Here is a recap of our recent events:
Threat Informed Defense
In our chapter meeting held 2/27/2025, on the campus of Nashville State Community College, Caleb Chitwood, AVP, Cyber Security Operations, HCA Healthcare discussed the source and nature of cybersecurity threats and the importance of knowing threat vectors.
The Ecosystem of IT/OT Convergence
In our chapter meeting held on 1/23/2025, at Vaco, the ISACA Middle Tennessee President, Stacy Mill, discussed the challenges of environments that bring together operational technology and information technology
5th Annual Holiday Breakfast
On 12/3/2025, we hosted our 5th annual Holiday Breakfast in order to give thanks and share some time with the members of the Middle Tennessee Chapter Members. Members were able to enjoy a buffet-style breakfast at Mere Bulles.
AI-Powered Cyber Risk Management for Auditors
In our chapter meeting held on 11/21/2024, at CGI, Elizabeth Stephens equipped audit and security professionals with practical strategies to leverage AI for proactive cyber risk mitigation.
The Auditor's Role in Emerging Technology & Cybersecurity Risks
In our chapter meeting held on 10/24/2024, at the Nashville City Club, Chris Zotti, and Jessie Sandell of Frazier & Deeter talked though important lessons learned from the past year including emerging threat vectors and the effectiveness of IT Audit strategies in evaluating and mitigating organizational risk.
Implementing Effective Business Continuity Strategies
In our virtual chapter meeting held on 9/26/2024, our very own Programs Director, Russ Haskett, demonstrated how to effectively implement a business continuity plan by focusing on the development of a robust incident response plan.
AI-Enhanced Futures: Emerging Trends/Strategies in Data Security
In our 8/22/2024 chapter meeting held at the Nashville Entrepreneur Center, Abhinav Singh, Head of Security at Normalyze, discussed how AI is both a powerful ally and a potential concern in the realm of data security.
PCI DSS 4.0 training with LBMC
On 7/31/2024, Andy Kerr, from LBMC, provided an in-depth assessment of the new PCI-DSS 4.0 updates in a half day, in-person seminar at LBMC.
API Security and Legal Risk Management for Enterprises
In our virtual chapter meeting held on 7/25/2024, Dr Baljeet Malhotra of TeejLab, discussed API security and risk management with our chapter members.
Data Privacy
In our chapter meeting held on 6/27/2024, Dennis McGough, Manager of Cyber Security Consulting at LBMC, discussed strategies and guidance for building and expanding a Data Privacy program.
2024 ISACA Middle Tennessee Annual Meeting
The AGM was held at one of our favorite local restaurants, Maggiano's on 5/16/2024. We kicked-off the meeting remembering Frank Platt, a powerhouse contributor to the technology community here in Nashville. We heard from Julia Kanouse, ISACA Global Chief Membership Officer, on what is coming for ISACA. Current board members discussed the past year, and the new board for the 2024-2025 term was introduced.
How to Incorporate Visualizations in Your Audit Committee Reports
In our chapter meeting held on 4/25/2024, Trent Russell walked through examples of how data visualization can be used to aid in various kinds of reporting and dashboarding scenarios as well as pointed out faux pas in the world of data analytics.
The Promise & Peril of the AI Revolution: Managing Risk
In our chapter meeting held on 3/28/2024, our very own, Frank Platt, discussed the positives and negatives that artificial intelligence introduces into the risk management landscape.
Biometric Curiosities: Navigating Risks and Rewards in MFA
In our chapter meeting held on 2/22/2024, Megan Epperson explored the advantages of biometrics and how it is useful in defense against unauthorized access, but also identified the risks to privacy biometrics could introduce.
Malware Teardown: Threats Against Data vs. Threats Against Computing Power
In our first chapter meeting of the year on 1/25/2024, Marc Messer walked us through how malware is reverse engineered and how it can be broken down and analyzed.
4th Annual Holiday Breakfast
On 12/5/2023, we hosted our 4th annual Holiday Breakfast in order to give thanks and share some time with the members of the Middle Tennessee Chapter Members. Members were able to take a professional headshot and enjoy a buffet-style breakfast at Mere Bulles.
Crisis Communications: Cybersecurity & Artificial Intelligence
In this joint meeting with the Association of Continuity Professionals, Erin Butler with AlertMedia spoke about the rise of Ai and cybersecurity threats, and how we can best communicate during times of crisis to keep our business and employees apprised and safe.
End the Questionnaires - Simplifying the Healthcare TPRM Assessment Process
In this chapter meeting held on 10/26/2023, Matthew Webb, HealthTrust’s Chief Product Security Officer, discussed strategies on simplifying third party risk management assessments.
Audit & Control of Enterprise AI: Maximizing Gains, Minimizing Risks
In this training held on 10/5/2023, Allan Cytryn, Principal with Risk Masters International, held a seminar on how Artificial Intelligence is introducing transformational changes across all aspects of our society.
Auditing Business Continuity Management & Resilience
In this training held on 10/4/2023, Steven Ross, Executive Principal of Risk Masters International, held a seminar combining lecture with a hands-on, case-study based workshop that introduced I.T. Auditors and Information Security Professionals to methods for ensuring that Business Continuity Management (BCM) and Resilience programs meet their objectives.
The Duty of Care Risk Analysis
In this chapter meeting held on 8/24/2023, Viviana Wesley – a career QSA and expert witness in data breach cases – used legal cases and popular films to demonstrate what regulators and litigators look for as evidence of due care or negligence after a data breach. Audience members learned how to make sure their company is uninteresting to lawyers when their data breach occurs.
The Use of AI Tools & Prompt Generation for Cyber Criminals, Cybersecurity & GRC Programs
In this chapter meeting held on 6/29/2023, Chelsea Smith led the discussion on the rapid advancement of artificial intelligence (AI) technology and how it has revolutionized the cybersecurity landscape, presenting both opportunities and challenges. She explored AI tools and prompt generation in the context of cyber criminals, cybersecurity practices, governance, risk, and compliance (GRC) program.
2023 Annual General Meeting
Once again the AGM was held at one of our favorite local restaurants. 5/18/23 Maggianos hosted our AGM for the third year in a row and we packed out the banquet room. Board members discussed the past year and we introduced the new board for the 2023-2024 term.
Changing Landscape of Cybersecurity
In this chapter meeting held 5/3/23, Tim and Skeet from Pillar Technology Partners, explored factors contributing to the changing landscape, and discuss expectations from technology and persistent attacks to market and mindset shifts.
Virtual Machine Backups: RTO & RPO Considerations
In this chapter meeting held 4/11/23, Joe Webb owner of Sero Group, discussed eight important questions that you should ask before adopting the VM snapshots approach to backing up key SQL Server resources.
CISA Exam Review Course
Don Baham led a 4 day online CISA review course. Attendees were provided with a digital copy of the CISA Exam Manual.
Discover the Cloud Security Controls you Already Own
In this chapter meeting held on 3/22/23 our chapter Vice President, Don Baham, dove into Microsoft 365 licensing options and features, the methodology of using the CIS Benchmark and a customized best practice assessment to strengthen the security of your M365 environment.
Building an API Risk Management Program for Enterprises
In this workshop on 1/27/2023, our chapter had the opportunity to learn about API Risk Management from Dr. Baljeet Malhotra, who explored different risks that originate from enterprise API ecosystems and offered an overview for an API governance framework that addresses major significant risks that come with API use.