Agenda:
10:30 - 11:20 am Session 1: Data Categorization and De-identification, James Arnold
11:20 - 12:20 pm Plate Lunch*
12:20 - 1:20 pm Session 2: Social Engineering – Why is it so successful? Jose Lineros
1:30 - 2:20 pm Session 3: Calibrating Against Risk Trends, Carmi Moser
* Email reservations@isaca-northtexas.org for meal substitutions
Session 1: Data Categorization and De-identification
Exercises in Data Categorization and approaches to Deidentification to promote accurate approaches to the reduction of risk.
Objectives:
- Explain Data Classification – approaches
- Determination of Regulatory Impacts – Select common regulations
- Deidentification – Masking, coarsening, Tokenization, etc.
James Arnold is a Privacy Engineering and Security expert with over 20 years in the field. He holds a Masters in International Public Policy. Certification include; CDPSE, CISA, CRISC, CFX-A, CTPRP, etc. He is proud to be serving as the VP of Certifications for the North Texas Chapter this year.
Session 2: Social Engineering – Why is it so successful?
The weakest link in any cybersecurity program is always people. No technical controls can control risk if individuals fail to protect systems and their associated processes. This presentation examines why humans are subject to social engineering attacks and how to deter these incidents through greater understanding.
Objectives:
- What kinds of social engineering attacks are successful?
- What causes inherently causes them?
- How can a greater self-awareness potentially thwart them?
Jose Lineros teaches information systems and IT Audit at the University of North Texas. He holds a BBA in Accounting, Masters in Telecommunications, and a PhD in Educational Psychology. He currently holds a CPA, CISA, CIA, CFE, CSX, and CRISC along with a designation as a Microsoft Certified Technology Specialist. He has published in the Journal of Emerging Technologies in Accounting, Community College Journal of Research & Practice, New Directions for Institutional Research, and the Global e-Learning Journal.
Session 3: Calibrating Against Risk Trends
An observation of common cyber risks trends seen in the financial regulatory industry field sharing effective practices.
Objectives:
• What are the most common incidents observed in the field?
• What are the most common cybersecurity domain weaknesses trends?
• What are the best practices against these risk trends?
Carmi Moser joined FINRA in 2020 as a Sr. Principal Risk Specialist with the team leading cybersecurity examinations providing cybersecurity consultations and training. Prior to joining FINRA, Carmi had twelve years of combined hands-on and management experience in the Information Technology and Cybersecurity domains working in roles responsible for Governance, Risk & Compliance, Security Operations and IT Operations. Her broad experience includes work at Kaseya, PyeongChang Winter Olympics, Virgin Hyperloop One and the Department of Energy’s cybersecurity operations center.