Wednesday, May 22, 2019 at 8:30 AM EST
Thursday, May 23, 2019 at 4:30 PM EST

Add to Calendar 


Xavier Cintas Center 
1624 Herald Ave.
Cincinnati, OH 45207

Driving Directions 


Robert A. Meyer   robert_meyer@cinfin.com


Brandon Carey   brandon.carey@53.com


ISACA Greater Cincinnati Chapter - Spring Seminar 2019

The Greater Cincinnati ISACA Chapter is proud to present a two-day, 16 CPE seminar by  Mary G. Siero, CISP, CISM, CRISC, of MIS Training Institute (MISTI) on the topics; " "Comprehensive Review of Critical Cybersecurity Controls" and "Into the Cloud, Security, Audit and Compliance." on May 22-23 at  Xavier Cintas Center, 1624 Herald Ave. Cincinnati, OH 45207 

Course Focus:

Comprehensive Review of Critical Cybersecurity Controls - Day 1

This course provides a comprehensive review of the Critical Security Controls for Effective Cyber Defense issued by the Center for Internet Security. These controls developed and enhanced over the years by industry experts and the US military and other government entities represent a risk-based and prioritized approach to cyber security. The controls lay out the consensus from respected industry experts as to the best way to block known attacks and the recommended approaches to find and mitigate damages resulting from successful attacks. Additional focus areas of this course include the applicability of these controls to Internet of Things (IoT), mobile technologies and privacy. Security professionals will gain an in-depth understanding of how to implement these controls; CIOs, auditor and risk management executives will learn how to internalize these controls and assess their effectiveness in their organization. 

Learning Objectives:  

At the completion of this seminar attendees will

  1. Be able to incorporate critical security controls into their security program
  2. Be able to use the implementation of the critical security controls to lower organizational risk
  3. Be able to identify automated tools that can assist in implementing the controls

 What You Will Learn

  1. Overview of Critical Security Controls
  2. Common Attacks
  3. Relationships Between Critical Security Controls and IT Governance 
  4. Critical Security Controls Review
  5. Case Studies as Time Permits

Into the Cloud, Security, Audit and Compliance - Day 2

This seminar will provide attendees with a comprehensive review of cloud technologies, cloud security and considerations for auditing cloud-based systems. Attendees will learn about key vulnerabilities in cloud solutions and strategies for managing those risks.

The course covers the major domains identified in the guidance document from the Cloud Security Alliance (CSA) including the Cloud Control Matrix (CCM) and mapping of controls to other various security frameworks. In addition, it will include recommendations from the European Network and Information Security Agency (ENISA). 

Learning Objectives:

At the completion of this seminar attendees will be able to

  1. Identify security expectations for implementation of cloud-based solutions and fundamental cloud security principles and requirements
  2. Assess the overall level of security offered by cloud provider

 What You Will Learn

  1. Introduction to the Cloud 
  2. Top Threats to Cloud Computing
  3. Review of Cloud Controls Matrix
  4. Effectively managing security services in the cloud
  5. IT Governance for cloud computing, managing the risk
  6. Incident Response in the cloud
  7. Key considerations for auditing cloud-based systems

Who Should Attend  Operational, business application, IT and external auditors; audit managers and directors; information security professionals.

Instructor:     Mary G. Siero, CISP, CISM, CRISC, Senior Instructor for MIS Training Institute (MISTI)   

Mary G. Siero is Senior Instructor for MISTI. She is an executive level Information Technology Consultant and the President of Innovative IT, a leading North Carolina based information technology consulting firm that specializes in IT operational, compliance and security consulting.

Ms. Siero’s career includes ten years in healthcare as a Chief Information Officer and five years in the gaming industry as Vice President of IT Operations, both heavily regulated industries. She has over 40 years’ experience in engineering and technology from industries such as Healthcare, Government, Education, Gaming and Hospitality, Consumer Products, and Manufacturing.

Ms. Siero is active in the information system security community and has provided testimony on the record for the State of Nevada Information Technology Board regarding The Current and Future Cyber Threat. She routinely presents at national conferences on information technology topics; holds several professional IT security certifications including CISSP, CISM and CRISC; and is the author of Safeguarding Your Organizations Data: A Call to Action. She is a Charter Member of the FBI Citizen’s Academy Alumni Association in Las Vegas, , and is a member in good standing of the International Information Systems Security Certification Consortium (ISC)2, the Information Systems Security Association (ISSA), , the Information Systems Audit and Control Association (ISACA), and the North Carolina Technology Association She is a graduate of the University of Detroit with a Master’s Degree in Polymer Chemistry and a graduate of Michigan State University where she obtained her Bachelor’s Degree in Chemistry.


Those interested will be provided with an opportunity to socialize There will be a tour and flight tasting at Listermann Brewing Co. on  May 23, 2019 - at 5:00 PM EST. 

Listermann Brewing Company - 1621 Dana Ave. Cincinnati, OH. 45207