If the handout download links from within past event articles are broken, please navigate to Chapter->Downloads to obtain the document.

2011 September - Emerging Risks and Requirements in Information Privacy and Security

The Board of Directors of the ISACA Research Triangle Chapter is proud to announce the September 7, 2011 training session.

Dates: September 7, 2011 1:00 p.m. to 4:30 p.m.

Material: Session I - Emerging Risks Session II - Web Malware Threat Landscape

Registration: Through our website

Location: RTI Building 08 Multipurpose Room, RTI International


ISACA Member - Free
ISACA Partners(IIA, ISSA, Infragard etc.,) - $25
Non-Members - $40

CPEs: Upto 3

Session 1: Emerging Risks and Requirements in Information Privacy and Security

What does the government expect to see when they ask an organization to demonstrate privacy or security compliance? In the face of increasing govenrment enforcement and litigation over privacy and information security issues, organizations must be prepared to demonstrate not only compliance, but "reasonable" and legally-defensible security practices. Not sure what that means? This presentation will look at some recent govenernment enoforcement action by federal and state agencies (FTC, HHS, state attorneys general including NC) as well as current federal and state laws to provide security professionals with information they need to consider if their organization is to pass muster with govenrment regulations. Practical advice on common mistakes and oversights will be provided in practical terms, and real world examples will be used to demonstrate points.

Session 2 - Web Based Malware: Threat Landscape

Learn about the current top web attack vectors, how those attacks work with a detailed breakdown and an in depth analysis on the Malware Delivery Networks that distribute the malicious content.




Session 1 - Elizabeth Johnson, Partner, Poyner & Spruill

Elizabeth Johnson is a partner based in Poyner Spruill's Raleigh office. She is the head of Poyner Spruill's Privacy and Information Security Practice Group. Elizabeth's practice focuses on privacy, information security, and records management. Her comprehensive, practical approach to privacy law is reflected by the diversity of her clients, which hail from a variety of industries including health care, financial services, insurance, retail, telecom, utility, technology, consumer goods and client services. Elizabeth has also worked with organizations of various size and scope, ranging from Fortune 100 companies with international reach to local charities. She was listed among the top privacy professionals in Computerworld's "2008 Best Privacy Advisors" report. She can be reached at 919-783-2971, or This email address is being protected from spambots. You need JavaScript enabled to view it..

Session 2 - Dennis Pike, Blue Coat Systems

Dennis is based out of the RTP region of North Carolains and has over 15 years of experience in the data networking and security industries. He has previously worked at Sprint as a Network Engineer and at Extreme Networks as a Systems Engineer. He holds a BS in Systems Engineering from The University of Virginia, Charlottesville, VA.