• New Training Session Sign In Process

    We will be beta testing a barcode based sign in process (replacing the physical sign-in sheets) for our monthly training sessions. The barcode that will be used for the sign-in is at the bottom of the registration confirmation email. You can use your cell phone or a paper print out of the registration confirmation email to sign in. This will enable us to track attendance better and also enable uploading of session CPEs directly to ISACA International.

2019 December Full Day Session

When: December 04, 2019 - 0830-1630
Where: RTP HQ
Registration: Website
Cost
ISACA-RTC Members - $75 (Log in to register to ensure discounted fee)
Affiliated Organizations (IIA, ISSA, Othe ISACA Chapters) - $100
All Others: $125
CPEs: Upto 7
Handouts: Will Be Uploaded When available

Session I Principles of Application Security for Risk Management Practitioners

As an auditor, risk practitioner, or risk management professional, have you ever wondered about the fundamental principles that go into building an application securely? 
Do you do risk assessments of internal applications and wonder about the component pieces, and what makes them secure?
In this session, we’ll explore the modern application and how to apply secure design principles that make it safe. You’ll understand application security on a deeper level, and be better prepared to perform risk management activities against your private fleet of applications. We’ll cover:
  • Secure design principles
  • Input validation
  • Output encoding
  • Authentication
  • Authorization
  • Logging
  • Cryptography
  • Risk management for AppSec
 

Speaker: Chris Romeo, CEO, Security Journey

Chris Romeo is CEO and co-founder of Security Journey where he creates security culture influencing training, consults, and speaks. His passion is to bring security culture change to all organizations large and small through the creation and design of gamified security training. He was the Chief Security Advocate at Cisco for five years, where he empowered engineers to "build security in" to all products at Cisco and led the creation of Cisco’s security belt program. Chris has twenty years of experience in security, holding positions across the gamut, including application security, penetration testing, and incident response. Chris holds the CISSP and CSSLP certifications.  For more information, see https://www.linkedin.com/in/securityjourney/
 
Session II Robotic Process Automation
Advancements in robotic process automation (RPA) are yielding powerful results for organizations and bots are joining the workforce like never before. The digital workforce presents new opportunities for augmenting security operations—and challenges for defending against new threat vectors. How can technology leaders leverage this powerful technology to enable security while also avoiding the introduction of new vulnerabilities? This presentation provides an overview of current practices for using robotic process automation to enhance IT and security operations as well as provides takeaways for securing a digital workforce. After attending this presentation, participants will understand:
  • Use cases for RPA in IT and security operations
  • Cyber Threats and Vulnerabilities Related to RPA
  • Practices for safely adopting and defending automation programs

 

Speaker:  Roberto Valdez, CPA, CISA, CISM, Director of Cybersecurity & Automation, Kaufman Rossin

Roberto Valdez, CPA, CISA, CISM is the Director of Cybersecurity & Automation for Kaufman Rossin. He performs advisory and assurance engagements that include robotic process automation and digital strategies; SOC 1, 2, and 3 audits; IT risk assessments; phishing simulations; and engagements addressing compliance with requirements under HIPAA, FINRA, and SOX 404.
President of ISACA South Florida, Rob is a motivated advocate for building trust in technology through community development and education. He is an adjunct professor with Florida Atlantic University, an industry advisor to University of Miami’s College of Engineering, and he has been featured in the Wall Street Journal, TechRepublic, the South Florida Business Journal, Healthcare Business, and other publications.

For more information and to register for the training session, please visit the ISACA RTC website.

2019 Food Drive -- November Session

We received over 85 pounds of goods from you at our October session.  That will translate into over 70 meals for those in need!  Thank you!

We will be accepting donations of non-perishable food items for the Food Bank of Central and Eastern North Carolina at our November session.  A container will be available to deposit any food items members care to donate.

Most Needed Items:

  • Canned Fruits & Veggies
  • Canned Meat
  • Canned Beans & Soup
  • Cereal
  • Whole Grain Pasta & Rice
  • Peanut Butter
  • Hygiene Items
  • Household Items
  • Paper Products

 

For Infants & Kids:

  • Diapers
  • Wipes
  • Pedialyte
  • Infant Cereal
  • Fruit Cups
  • Granola Bars
  • Mac & Cheese Cups
  • Crackers
  • Juice Boxes

 

For Seniors

  • Nutritional Shakes & Drinks
  • Adult Hygiene Products

2019 November Training Session

When: November 06, 2019, 1300-1630
Where: RTP HQ
Registration: Website
Cost
ISACA-RTC Members:  Free (Log in to register to ensure discounted fee)
Affiliated organizations (IIA, ISSA, Other ISACA Chapters):  $35
All others: $50
CPEs: Up to 3
Handouts: Will be uploaded when available

Food Bank Drive!  We will be collecting non-perishable food items to benefit the Food Bank of Central and Eastern North Carolina at the October and November chapter meetings. A container will be available to deposit any food items members care to donate.

Session I:  Cybersecurity and Blockchain

debra baker

Speaker: Debra Baker

Debra Baker has over 20 years of experience in cybersecurity beginning with her time in the USAF. She founded a new authoritative cryptographic knowledge base called Crypto Done Right which began as a collaboration between Cisco and Johns Hopkins University. Debra was recently named as one of the top 100 Women in Cybersecurity in the Women Know Cyber: 100 Fascinating Females Fighting Cybercrime. She also is a contributor to the Language of Cybersecurity book. She frequently speaks at conferences and her latest talk was at the ISC2 Security Congress titled "Busting the Blockchain Myths". She is currently a Technical Program Manager at RedSeal.