Join us for the ISACA Chicago Chapter Meeting - October 2023
Topic: Managing System Implementations and IT Risks Big and Small
[First Session Topic @3:00 PM]: Managing System Implementations
Brief Session Description:
We will provide an overview of key risks to consider when migrating from legacy applications or implementing entirely new IT systems.
Identify Key Risks associated with implementations
Recognize the need for internal audit integration in your project team
Assess if / how key risks are addressed within your current implementation efforts
Our guest speakers from Crowe for the first session are:
Bo Qiu is a Managing Director in Business and Technology Risk, with over 15 years of experience in implementation assessment. He is based in Chicago.
John Norton is a Senior Manager in Business and Technology Risk, with over 7 years of experience in implementation assessment, based in Indianapolis.
Drew Heffelfinger is a Business and Technology Risk Manager in Chicago with over 4 years of experience in implementation assessment.
[Second Session Topic @4:00 PM]: IT Risks Big and Small (Risk Insights from Chicago Startups and the Fortune 500)
Brief Session Description: Organizations and their approaches to risk management vary widely, including based on size. An IT Risk Professional walks attendees through differences and similarities in Risk Management at a few Chicago startups and a Fortune 100 company. Commonalities include Issues around ownership of risk ownership of mitigations and Prioritization of addressing risk findings. Socialization of risks, educating parties Differences: Speed of response (Nimble organizations compared to larger, less nimble corporations) Response (depending on the experience of management) Risk Appetites
Learning Objectives/Key Takeaways:
Participants will be able to:
Identify Commonalities with risk at large and small enterprises Consider differences in organizations of varying sizes
Apply strategies used by the presenter to get traction on risk management in their organization.
Our guest speaker for this session, Paul Krause is the Senior Manager of Services Trust and Assurance at HPE Aruba Networking, with an emphasis on driving compliance certification efforts for Aruba’s SaaS products. Before joining Aruba, Paul led the Risk, Compliance, and Privacy programs for two Chicago startups getting those organizations to be ISO 27001, SOC 2 Type 2, and FedRAMP compliant. Paul runs a lockpicking village at Chicago’s hacking conference, THOTCON. Paul also runs marathons.
2 CPE credits will be earned by participating in this webinar.
Note: ISACA Members are requested to register with the same email ID as that in your ISACA profile for direct CPE uploads.