When

Tuesday, June 11, 2019 from 8:00 AM to 5:00 PM EDT
Add to Calendar 

Where

Sheraton Framingham & Conference Center 
1657 Worcester Rd
Framingham, MA 01701
 

 
Driving Directions 

Contact

ISACA New England Events Team 
ISACA New England 
 
events19@isacane.org 
 

ISACA New England 2019 Annual General Meeting & IT Audit, Security and GRC Conference

 

Save the date - Tuesday, June 11th, 2019 and register for the best volunteer run conference on IT Audit, Security and GRC.

We expect to sell out. Plan to register early to reserve your spot. Press the "Register Now" button above to reach the page with the conference registration fees.

Help select conference topics by voting in this survey:  https://goo.gl/forms/3fZrbsHjsZtqUI0y2 

Topic descriptions and speaker bio's are available at: https://docs.google.com/spreadsheets/d/1WnsPVrlUQafmOSRriz6vSfyMf18sMzmzDTvTcZA1dmw/edit?usp=sharing

Recommend Topics and Speakers:  https://goo.gl/forms/filfzP7y3J75SMcb2

 

Draft Agenda:

Registration/Breakfast (7:30 - 8:00)
Opening and Morning Keynote (8:00-9:30)

Session 1 (9:40-10:30)
Session 2 (10:40-11:30)

Lunch Keynote and AGM event

Session 3 (1:10-2:00)
Session 4 (2:10-3:00)

Closing Keynote (3:10-4:00)

Cocktail Hour and Raffle (4:00-5:30)

CPEs: 7 CPEs granted for attendance
Plan to pick up your CPE from the registration desk at the end of the conference 
As CPEs are granted for attendance, we will not respond for requests for lost or unclaimed CPE forms

Potential Speakers: 

Speakers and topics recommended by February 15th:

Speaker Topic
Ciske van Oosten, Senior Manager Global Intelligence Division at the Security Assurance Consulting practice of Verizon The Top Nine Factors for Effective Data Protection Controls
Mardiros Merdinian, Sr. Information Security Officer How can Risk Professionals Use MITRE ATT&CK Matrix?
W. Jackson Schultz, Lead Information Security Analyst, Corporate Risk Management, Discover Financial Services Managing Third-Party Risk on the First Try: Painting the Whole Picture
Jason Clinton, CISA Wolf & Company, P.C. Third Party Assurance Reports - What to look for now
Adam R Cravedi, CISSP, CISA
Director of Business Operations
Compass IT Compliance
Business Resilience
Tracy Hall, MBCP
Senior Manager
Wolf & Company, P.C.
BCP/IRP Testing - What your BCP/IRP test should look like
Matthew Farrar, Senior Manager, Protiviti Cyber and Operational Resiliency
Matthew Levine, Associate Director, Protiviti Auditing the Cloud Environment
Laura Milewski, Director Commercial Sales, Security Engineered Machinery Securing Classified and Unclassified Data through Destruction
Alain Marcuse, Director, RSM US LLP The Third Wave: How emerging US and global privacy regulations will affect your company – and its audits
Bryan Cassidy, CISA, CISSP, CFE, CIPP-US Wolf & Company, P.C. Privacy Refresh - The GDPR Affect
Cal Slemp, Managing Director, Protiviti Assessing GDPR
Fouad Khalil, VP Head of Compliance, SecurityScorecard Point-in-time compliance does not cut it anymore!!
George Wrenn, CEO & Founder CyberSaint Security, MIT Cybersecurity Research Affiliate Implementing the NIST Cybersecurity Framework, a risk-based approach to compliance
Bhavna Sondhi, Senior Consultant, Coalfire Systems Software Security Framework
How to Design and Build a Standards-based Cybersecurity Program Cyber (Security, Resilience, Mitigation)
Panel Discussion on the NIST Framework Cyber (Security, Resilience, Mitigation)
Deidre Diamond, Founder and CEO, CyberSN and Brainbabe Acquiring and Retaining Talent
Deidre Diamond, Founder and CEO, CyberSN and Brainbabe Boston Cybersecurity Salaries and Compensation, What You Should Know
SEM is a 51 year old privately held company in Westborough, MA. Laura has over two decades of large account technology business development experience with targeted expertise in consultative sales. Laura focuses on solving the client’s business problem through a mutually beneficial solution, and is passionate about driving global business aligned to client strategy. Driving value and building relationships are core to her success. Laura's focus at SEM is with the top 10 IaaS technology companies. 
Alain Marcuse, Director, RSM US LLP The Third Wave: How emerging US and global privacy regulations will affect your company – and its audits Emerging data privacy regulations globally constitute a “third wave” of corporate risk that most companies don’t realize yet. Companies are now no longer just concerned with protecting their own crown jewels, within and beyond their corporate perimeter. They now have the obligation to protect the personal data of individuals they connect with in any way, including employees, prospects, vendors, and customers.  In this session, we will cover the latest updates to the emerging global trends in data privacy regulation, their impact on US company governance and audit, and provide practical guidance on the road ahead for data protection.  Alain serves as national lead for Data Privacy consulting services, supporting client teams with a wide range of compliance program matters for GDPR, CCPA, and other privacy regulations. He has led large-scale engagements to design and develop the security programs for some of the country’s largest corporations, developing cost-effective security program road maps that demonstrably improve the organization’s maturity. 

 

Kerry Anderson, CISA, CISM, CRISC,CGEIT, CISSP, ISSMP, ISSAP, CSSLP, CFE,
CCSK, MBA, MSCIS, MSIA, Director of Internal IT Audit, Akamai Technologies
Women in InfoSec - Why the Shortage and What Can be Done to Fix It
Kerry Anderson, CISA, CISM, CRISC,CGEIT, CISSP, ISSMP, ISSAP, CSSLP, CFE,
CCSK, MBA, MSCIS, MSIA, Director of Internal IT Audit, Akamai Technologies
Information Security Practitioner Gen 2.0
Brian Contos, CISO & VP Technology Innovation, Verodin Hackers, Hooligans, Heists, & History
Jeff Livingstone, VP Life Sciences and Healthcare, Unisys The Emerging Need for Heightened Cybersecurity in Healthcare - Current industry attempts to secure patients, processes, and provisions, from highly focesed cybersecurity threats.
Andrew Struthers-Kennedy, Managing Director, Protiviti Next Generation of Internal Audit
Tyler Lewis, Senior Manager, Protiviti Practices to Develop an Effective IA Data Analytics Function
Dorina Hamzo, VP, Chief Audit and Risk Officer, athenahealth Revive the risk practice: Case study
Jack Jones, Co-Founder & Chief Risk Scientist, RiskLens Why Should We Take Risk Measurement Seriously?
Patrick Sheehan or John Mumford Shifting the corporate mindset that Cyber Risk is a Business Risk
Michelle Drolet, CEO, Towerwall, Inc. Catch That Phish! How to avoid the Phishing net.
TBD CIS Top 20 - Best Practices for implementation
Thomas Sanglier, Senior Director-Internal Audit, Raytheon Company Disruptive Technologies
Chris Wetmore, Partner, RSM US LLP and Matt Healy, Director, RSM US LLP Auditing RPA
Carl Hatfield, Managing Director, Protiviti Digital Transformation
Carl Hatfield, Managing Director, Protiviti What is Machine Learning and Approaches to Audit
Victor D'Angelo, System Development Review Manager, Liberty Mutual

Peter Sword, IT Audit Specialist, Liberty Mutual

How IT Audit can add value Reviewing, Interpreting, and Relying on Automated Testing in an Agile System Development Life Cycle

 

LLP The Third Wave: How emerging US and global privacy regulations will affect your company – and its audits Emerging data privacy regulations globally constitute a “third wave” of corporate risk that most companies don’t realize yet. Companies are now no longer just concerned with protecting their own crown jewels, within and beyond their corporate perimeter. They now have the obligation to protect the personal data of individuals they connect with in any way, including employees, prospects, vendors, and customers.  In this session, we will cover the latest updates to the emerging global trends in data privacy regulation, their impact on US company governance and audit, and provide practical guidance on the road ahead for data protection.  Alain serves as national lead for Data Privacy consulting services, supporting client teams with a wide range of compliance program matters for GDPR, CCPA, and other privacy regulations. He has led large-scale engagements to design and develop the security programs for some of the country’s largest corporations, developing cost-effective security program road maps that demonstrably improve the organization’s maturity. 
 

Platinum Sponsor

 

 

Gold Sponsors

Image result for ssh company