MEETINGS

Next Meeting
Thursday, August 28, 2008
11:30-1:30p

Topic:
IT Governance, Risk and Compliance (GRC) – A Strategic Priority

Location:
Vortex Data Systems
7480 Mission Valley Road

Cost:
Free (lunch included)

Meeting Overview
 
As the information technology risk landscape continues to grow and evolve, the key functions of information security organizations – risk management, business enablement, technical architecture, and operational excellence – are becoming more visible within organizations and it has become increasingly important to approach Governance, Risk, and Compliance from a unified perspective.  IT-GRC, as a subset of GRC, focuses specifically on ensuring that enterprise systems operate within the boundaries of regulations and internal standards/policies.  As a result, IT-GRC has become a critical initiative in defining a more robust overall risk posture.  This presentation will address:

·                      What is IT-GRC and how can it benefit my organization?

·                      What is the value proposition around IT-GRC?

·                      What is the process around implementing an IT-GRC solution?

·                      What does IT-GRC involve?

·                      What tools currently exist in the IT-GRC space?


About the Speaker:

Jennifer Lesser

KPMG LLP, Advisory Services

Jenn Lesser is a Manager in KPMG's Silicon Valley IT Advisory Services practice with over 10 years of  experience leveraging her technical, communication and organizational skills to drive and deliver quality based solutions for organizations of all sizes.  Ms. Lesser spent the early part of her career as a Technical Project Manager focused on project delivery, resource allocation, issue management and prioritization.  The latter part of her career has been spent focused on Information Security projects specifically Compliance Based Initiatives and Policy Architecture, Development and Management.  Ms. Lesser is also skilled in developing corporate wide training programs and individual technical training sessions.

 

Mark Milne, CISA, CIA

KPMG LLP, Advisory Services

Mark Milne is an experienced manager in KPMG's San Diego IT Advisory Services practice. He has had significant experience performing and managing Enterprise Risk Assessments, IT Governance Assessments and Implementations, IT Audits, Internal Audits, External Audits, Sarbanes Oxley Assistance, Application Security Assessments, and Business Process Analysis. Mark received a Bachelor degree in Business Management with an emphasis in information systems and a Master of Information Systems Management degree from Brigham Young University. Mr. Milne is also a Certified Information Systems Auditor (CISA), Certified Internal Auditor (CIA), Approva Certified Professional (ACP), and a Microsoft Certified Systems Engineer (MCSE).

 

  
***SEPTEMBER MEETING***

Topic:
TBD


Meeting Overview
TBD 

About the Speaker:
TBD
Previous Meeting:

Thanks to everyone who attended the July 24th ISACA meeting.




Other Meetings:

ISACA - Los Angeles
Information Systems Audit and Control Association
Reference www.isacala.org for details

ISSA - San Diego
Information Systems Security Association
Reference www.sdissa.org for details

IIA - San Diego
Institute of Internal Auditors
Reference www.theiia.org for details

AITP - San Diego
Association of Information Technology Professionals
Reference www.sandiego.aitp.org for details

ACP - San Diego
Association of Contingency Planners
Reference www.acp-international.com/sandiego for details

PMI - San Diego
Project Management Institute
Reference www.pmi-sd.org for details

 

 
: