San Francisco ISACA Chapter presents a unique and relevant education event.

6 Hours of CPE Credit -  Seating is limited

 
REGISTER

SESSION TITLE

SCHEDULE

DESCRIPTION/SPEAKERS

End-user Security topics

9:00 a.m. - 10:30 a.m.

Speaker: Neal O'Farrell

Title: Send In The Clones - The Fact and Fiction of Identity Theft, and What The Difference Can Mean for Your Organization

Summary: As identity theft continues its reign as the Number 1 consumer complaint, separating the hype from the reality is essential for organizations that want to protect their employees and their customers, and in doing so, help to protect their own reputation. In this session, security expert Neal O'Farrell will highlight the difference between what consumers are hearing about identity theft and what they really need to know, and why saturation media coverage of the crime is a golden opportunity for any employer concerned about brand integrity and reputation.

Speaker Bio: Neal O’Farrell is the CEO of security training firm Hackademia Inc. and has been working in information security for more than twenty years. With a focus on user education and awareness, Neal has taught security to more than 3 million users in 120 countries, and was the first security expert to have his awareness programs endorsed by both the Department of Homeland Security and the United States Secret Service. Neal was the creator of the nation's first Cyber Security Day, on November 4th 2002, an event that attracted more than 1,200 businesses and more than two dozen experts from around the nation. In 2003 he launched Think Security First!, the nation's first community-based cyber security awareness initiative and a unique experiment in raising the security awareness of an entire city. As a result of his work the city of Walnut Creek California, the birthplace of PeopleSoft and CommerceOne, declared April of every year to be the city's Think Security First! month.

10:30 - 10:45 a.m. Break

10:45 - 12:15 a.m.

Speaker: Barak Engel, CISSP

Title: When things go wrong - Real examples of the results of losing your common sense online

Summary: Hackers. Spammers. Script Kiddies. Identity thieves.  With every online transaction, every piece of downloaded entertainment, every chat room visited, we put another little piece of ourselves out there for the taking. Horror stories abound in the general media. A student buys used Bank of Montreal computers only to discover confidential client information. Scam ring harvests information from unsuspecting Bank of America and Ebay customers by sending them fake emails and links to fake websites. Utilizing shocking, and sometimes humorous, real-life examples, we will outline common dangers lurking online. The presentation will include actual instances of things gone wrong, such as the details of an afternoon drive that resulted in a surprise visit to a financial institution's client database. Discussing these and other cases, the presenter will explain how to avoid becoming an example in one of his future presentations.

Speaker Bio: Barak Engel is the Principal of security consulting firm Engel & Associates, and has worked for over 15 years in the information security field. His experience includes creating the information security department at WebEx Communications, working with security-conscious fortune-500 corporations to develop a secure services environment. In his practice, Barak helps many organizations with security efforts, fulfilling roles such as the CSO at Loyalty Lab, a loyalty marketing solutions provider for the retail industry, and COO at Hackademia, a leading security training company, where he helped develop WorkForce, a unique platform for enterprise security awareness training. He serves on multiple advisory boards and leads the IT Security practice at Vela Global Ventures, a bay-area venture group. Barak has a particular interest in security awareness as an essential part of a successful security program; in 2003 he helped found Think Security First!, the nation's first community-based cyber security awareness initiative and a unique experiment in raising the security awareness of an entire city, and in 2004 he helped create the Center for Information Security in Walnut Creek.

12:15  - 1:15 p.m. - Lunch

Network/Application Security topics

1:15 - 2:45 p.m.

Speaker: Donald Hester, CISSP, CISA, MCT, MCSE, MCSA, MCDST, Security+, CTT+, HDM

Title: Windows Server 2003 security

Summary: Microsoft Windows Server 2003 has taken the market by storm.  What has changed under the hood and how can it be deployed securely?  Learn some tips and tricks on best practices for deployment.  Discover the security features in Microsoft Windows Server 2003 including security enhancements of service pack one for Windows Server 2003.

Speaker Bio: Instructor for Los Medanos College

San Diego City College

The @One Project of the CA State Chancellor’s Office

Information Systems & Security Trainer for Maze & Associates

Guest lecturer and speaker on security topics

Donald’s certifications include, Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), Microsoft Certified Trainer (MCT), Microsoft Certified Systems Engineer (MCSE), Microsoft Certified Systems Administrator (MCSA), Microsoft Certified Helpdesk Support Technician (MCDST), CompTIA Security+, and CompTIA CTT+.

Donald’s memberships include, American Society of Industrial Security (ASIS), Information Systems Audit and Control Association (ISACA), Computer Security Institute (CSI), American Management Association (AMA), Information Systems Security Association (ISSA), Think Security First!, the Marine Corps Association and the Marine Corps League.

Donald attended Communications and Electronic school in the U.S. Marine Corps. Graduated from Los Medanos College and is currently pursuing his MBA with a concentration in IT management from American Military University.

2:45 - 3:00 p.m. - Break

3:00 - 4:30 p.m.

Speaker: Brijen Joshi, CA, CISA from PWC

Brijen Joshi, CA and CISA, is a Senior Consultant with PricewaterhouseCoopers in their Enterprise Applications Control and Security (EACS) practice. He has implemented ERP - Oracle Applications for six years and has been auditing ERP systems for many years now. His practical experience on Oracle Application assignments, since 1998, includes implementation, audit, control and security assignments for companies in the USA and the Middle East.  Brijen has also has certifications from Oracle Education in Oracle Applications.

Brijen has also worked with Ernst & Young International and its member firm in India and United Arab Emirates as a Financial Auditor for more than 6 years. His experience includes the audits of Manufacturing, Financial, Construction and Hotel companies.

Currently, he is helping a major software company with the design and testing of Oracle application controls.

Title: Application (Oracle) Controls:

Applications Controls are the back bones of any IT control environment as they have a direct impact on the Business Transactions that run through the Applications. There are various Applications being used by organizations to perform business and process transactions, services and to flow money. The Application software could a fully integrated ERP (Enterprise Resource Planning) system or standalone applications like a payroll, inventory system or a billing system.

It is very important to have the Application Controls working as they are mainly preventative and before the event. The rules pertaining to the business processes are designed within the applications.

Oracle Applications is an ERP which has Financial, Manufacturing, CRM and HRMS suites (models). There are various controls within Applications that should be subject to audit like Configuration Controls (business rules), Segregation of Duties, Data Validation, Interface validations, Error resolutions, etc.

Learn how to configure and audit the controls within various business processes within Oracle Applications. Understand some of the best practices for change control procedures pertaining to Oracle Applications.

REGISTRATION
FEES

• $110 – Members of ISACA or IIA

• $135 – Non-members

• $75 – Students

NOTE:  If after submitting your reservation you determine that you need to cancel your reservation for any session, please do so at least 72 hours prior to the event by contacting the registration chairperson, Tim Sauer, at either: tim@landerint.com or (510) 232-4264 x24.

Please do not be a 'no show'.  Our Chapters are billed for reservations made with our facilities provider and we will have to pass the charges on to you.  Thanks for your cooperation!!!
      

LOCATION

 
Hotel Nikko
222 Mason Street (between Ellis and O’Farrell)
San Francisco, CA 94102
415-394-1111

RESERVE YOUR SEAT NOW!

Please reserve your seat at this event early.  Late registrations are accepted; however, meals and seating cannot be guaranteed if you do not reserve your space.

Submit Your Registration Now!

  
Please reserve your seat no later then the week prior to the event (meals cannot be guaranteed if you do not make your reservation prior to each event).   RESERVATIONS MADE AFTER THE FRIDAY PRIOR TO A EVENT CANNOT BE GUARANTEED!

You may reserve your seat for this event by submitting the following information: 

[Top]