When: April 04, 2018 - 1300-1630
Where: RTP HQ
ISACA-RTC Members - Free (Log in to register to ensure discounted fee)
Affiliated Organizations (IIA, ISSA, Othe ISACA Chapters) - $25
All Others: $40
CPEs: Upto 3
Session I OSINT: Introduction, Tools & Techniques [1300-1430]
Open-source intelligence (OSINT) is data collected from publicly available sources to be used in an intelligence context. This session will give you an overview of how open source intelligence can be used by threat actors, and present a few widely used tools and techniques with the hope that knowledge of these tools and techniques will help you enhance your organizations security posture.
Speaker: Srinivas Saraswatula - Director IT Audit, Red Hat
Srinivas is Director, IT Internal Audit at Redhat. He has an MBA from UNC's Kenan-Flagler Business School and a master's degree in Civil Engineering from Clemson University. Srinivas has over 20 years of experience in IT Audit, cybersecurity operations, information security, risk management, and regulatory compliance in the government, high tech, financial services, utility, and telecommunications industries.
Session II Emerging IT Risks Can Be Scary [1445-1615]
Emerging IT Risks can be scary. So scary, in fact, that sometimes a company's reaction to the risk is worse than the risk itself. The key to managing the unknown is to understand what has come before and what it tells us about what is still yet to come. In this presentation, we’ll discuss a summary of what Emerging IT Risk is and how it differs from more traditional IT risk management, some things to remember about how to avoid overreacting to risk, then review the technologies currently (and historically) on the Gartner Technology Hype Cycle and how to prepare for their impact to a company’s internal controls.
Speaker: Adam Leigh, Director, IT Risk Governance, Metlife
Adam Leigh has been in the risk profession for most of his career, starting out as a consultant and auditor at PwC for 4 years. Then moving to a specialty property & casualty insurer where he did project management work and IT auditing for 6 years and joined MetLife in IT Risk Management 4 years ago. Throughout all of that, he’s been tackling a very specific problem: How to provide leaders with just the right information to encourage risk-mindful decision making? When he isn’t running reports and creating pie charts he’s running marathons and cooking up pies.