Dates: December 04, 2024 - December 06, 2024 (3 Days)
Time: 9 a.m. - 5 p.m. Central Time (1 Hour Break for Lunch)
Format: Online
CPE: 21 (3 Days)
ISACA Non-Member Pricing: $550 ( $50 Early Bird Discount! Register by November 22, 2024)
ISACA Member Pricing: $500 ( $50 Early Bird Discount! Register by November 22, 2024)
Format: Online Webinar
Registration Link:
https://www.eventbrite.com/e/2024-isaca-north-texas-fall-seminar-tickets-1084863418689?aff=oddtdtcreator
Course Overview:
Join us for an engaging 3-day seminar where you'll dive into the essentials of managing today’s toughest risks. Together, we’ll explore real-world challenges in cybersecurity, fraud prevention, third-party risk, and ethics, giving you hands-on skills and strategies you can use right away. You'll learn how to communicate effectively with leadership, build a culture of compliance, and strengthen governance across your organization. This seminar equips you with the expertise to elevate your risk management skills and make a lasting impact, empowering you to build resilience and achieve meaningful results in your organization.
Day 1
Cybersecurity – The latest view of the ever-changing risk landscape IT auditors face
(including AI) in helping our organizations strengthen our cybersecurity posture.
Course Agenda:
1) Foundational principles (and how we explain it to the board)
2) Human Attacks (phishing, business email compromises and lessons learned from actual cases)
3) Technical Attacks (lessons learned from real life cases)
4) Cybersecurity Frameworks, Standards, and Regulations Overview
5) Industry Cybersecurity Frameworks
6) Oversight, Governance, and Compliance (communicating to the board and senior leadership)
7) Cybersecurity policies
8) Security Risk Management Overview
9) Configuration Management and Change Control
10) Vulnerability and Patch Management
11) Cloud Security
12) Incident Response Planning
Day 2
Fraud Risk Assessment – the IT Auditor’s role in evaluating where there are opportunities in which fraud may occur and how to coordinate with other auditors to mitigate those risks. This will include case studies and hands-on application of risk
assessment tools used to break down the organizational silos.
Course Agenda:
1) How people commit fraud and get away with It
2) Elements of a Fraud Risk Assessment
3) Auditing high-risk areas
4) Effective practices for strong internal controls
Third-Party Risk Management – Understanding the IT Auditor’s role in evaluating and mitigating the risks associated with our third parties. We will share examples of policies and strategies used in IT Governance.
Agenda:
1) Understand concepts of contracts management and third-party risk management
2) Review of risks and risk mitigation over IT contracts
3) Discussion of effective practices for managing contracts
4) Overview of Information Systems Governance Policy and implementation practices
Day 3
Ethics and Auditing the Organizational Culture for IT Auditors – We, as IT auditors, see if more clearly than most. We see where there are inconsistencies with how issues such as access security are handled based on organizational stature. We will break down
the actionable steps to take in auditing these areas and helping enhance the culture of compliance.
Course Agenda:
1) Identify key drivers and frameworks that can help guide an audit of culture.
2) Identify and describe various means of assessing an organization in preparation for performing an audit of culture.
3) Identify and describe various organizational considerations that can impact and influence corporate culture.
4) Describe how to perform an audit of culture and lessons learned from these audits.
Effective Written and Verbal Communication Skills for IT Auditors – Let’s face it. We as IT auditors know our stuff and can talk about technical aspects backwards and forwards. But if we can’t communicate those issues in our written reports and in our verbal reports, our overall effectiveness is going to suffer. This interactive session will help IT auditors expand their comfort zone by learning and applying tools and skills to make them more effective communicators.
Course Agenda:
1) Actual feedback from executive leadership and board members about their internal auditors (especially their IT auditors) and what they wish every IT Auditor knew.
2) The Power Skills that every auditor should develop (if you want a seat at the table)
3) Written Communication Skills for Impact (examples of report formats that get management’s attention)
4) Verbal Communication Skills for Influence (the critical skills that everyone can work on to improve their credibility)
Instructor:
Rob Clark, Jr., CCEP, CIA, CBM, CVP, Chief Audit & Compliance Officer for Howard University, is a nationally recognized authority in internal audit, risk management, compliance, and cybersecurity with over 37 years of industry experience.
He is Past President of the Association of College and University Auditors (ACUA); was the very first recipient of the ACUA Member Excellence Award; recipient of the ACUA Professional Contributions Award. He is Past President of the Institute of Internal Auditors – Atlanta chapter and recipient of the William J. Mulcahy Award for Excellence in Leadership. He was the Security Task Force Risk Assessment Working Group Chair for EDUCAUSE creating an IT Risk Assessment model that is the industry standard. Rob is also listed in “Who’s Who in America” by the Marquis Who’s Who Publications Board 2023-2024.
He has served in Internal Audit and Compliance leadership at M.I.T., Georgia Tech, University of Nebraska, Clark Atlanta University, and now Howard University and has certifications as Certified Internal Auditor, Certified Compliance and Ethics Professional, and Certified Business Manager.
Rob is an international keynote speaker and President-Elect of the National Speakers Association – DC chapter. He’s a Certified Virtual Presenter through eSpeakers; a CTM through Toastmasters, performs stand-up comedy; and has been a wedding DJ and Master of Ceremonies for over 3 decades. His keynote speeches and workshops are NOT your typical “IT audit speak!”
Be prepared to be engaged, informed, and inspired!
Rob Clark, Jr. - https://www.youtube.com/watch?v=UNxagUg6GK4