2008 - 2009 sf isaca chapter

 

Conny Cheng
President - Conny Cheng, CISA, CFE, CPA

Conny is currently the first Vice President for the San Francisco ISACA Chapter. Previously she served as second Vice President, Director, Chapter Secretary, CISA Review Course coordinator, and on the 2006 Fall Conference Committee. Conny is a Senior Manager in Deloitte & Touche's San Francisco office Enterprise Risk Services Practice. An integrated audit professional, Conny has extensive experience in both financial audits and information technology audits. She currently specializes in COSO Internal Control Framework implementation, SAS 70 reviews, information technology internal audits, financial industry network security compliance for PIN and key management reviews. She has served prominent clients including Visa, Silicon Valley Bank Financial Group, Intel, Cisco, Calpine, Oracle and McKesson. Conny has earned a BS degree in Business Administration with concentration on accounting from Walter Haas School of Business, University of California, Berkeley. Conny is a CPA, CISA, CFE and CISSP.

Beverly Davis
1st Vice President - Vikram Panjwani, CISA, CISSP

Vikram Panjwani is currently Co-Chair for the CISA Review Course Committee. He is also a manager with the Systems and Process Assurance practice of PricewaterhouseCoopers at San Francisco. He is responsible for controls assurance in the financial services industry. Vikram has over six years of diverse experience on various cross-functional cross-industry assignments in the areas of BS 7799 security controls design, review and implementation, ERP Process Controls and Security reviews, Business Process Integration and Improvement, Functional reviews and procedures designing in both Finance and Operational areas, Operational Risk Assessment, Design and Documentation of business processes (manuals for procedures and MIS/reporting controls), Applications and Procedural Controls Review, Systems Studies, Operational Audits and Internal Audits. Vikram is a Chartered Accountant, CISA and a CISSP.

 
2nd Vice President - Steve Owyoung, CISA

Steve is currently the Communications Chair for the San Francisco ISACA Chapter. In 2007-2008, he also served on the Membership Survey and Nomination Committees. For the chapter’s 2008 Fall Conference, Steve is serving on the Speaker and Proctor Committees, and will be delivering a course in the Core Competencies track. Steve is a Manager in KPMG’s San Francisco IT Advisory practice. At KPMG, Steve has delivered IT audit services, such as audits of financial statements and internal control over financial reporting, and internal operational audits, as well as other IT advisory services, to large public companies. Before KPMG, Steve was a Business Systems Analyst at Delta Dental, and worked in systems development, including Quality Assurance, in previous experience. Steve received his undergraduate degree with College Honors and has a Master’s Degree in Information Systems, both from the University of San Francisco. Steve is a CISA.

 
Secretary - Al Lavassani

Al is currently a member of the Education Committee. He has volunteered on past Fall and other Conferences. Al is a CISA, CISM, PMP, and ITIL certified. Al is an IT Governance Manager at Wells Fargo Bank. Currently, he is working on a process improvement initiative in IT operation while staying aligned with both security compliance and Business goals. Prior to Wells, he was a consultant and he managed several projects for clients like Visa (Security implementation project), Genentech (PMO process improvement), Oracle (CobiT implementation), among others. Also, he ran his international trade company in Dubai throughout the 90s. Al holds a BA in Public Administration.

Sandy Lee
Treasurer - Sandy Lee, CPA, CISA, CIA, CMA

Tim Stapleton is currently a member of the Education Committee. He has worked on past Fall Conferences by organizing the volunteers and assembling conference materials. Tim is a CISA, and has also earned CCSA and ITIL Foundations certificates. Tim is a Risk Management Consultant with Wells Fargo Bank. Earlier at Wells, he was an auditor covering special business initiatives and emerging technologies. Prior to Wells, he worked at Bank of America (Y2K), Citibank (ATM and internet project management) and the Federal Reserve Bank of San Francisco (EDP Auditor). Tim holds a Masters degree in Accounting and a Bachelors degree in Philosophy.

 
Director - Heather Ouellette, CISA, CIPP

Heather Ouellette is currently a member of the Education Committee and has been a committee member since 2005. She has worked on past Fall Conferences by proctoring, recruiting student volunteer proctors and assembling conference materials. Prior to participating on the Education Committee, Heather was an officer in the ISACA club at San Francisco State for three semesters, including serving as the club President. She acted as a liaison between the professional chapter and student organization, organizing professional guest speakers, and encouraging students to pursue a career in IT Auditing and involvement in ISACA. Heather is an IT Advisory Associate in KPMG’s San Francisco office Information Protection Services Practice, focusing on Privacy. As an IT audit and advisory professional, Heather has experience in information technology audits, including SAS 70 testing and external financial audit support. She currently specializes in the performance of information privacy assessments against published standards, such as the AICPA GAPP (Generally Accepted Privacy Principles) and Safe Harbor Principles for multi-national corporations. She has experience in the areas of data mapping, performing detailed inventories of Personally Identifiable Information (PII), and reporting on data risk and impact assessments. Heather holds a Bachelors degree in Business Administration with concentrations in Accounting and Information Systems from San Francisco State University. She is a CISA and a CIPP (Certified Information Privacy Professional).

 
Director - Steve Shofner

Steve has been an ISACA member for twelve years, is currently a SF Fall Conference Co-Chairperson and the Speaker Coordinator Chairperson for the conference. Professionally, Steve is the IT Manager for the SOX PMO group at Kaiser Permanente. Previously, he was the IT Audit Manager for Williams-Sonoma’s Internal Audit Department, and he has ten years of experience with PricewaterhouseCoopers and Ernst & Young, primarily performing external audits and SAS 70 audits. One of his roles with Ernst & Young was the Pacific Northwest Education Coordinator for their IT Audit group. He also spent a rotation in their National practice as a contributor to the firm’s IT audit methodologies. Steve graduated with honors from the Haas School of Business at UC Berkeley, and has other degrees in business administration, math, and music.

 
Director - Mary Lee

Mary has been a key contributor to the SF ISACA chapter for several years. She is currently the Education Co-Chair and has served as a member of the Education Committee for the past five years. In addition she has been a member of the Fall Conference as a volunteer assisting with assembling conference materials, introducing class speakers and promoting the SF ISACA Membership during the Exhibitors Hall. Mary worked for Washington Mutual/Providian Financial as a Sr. IT Auditor for six years with experience in both Technical and Operational Audits. Before moving to her audit role, Mary held the titles Information Security Manager (Logical Access) and Help Desk Manager. Prior to Providian, Mary was the Data Center Supervisor for ROSS Stores.

 

 
Director - Debra Mallette, CISA, CGEIT

Debra is currently an SFISACA Board Member, serving on the election and membership committees as well as coordinator for the San Francisco Bay Area Local CobiT Development Group. She was on the ISACA and IT Governance Institute COBIT V4.0 & 4.1 Working Group and has contributed as a reviewer and author for Mappings to various Best Practice Standards. Her experience ranges across industries and organizations including: Kaiser Permanente, Motorola, Hewlett Packard, Sybase, Personal CAD Systems/Altium and NASA. Debra has a Masters in Business Administration and Bachelor’s Degree with Double Major – Computer Science and Mathematics from CSU Chico. Debra was recently awarded Certification in the Governance of Enterprise IT (CGEIT) by ISACA. She also is a CISA and a Certified Six Sigma Black Belt (Process Specialist) by the American Society of Quality.