master of Science in Criminal Justice from Northeastern University.

New CPE Reporting System

A new means of collecting CPE hours online will be introduced that changes the way certification holders report CPE hours. Attached is an overview of the new system, which is being provided to give you a first-hand view of what it looks like and how it will work.

ISACA CPE Reporting System

CPE Policy Updates

The following clarifications and changes to the ISACA certification CPE policies have been made.   These modifications were approved by the Credentialing and Career Management Board and went into effect 1 January 2013.  They are universal and apply equally to all ISACA certifications.

  1. Reconsideration and Appeal: Individuals whose certification has been revoked due to noncompliance with the CPE policy and who later appeal for reinstatement may incur an additional reinstatement fee of US $50. This reinstatement fee is effective for those reinstated after 1 January 2013 (when the revocation had been outstanding more than 60 days) and is in addition to any back or current certification maintenance fees needed to bring the certified individual in compliance with the CPE policy.
  2. Calculating CPE Hours: CPEs can be reported in quarter hour increments. One CPE hour is earned for each fifty (50) minutes of active participation (excluding lunches and breaks) for qualifying ISACA and non-ISACA professional educational activities and meetings. CPE hours can be earned in quarter hour increments and can also be reported in quarter hours (rounded to the nearest quarter hour).
  3. Exam question development and review (no limit): For those serving on an ISACA committee/task force that is responsible for exam question review, evidence of actual hours for the formal item review process will be provided.
  4. Contributions to the profession (20-hour annual limit): CPE hours are earned for the actual number of hours contributed.

For complete details, please visit the updated CPE policies at:

-CISA:  www.isaca.org/cisacpepolicy

-CISM:  www.isaca.org/cismcpepolicy

-CGEIT:  www.isaca.org/cgeitcpepolicy

-CRISC:  www.isaca.org/crisccpepolicy

Should you have any questions on any of these changes, feel free to contact the ISACA Certification Department at This email address is being protected from spambots. You need JavaScript enabled to view it. or +1.847.660.5660

Research Opportunities

 ISACA is seeking volunteers for Developers and Reviewers for the following research projects:

  • Securing Mobile Devices
  • COBIT for Risk
  • COBIT for Assurance
  • COBIT:  Enabling Information

 Interested members may email This email address is being protected from spambots. You need JavaScript enabled to view it.

ISACA K. Wayne Snipes Award Honorable Mention

ISACA has recognized the Research Triangle Chapter with an honorable mention in our region for 2013. Honorable mentions are given to chapters who did not win the K. Wayne Snipes award, however, still excelled as a top chapter throughout the year.

Loading feeds...

Affordable Custom Logo Design