The ISACA Central Maryland Chapter invites you to our monthly training event on Thursday, October 13, 2022. ISACA Members, cyberaudit, assurance, Cybersecurity Nexus (CSX), risk management, governance, and internal control professionals and practitioners new to the field and those with years of experience will benefit from this event. The training event offers an opportunity to expand your network and build on your knowledge and skills. After registration, you will receive the Zoom registration email. See Zoom Instructions below for further information.
- This training earns up to 3 CPEs if attended for the duration.
- The Presentation slides will be sent to the email address you use to Register a day or two before this meeting.
Title: Software Composition Analysis for Managing Security and Licensing Risks
Speaker: Dr. Baljeet Malhotra
- Global and Enterprise Software Ecosystems
- Classification of Risks
- Software Composition Analysis (SCA)
- Interactive Workshop (try or watch Dr. M's session)
- Building a Risk Management Process
Software Composition Analysis (SCA) is used by developers to identify dependencies or components of applications, which may have been built using Open Source and/or proprietary libraries. SCA is essentially a form of Application Security Testing (AST) to find the underlying licensing issues and/or security vulnerabilities in applications.
There are several SCA/AST tools available in the Open Source markets like Github. As cloud took off in a big way, many of the enterprise applications started integrating various web based APIs to provide useful technical and business functionalities built by third parties. Unfortunately, Web APIs pose unique licensing and security risks that existing SCA/AST tools do not address.
In this workshop, we'll revisit Software Composition Analysis as a way to discover and manage security and licensing risks. With hands-on practical scenarios, we’ll build a Risk Management Process for conducting due diligence and mitigating various risks to help enterprises become more secure and legally compliant.
We promise you a high knowledge value session.
12:30 – 1:00 Registrants and speakers enter zoom meeting for networking time
1:00 - 4:00 Training with 5-minute breaks at the bottom of each hour
4:00 – 4:30 zoom will still be on for more possible networking chat window time
Earn 3 CPEs toward your CISM, CISA, or other certification (CPE credits are based on 50-minute increments)
Full-time Students $15.00
(*Members Price is for all ISACA, IIA, ISSA, AGA, and CFE members)
• Pay by credit card
Training Session 1:00 PM to 4:00 PM*
* A break will be offered in between training sessions
Zoom Registration Required: Once you have registered for this event in Cvent, you will receive a Cvent Confirmation email from Pat Hamilton. The subject line will be "Confirmation and Zoom Registration Link". Pat's email will include a confirmation of your Cvent registration, your payment, and the Zoom Registration Link with detailed instructions for Zoom pre-registration and day-of registration. The training slides will be sent via a separate email just prior to the Training. If you have difficulty on the day of the event you should first check your email boxes for the subject line mentioned previously. If you do not have the Zoom link or are having difficulty registering within Zoom, please contact Pat Hamilton at Arrangements@isaca-cmc.org.
Cancellation Notice: Please refer to the “Fees” page for our refund policy for this event. Full refunds will be given if registration is canceled prior to noon on Friday (October 7, 2022) before the meeting is held. Use either the link in your confirmation email or select “Already Registered” at the bottom of the meeting summary event page to access your registration (i.e., the email address used to register for the event and your confirmation number will be needed to access/modify/cancel your registration). If you need to cancel after that date, please contact Pat Hamilton via email at email@example.com as refunds will not be given, although attendance is transferable. Reservations made after this time will be accepted on a first-come, first-served basis, but cannot be guaranteed due to space limitations and may include a late fee. ISACA Central Maryland Chapter reserves the right to cancel this event if there is not sufficient participation. Participants will be notified in the event that the monthly meeting has been canceled and paid registrations will be refunded.