2024 March Training Session
When: March 06, 2024 - 1300-1630
Where: In Persion at the Paramount Venue and Online
Registration: Zoom Registration Link [Use this even if you are planning on attending in person]
CPEs: Upto 3
Handouts: Will Be Uploaded When available
Session I Orchestrating Security Policies: a CISO and an Auditor Discussion
A CISO and an auditor discuss what a well-formed policy should look like. How is it structured? How is it best used by the organization? How to ensure it won't become an audit nightmare--for the auditor or the organization?
Speakers: John Fehan
John is a Principal with CREO, Inc., a management consulting firm serving life science and healthcare clients. John specializes in matters of privacy, cybersecurity, and IT infrastructure. John’s experience ranges from hands-on technical positions across multiple disciplines to leadership roles on global technology programs. He has deep knowledge and firsthand experience in a wide variety of areas, including as an information security officer, risk management, project management, IT infrastructure, global telecom services, cloud architectures, and contract management. John has worked with telecom service providers leading global telecom outsource contracts. He has served as technical architect for consumer-packaged goods and financial services firms. Early in his career, John worked as a network engineer earning his CCIE and served in the U.S. Army. John earned his Bachelor of Science in Electrical Engineering from Duke University, and he holds a Certified Information Systems Manager (CISM) certification.
Speaker: Sasha Bottolfson
Session II Security Policy in Practice: Implementation and Automation
Larry Stewart will share his experience and insights into policy effectiveness through the definitions of policy control points and automated monitoring. Through examples, he will highlight choices available, specific controls, and the benefits automation may offer.
Speaker: Larry Stewart