The ISACA Central Maryland Chapter invite you to our monthly training event on Wednesday, January 28, 2026. ISACA Members, AGA Members, cyberaudit, assurance, Cybersecurity Nexus (CSX), risk management, governance, and internal control professionals and practitioners new to the field and those with years of experience will benefit from this event. The training event offers an opportunity to expand your network and build onto your knowledge and skills.
After registration, you will receive the Registration Confirmation e-mail which will also include the Attendee Hub session link to connect to the training session on the day of training.
Note: This training earns up to 7 CPEs if attended for duration.
Speakers: G. Mark Hardy
Topics:
How to Defend Against an Insider Threat
We'll discuss how spies are recruited, how individuals are turned, and what makes them vulnerable to being turned. The best defense is to know your people, understand who's at risk, and the types of programs that you can put into place to stop insider threats.
Mastering Vulnerability Management
Vulnerability management is more than mere patching; it includes identification, classification, prioritization, remediation, and mitigation of software vulnerabilities. We'll examine the concept of a strategic vulnerability management program, and how to protect and patch effectively.
Creating Zero Trust with Allowlisting and Ringfencing
We'll look at the evolution of Zero Trust, starting with early anti-virus, the advent of endpoint detection and response (EDR), and examine the latest advances including allowlisting and ring fencing
Shut the AI Up -- Preventing AI from Disclosing Data
Have you rolled out Microsoft 365 Copilot yet? Are you aware of the significant oversharing risks that can be mitigated with the right strategies. Establish 'need to know' principles and knowledge segmentation to avoid becoming the 'department of no' and start being the 'department of know.'
How to Build a Successful Cybersecurity Startup
One of the better books I've read this year is 'Cyber for Builders: The Essential Guide to Building a Cybersecurity Startup' by Ross Haleliuk. I'll review several of his concepts, including valuable insights into starting a cybersecurity company, and the importance of understanding market needs, customer engagement, and trust in the industry, as well as the role of angel investors.
A History of Data Loss Prevention
Data Loss Prevention (DLP) has come a long way since early methods like 'dirty word lists' we used in the military to try to prevent inadvertent classified disclosures, to advanced AI and machine learning models of today. We'll discover how DLP technologies have developed to safeguard sensitive information and provide an overview of modern tools like Microsoft Purview that can help manage and classify data effectively.
Model Context Protocol -- The Master Key to AI Enablement
Can you explain to a non-technical executive what MCP is? Model Context Protocol (MCP) was launched by Anthropic in November 2024 and is designed to standardize how AI systems interact with external data sources and applications. We'll look at how MCP differs from traditional APIs, its implications for security, and the steps you need to take to prepare for its adoption.
Agenda
7:30 – 8:30 - Registrants and speakers enter the attendee hub to join the meeting for networking time.
8:30 - 10:00 - Presentation
10:00 - 10:20 - Break
10:20 - 12:00 - Presentation
12:00 - 1:00 - Lunch
1:00 - 2:00 - Presentation
2:00 - 2:20 - Break
2:20 - 4:00 - Presentation
4:00 - 4:15 - Networking & Q&A
Earn 7 CPEs toward your CISM, CISA, or other certification (CPE credits are based on 50-minute increments)
Price:
Members $100.00
Non-Members $150.00
Retirees $75.00
Full-time Students $75.00
(*Members Price is for all ISACA, IIA, ISSA, AGA, and CFE members)
Payment options:
• Pay by credit card
Times:
Training Session 8:30 AM PM to 4:00 PM*
* A break will be offered in between training sessions
Cancellation Notice: Please refer to the “Fees” page for our refund policy. Full refunds are available for cancellations made before noon on (January, 27, 2026). To modify or cancel your registration, use the link in your confirmation email or select “Already Registered” at the bottom of the event page. You’ll need your registration email and confirmation number.
If you must cancel after the deadline due to an emergency, contact us at arrangements@isaca-cmc.org prior to the start of the meeting. A credit may be applied toward your next ISACA-CMC training.
ISACA Central Maryland Chapter reserves the right to cancel the event due to low participation. In such cases, registrants will be notified and receive a full refund.