The St. Louis ISACA Chapter is proud to host an in person Breakfast and Learning Event with our partners and fellow ISACA members RubinBrown. The exciting discussion will be headlined by experts from RubinBrown on one of the most significant incidents of recent memory - CrowdStrike 2024.
Topic:
The Crowdstrike Incident of 2024 was unique in that it wasn't as much a supply chain attack but a critical vendor failure for corporations and system administrators on a global scale. In a world where patching has become such a major part of IT Governance and Security, how do you reasonably work testing of Security Vendor Changes into your current patch management process? Where does management of third party risk fit into change management programs - especially programs that reside within Ring 0 of an OS. As practitioners of Governance and Risk, how do we deal with these unknowns in the wake of an incident of this magnitude?
Specific topics will include:
- In light of the CrowdStike incident, what steps should organizations be taking to practice or prepare for future strikes or failures as part of their risk management practices?
- How do we balance fast patching of 0 day vulnerabilities with testing of third party security patches?
- How do contracts with mega-vendors like CrowdStrike address these failures and the damage they can cause?
- Is there a way to balance visibility into the vendor’s process while maintaining needed operational security?
- How do these risks affect fourth-party connections- is there visibility into who critical third party partners are using as security vendors?
Cost:
FREE for ISACA St. Louis Chapter Members (This is a Members Only Event)
CPE:
CPE Credit: 1.0
Field of Study: Information Technology
Delivery Method: Group Live
Prerequisites: None
Program Level: Basic
Advance Preparation: None
Price: No Fee
In order to be awarded the full credits, you must be present for 50 minutes of each credit hour and fully complete all sign in/sign out materials at Group Live events.
RubinBrown is registered with the National Association of State Boards of Accountancy (NASBA) as a sponsor of continuing professional education on the National Registry of CPE Sponsors. State boards of accountancy have final authority on the acceptance of individual courses for CPE credit. Complaints regarding registered sponsors may be submitted to the National Registry of CPE Sponsors through its website: www.nasbaregistry.org.
Location:
This event will be in person at the RubinBrown Offices in Clayton. Specific parking and logistics details will be provided to registrants ahead of time.
Breakfast:
ISACA St. Louis will provide a light breakfast and coffee.