When: June 5 | 2018 Attend
In today’s world, implementing an effective GRC program is critical for every organization striving to secure the enterprise in an era of increasingly frequent and complex cyber threats. However, getting budget approval, organization buy-in and executing on a successful implementation can be daunting tasks to take on.
Join our panel of experts on this CPE accredited webinar to discover some of the best practices for GRC Implementation and Enterprise Security in 2018.
Qualifying participants will earn 1 CPE credit.
• Find out how to influence the correct stakeholders to successfully implement GRC at your organization.
• Learn basic security fundamentals to reduce the attack surface and secure the lines of defense.
• Discover strategies to mitigate threats and manage Reputational Risk.
NASBA CPE Information
Register for this session via the console below. In order to be awarded the full credits, you must be respond to three out of the four polling questions asked during the program, and attend the session for a minimum of 45 minutes.
Qualifying participants will earn 1.0 CPE credit
Field of Study: Information Technology
Prerequisites: Basic knowledge of internet security issues within enterprise and the financial industry.
Who Should Attend: This session is suitable for executives, managers and key staff in all GRC and Information Security roles (including risk, audit, compliance, ethics, legal, performance, IT, Data Secrity, Cyber Security etc…). Members of technology providers and professional service firms will also benefit from understanding the issues and approaches covered on this session.
Program Level: Overview
Delivery Method: Group Internet Based. This is a group live event for NASBA authorized continuing education credit. Qualifying attendees will receive a certificate of completion of this event indicating 1 hour of CPE.
Executive IT Forums, Inc, is registered with the National Association of State Boards of Accountancy (NASBA) as a sponsor of continuing professional education on the National Registry of CPE Sponsors. State boards of accountancy have the final authority on the acceptance of individual courses for CPE credit. Complaints regarding registered sponsors may be submitted to the National Registry of CPE Sponsors through its website: www.nasbaregistry.org.
Kelley Vick. Director of Programs for Executive IT Forums, Inc. Kelley has over 15 years of experience and is a regular host for the IT GRC Forum program. She is a professional writer and freelance journalist based in Brooklyn, New York. Kelley is an expert in program development and in addition to her work at Executive IT Forums she has worked as a producer and writer for national news networks, published articles in leading magazines, and is frequently featured as a case expert on television (You may have seen her recently on Snapped). Originally from Georgia, Kelley received her BBA in International Business from the University of Georgia, then earned a Master’s degree from the Medill School of Journalism at Northwestern University. Kelley’s education and work has taken her to more than 30 countries and given her the opportunity to live and work in dynamic cities around the globe. These adventures have given Kelley a unique perspective as well as a natural flair for effective communication.
Colin Whittaker, PCI Industry Alumni, Founder and Director Informed Risk Decisions Ltd. Colin has been instrumental in driving forward a risk and security strategy for payments over the last 15 years since he retired from the military in 2001, and took up the role of Head of Security at APACS. At APACS he started the move to confront the reality of the threat to payment systems and the implications this has on any risk and security decisions taken. He was instrumental in helping the industry coordinate the response to the wave of e-banking attacks that started in 2004, and the development of a card based customer authentication strategy to protect e-banking channels. Whilst there he was one of the first people to be elected to the PCI SSC Board of Advisors where he was always keen to try and promote the differences in threat between Europe and UK, and the US. Since that election he hasn't moved far from the PCI domain. In 2010 he moved to Visa Europe and became the Vice President Payment System Risk with responsibilities for designing and operating the Visa Europe PCI compliance strategy for European merchants and service providers. This included contributing to the strategic development of the Council through representing Visa Europe at the PCI SSC's Executive Committee, as well as the technical development of the standards. He was also responsible for coordinating Visa Europe's approach to cardholder data breaches in Europe. Colin was responsible for the changes to the Visa Europe Compliance strategy through the creation of the Technology Innovation Programme which gave the very first PCI DSS compliance relief for EMV chip accepting merchants. He has now built on this experience by learning first-hand what PCI DSS means to merchants through his experience at Carlson Wagonlit Travel. Applying PCI DSS to probably one of the most complex industry verticals and one where it is almost impossible to spend money as a customer without using credit cards! He is now working as a freelance consultant helping retailers and service providers solve their cyber security and payment security compliance dilemmas.
Cameron Jackson (MBA, CISA) is Senior Director, Market Strategy and Development at Riskonnect, Inc. He has served a range of Fortune 1000 companies and the Big 4 in the field of integrated risk management (IRM) for over 15 years. His experience traverses compliance, internal audit and external audit. He is an expert in navigating integrated risk management across each line of defense. During his career, Cameron has advised CFO, CIO and CCO leadership teams on managing complex Financial and IT risk. He is a pragmatic thought leader in IRM and an advocate of companies shifting to agile digital risk management platforms and replacing burdensome IRM platforms to transform capabilities to meet stakeholder’s interest and build more resilient enterprises. Cameron holds an undergraduate degree in Accounting and MBA from the University of Portland, where he also serves on the Advisory Board for the Robert B. Pamplin School of Business. Further, he served as an advisor to a leading Silicon Valley eGRC start-up during a high growth phase working with some of the valley’s leading brands. Cameron continues deploy his unique experiences through various forums, most recently through Compliance Week conferences, workshops, and publications.
Viktor Culjak, Manager, Data-Driven GRC at ACL, directs and oversees the enablement teams of ACL’s Customer Success Organization and is responsible for driving the adoption and enablement of ACL GRC. He directs on-time, quality delivery of adoption milestones and is held accountable for adoption economics and mitigating adoption risks. He has over 10 years of big four audit and risk advisory experience in addition to industry experience. Viktor’s public practice experience includes the performance of financial statement and co-sourced internal audits, General IT Control reviews, risk and control reviews and performing Service Organization Control (SOC) audits. In industry, Viktor headed up the Risk and Controls group at a Canadian publicly listed company and oversaw the annual NI52-109 (Canadian SOX or “CSOX” equivalent) certification process, internal audit and Enterprise Risk Management (ERM) programs.
Nick Hayes, Senior Analyst Serving Security & Risk Professionals. Nick’s research focuses on the intersection of security, risk, and reputation in today’s digital world. He helps Security & Risk Professionals improve the way they monitor digital channels to safeguard brand assets and mitigate risks, such as impersonations, account takeovers, data leakage, social engineering, and other issues that compromise the business. Nick also specializes in social media security and compliance, as well as risk analytics, cyberinsurance, and the human elements of cybersecurity. Nick’s research and commentary has been cited in major media outlets, including CFO Magazine, CNBC, DarkReading, Financial Times, SC Magazine, and VentureBeat. He’s also a frequent and sought after speaker at leading industry and technology conferences.
James Maude is the lead security engineer at Avecto, a global leader in endpoint privilege management. He has a broad remit in security research, conducting in-depth analysis of malware and cyber threats to identify attack vectors and trends in the evolving security landscape. His background in forensic computing and active involvement in the security research community makes him an expert voice on cyber security. James regularly presents at international events and hosts webinars to discuss threats and defense strategies.