ISACA® Western New York Chapter - March 2010 Newsletter

Published in

Monthly ISACA Newsletter

Login or register to post comments

		*Monthly Newsletter* *March 2010* Vol.2 Issue 3
CHAPTER NEWS Xerox's Joel Cort Presents at the 2010 Annual General Meeting Our chapter celebrated its 30th anniversary at this year's Annual General Meeting this past March 4th in Batavia, NY. The event highlighted such 2009 milestones as a realized 9% membership growth, cooperation with area ISSA and OWASP chapters in the Rochester Security Summit, chapter incorporation, and a bronze award recognized web site re-launch. Additionally, the chapters annual budget and current Officers and Board of Directors was approved and 2010 Program of Events previewed. The event featured an ISO:27001/2 presentation by Xerox's Joel Cort.		In This Issue: • Chapter News • Member Spotlight • President's Message • Upcoming Events • ISACA Resources • Technology News • Featured Download • Trivia
MEMBER SPOTLIGHT *Kathrine Springate* Kathrine Springate is a graduate student at the Rochester Institute of Technology (MBA - Accounting Program). She currently works on campus at R.I.T, with plans to join the Systems and Process Assurance group for Pricewaterhouse Coopers this fall. She is additionally working towards obtaining her CPA with plans to pursue CISA certification. Springate has been a member of ISACA for one year. She learned of ISACA through co-workers at PwC, whom had recommended the chapter as an excellent resource for professional and industry information. Acting upon this strong recommendation, she joined ISACA and became a chapter member. Springate looks forward to attending chapter events in which she can learn from industry experts and network with fellow members. She has found ISACA's online resources helpful in her learning more about the IT auditing profession and greatly values her membership.		PRESIDENT'S MESSAGE Thank you for helping to make this year's Annual General Meeting a success. I am encouraged by our chapters growth and the many realized achievements resulting from cooperative efforts throughout the year. I would like to thank the Board, our committee members, and our presenters for contributing to our 2009 program. I am looking forward to our continued progress through the remainder of the year and hope to see you at our upcoming events. Peter Spier Chapter President
UPCOMING EVENTS CISA Review Course - Are you studying for your CISA certification? Do you know someone who is and could use help in preparing? The ISACA Western New York Chapter is pleased to offer a full review course beginning March 29th and meeting from 6pm-9pm weekly, through June 7th (No class May 31st). Please contact Chapter Secretary Alex Douds for further information. White Hat Security Day - The ISACA Western New York Chapter will be attending the May 6th White Hat Security Day conference at the Doubletree Hotel in Rochester NY, featuring a presentation by Chapter President Peter Spier, on the HTTRUST CSF Assurance Program. Registration is FREE and OPEN NOW! TRIVIA To assist in testing a core banking system being acquired, an organization has provided the vendor with sensitive data from its existing production system. An IS auditor's primary concern is that the data should be: A. Sanitized B. Complete C. Representative D. Current Submit your response through our Contact form. The first received, correct answer wins a $5 Amazon Gift Certificate! ISACA RESOURCES The ISACA Career Center The ISACA Career Centre is the source for IT audit and information security professionals. Designations and experience are highlighted, providing a special opportunity for those interested in hiring CISA, CISM, or CGEIT holders and applicants with COBIT experience. Access the ISACA Career Center here		TECHNOLOGY NEWS Pentagon trains workers to hack Defense Computers By Larry Shaughnessy Source:cnn Washington (CNN) -- The Pentagon is training people to hack into its own computer networks. "To beat a hacker, you need to think like one," said Jay Bavisi, co-founder and president of the International Council of Electronic Commerce Consultants, or EC-Council. His company was chosen by the Pentagon to oversee training of Department of Defense employees who work in computer security-related jobs and certify them when the training is complete. The Department of Defense does not consider this hacking. "DoD personnel are not learning to hack. They are learning to defend the network against hackers," said spokesman Lt. Col. Eric Butterbaugh. But the EC-Council calls the program "Certified Ethical Hacker certification." The purpose of the training is to teach Defense Department employees to defend their computer network. Almost 45,000 attacks on Defense Department computers were reported in the first half of 2009, according to a government report. The report estimated that for all of 2009, the number of attacks would be up 60 percent from the previous year. Fending off the attacks costs the Pentagon about $100 million. Read the full story on cnn's site at the link above.
		FEATURED DOWNLOAD Value Management Guidance for Assurance Professionals: Using ValIT 2.0 This publication provides guidance for assurance professionals by leveraging the Val IT 2.0 framework and the IT Assurance Guide: Using COBIT. It provides guidance on how to use Val IT to support an assurance review focused on the governance of IT-enabled business investments for each of the Val IT domains of Value Governance, Portfolio Management and Investment Management. A comprehensive set of assurance tests covering the full scope of Val IT is included. Guidance is provided on how to plan and scope a review to focus on the most significant aspects.
Copyright © 2010 ISACA® Western New York Chapter. All rights reserved.
If you wish to cancel your subscription to this newsletter click here