If the handout download links from within past event articles are broken, please navigate to Chapter->Downloads to obtain the document.

2011 December - Latest Trends in Information Security & Vulnerability Management

The Board of Directors of the ISACA Research Triangle Chapter is proud to announce the December 7, 2011 training session.

Dates: December 7, 2012 1:00 p.m. to 4:00 p.m.

Material: December 7 Session Handout

Registration: Through our website

Location: RTI Building 08 Multipurpose Room, RTI International

Fees:

ISACA Member - $0
ISACA Partners(IIA, ISSA, Infragard etc.,) - $25
Non-Members - $40

CPEs: Upto 3

Session Synopsis

Senior members of Ernst & Young's IT Risk Advisory practice will be presenting on several emerging trends in Information Security: The Ernst & Young Global Information Security Survey (GISS) is one of   the longest running, most recognized and respected annual surveys of its   kind. The 2011 GISS contains input from nearly 1,700 information   security and IT leaders in 52 countries across all industry sectors. The EY team will discuss the results and trends from the 2011 survey.
Software Asset Management - In the global push for improved performance, effective Software Asset Management can make a
significantly positive impact by helping to reduce license-related expenses, better manage compliance-related risk, and even improve   overall operating efficiencies. The EY team will demonstrate why leading   IT directors and CIOs are realizing that effectively managing software assets can be a strategic advantage.
Threat and Vulnerability Managementis the sustainable processes for   an organization to identify, detect, react and respond to the information security threats and vulnerabilities that may pose risk to your organization. Through an unparalleled team of highly trained testers, EY's global Advanced Security Centers (ASCs) provide ongoing technical assessments to ensure the organizations applications, infrastructure and people are protected from cyber-security threats.  A senior leader from the ASC will share information  about the latest trends in attacks and vulnerability management.

Speakers:

Bob Scalise, Sr. Manager, Advisory Services, Ernst & Young LLP

Sean Adee, Sr. Manager, IT Advisory Services, Ernts & Young LLP

Jeff Carter, Sr. Manager, Advanced Security Center, Ernst & Young LLP

 

Bob Scalise is a Senior Manager in the Advisory Services practice of Ernst & Young LLP. He currently leads the firm's Information Security practice for the Southeast. He is a technology and risk management executive with 17 years experience in advising, building and leading IT, Risk and Security functions. Bob has served in various IT and Security leadership roles, helping organizations grow and sustain effective Information Security, Identity & Access Management, IT Operations, Customer Service, and Platform Architecture capabilities. He combines a controls-focused background as a CPA with years of real-world IT and Security experience to help clients maximize their existing investments in enterprise security technologies and processes.

Prior to re-joining Ernst & Young in 2011, Bob spent 10 years as Chief Information Security Officer at Scientific-Atlanta, where he built the company's first worldwide information security team and delivered Governance, Risk and Compliance solutions for this global technology manufacturer. Bob has also been a self-employed information risk advisor, helping over 20 companies maximize their investments in enterprise security technologies.

Bob works with clients across many industry sectors including technology, media and entertainment, public sector, telecommunications and manufacturing. He advises on information security governance, technology compliance, IAM, disaster recovery, IT risk mitigation strategy, privacy, internal controls and IT GRC.

Sean Adee is a Senior Manager in Ernst & Young's IT Advisory Services practice. He has more than 20 years of experience in information technology, financial operations management, and audit. He serves clients in the areas of IT effectiveness, IT Asset Management, IT Strategy, IT cost reduction and program management. Most recently, Sean has been working with clients in the development and implementation of global IT asset management programs and initiatives.

His career began at Harris Corporation in the IT operations and program management arena where he led several systems initiatives including the evaluation and selection of ERP systems, IT cost reduction initiatives and data center consolidations.

He then joined Arthur Andersen as a manager, focusing on IT advisory and risk management services. Sean also worked at Dell Computer where he led the IT risk management function focusing operational risk mitigation, IT Governance, software licensing management and large scale systems implementation initiatives. Prior to joining Ernst & Young, Sean also led the finance, IT and administrative functions for GT Software, an Atlanta-based enterprise software company.

Sean holds a B.A. in economics from Mercer University and an M.S. in finance from Georgia State University. Sean is a CISA (Certified Information Systems Auditor).

Jeff Carter is a Senior Manager in the Ernst & Young's Advanced Security Center, responsible for managing and participating in numerous engagements covering all of the ASC service lines. Prior to becoming a senior manager
in the ASC, Jeff worked as a manager and lead tester for several years as well as managed and implemented the initial roll-out of the ASC lab infrastructure. Jeff has over a decade of computer security experience. His main areas of focus are internet, intranet and wireless penetration testing as well as black box application assessments and social engineering. He is also experienced in incident response and computer forensics.

Jeff holds a B.A. in Computer Science from Bowling Green State University, and he is a CISSP (Certified Information Systems Security Professional).