Instructor Profile

Internal Control Frameworks have been developed by a variety of governing entities to provide organizations with a tool to build a foundation and strengthen internal controls. 

In this informative session, the speaker will introduce COBIT (Control Objectives for Information and Related Technology) which is an Information Technology (IT) Governance framework developed by ISACA (Information Systems Audit and Control Association).  The underlying principle of COBIT is to assist organizations with establishing IT Governance starting with “tone at the top” and flowing downward into business units.  Overall, this methodology is outlined by ISACA through the following phases: meeting stakeholder needs, end-to-end coverage within the enterprise, organizational customization, dynamic homeostasis, enabling a holistic approach, and separating governance from management.

Service Level Agreements (SLAs) have become an important aspect of every company today. This is so primarily from the fact that most companies use some form of service provider in the course of their day-to-day operations. In order for this to happen, an agreement typically an SLA is created that describes the type of service that will be provided by the provider to the client/customer. More specifically, an SLA is a contract which formally defines the service being performed by the provider in addition to detailing various aspects like roles, responsibilities, quality, scope, payment terms and processes.

Service Level Agreements (SLAs) have become an important aspect of every company today. This is so primarily from the fact that most companies use some form of the service provider in the course of their day-to-day operations. In order for this to happen, an agreement typically an SLA is created that describes the type of service that will be provided by the provider to the client/customer. More specifically, an SLA is a contract that formally defines the service being performed by the provider in addition to detailing various aspects like roles, responsibilities, quality, scope, payment terms, and processes.

Computer incidents occur daily and introduce risks to organizations.  Organizations need to mitigate risks imposed by incidents with guidelines known as an Incident Response Plan (IRP).  An IRP is developed to assist in responding to all incidents effectively and efficiently to protect the organization from financial, operational, and reputational damage.  It is important to understand that several different types of incidents exist with varying ranges of sensitivity requiring a reciprocated response that should be defined in the IRP.  

This session will discuss the various types of incidents and steps for building an effective IRP for your organization.     

By attending this webinar, you will gain a better understanding of how to create an effective incident response plan that meets your organization's unique needs and can help you quickly and efficiently respond to security incidents.

In today’s technological world, businesses are in dire need of Information Technology (IT) to sustain business operations.  As a result, IT has become a critical business enabler supporting the backbone of existence for businesses today which has increased the digital footprint of collecting, processing, storing, and reporting on data.  The major emphasis for any business as it relates to IT systems and data is to implement the proper safeguards (controls) that will protect the three critical areas of IT systems and data which are confidentiality, integrity, and availability.  The very basis of an IT Audit is to examine the controls implemented by management in response to preventing and/or detecting risks in the infrastructure and for the auditor to assess whether the controls implemented are working effectively as designed. 

This training will provide valuable knowledge on what companies need to do to establish an "effective" Compliance Office that leads to conceiving, developing and implementing successful GRC programs and provides top level coordinating leadership for governance, risk management and compliance issues across the enterprise.