If the handout download links from within past event articles are broken, please navigate to Chapter->Downloads to obtain the document.

2019 March 13 Training Session

2019 March Training Session

When:  March 13, 2019 - 1:00-4:00 EST
Where: RTP HQ
Registration: Website
ISACA-RTC Members - Free (Log in to register to ensure discounted fee)
Affiliated Organizations (IIA, ISSA, Othe ISACA Chapters) - $35
All Others: $50
CPEs: Upto 3



Are you struggling on how to conduct a Business Continuity / Disaster Recovery Audit?  Do you need to learn how to improve your current auditing capabilities?  Come learn how the MetLife Global Resiliency (GR) and MetLife Internal Audit (IA) Teams have collaborated to ensure IA is reviewing GR Business Continuity and Disaster Recovery plans for design, completeness, and overall adequacy according to the GR Framework and Policy & Standards.

Please join us as we welcome Margaret Millett (Global Resiliency) and Stacy Thomas (Internal Audit) from MetLife in Cary, NC.

Margaret Millett, MSc Business Continuity, MBCP, MBCI

Assistant Vice President

MetLife, Raleigh, North Carolina

Margaret Millett is an Assistant Vice President at MetLife responsible for their Global Resiliency Program.  She has been actively involved in the business continuity field since 1993 and worked for financial services companies in Boston, Massachusetts and Dublin, Ireland. She spent six years working for eBay in California prior to moving to North Carolina in 2014. Margaret has held board levels positions with business continuity organizations, written publications and spoken at business continuity management conferences in North America, Europe, Asia and the Middle East.

In 2011, Margaret was awarded a Master of Science in Business Continuity from Norwich University in Northfield, Vermont with honors. She has been certified as a Member of the Business Continuity Institute (MBCI) and a Master Business Continuity Professional (MBCP).

Affiliations include: The Business Continuity Institute (BCI), Continuity Insights (CI) Editorial Advisory Board, Business Continuity Professionals of the Carolinas (BCPC), DRI International and a member of the US Technical Advisory Group to ISO Technical Committee 292.

In 2015, Margaret was named the head of the Eastern North Carolina Alzheimer’s Association Board of Directors.

In 2018, she was nominated for a global award within her profession by The Business Continuity Institute (BCI).



Information Risk Management Geek

IT Audit Director, MetLife

Stacy is an IT Audit Director focusing on cybersecurity, business continuity/disaster recovery, privacy, data protection, and technical reviews for MetLife.  Her 20+ year career in financial services includes information security, privacy, and IT Audit. 

 As Information Security Officer, she developed and implemented a comprehensive risk-based information security program while managing the balance between organizational needs and information security requirements.  Her responsibilities included oversight of the Business Continuity recovery program, which included performing quantitative and qualitative risk assessment to identify critical areas and processes.

 While Privacy Officer, she designed and implemented a system to capture regulations and the associated inherent risk, business unit residual risk, testing/monitoring, and issue tracking.  She also developed a method to provide a remediation cost profile to compare an incident cost against the cost of preventing occurrences.  This cost profile led to reimbursement from vendors for data loss incidents.  She also led the development and implementation of the Identity Theft Red Flags program resulting in a comprehensive and proactive approach to the requirements.

During her audit role, she used her analytical skills to uncover the single, largest embezzlement in company history - $2 million.  She was instrumental in developing a repeatable process to identify, document, and test key IT controls over financial reporting.

Stacy’s unique perspective and experience allows her to communicate technology risks and concepts clearly and convincingly to business leaders and stakeholders.

For more information and to register for the training session, please visit the ISACA RTC website.