Home

ISACA® Western New York Chapter - April 2010 Newsletter

Published in

 


Monthly Newsletter 

April 2010 

Vol.2 Issue 4

CHAPTER NEWS

 

This year WNY ISACA has supplemented its program schedule with a 10-week CISA exam prepartory class. This class, which is taught by Don Redman, a local Information Security Manager, has been a large success with 14 attendees. According to one attendee, Matt Hajek, "The class has been a great opportunity for local professionals to get together, collaborate on ideas, and share different perspectives. Everybody brings their unique experience to the table, which has been helpful in understanding specific aspects that the CISA exam is testing. It's been a great opportunity to network with WNY IT people, all with the same goal in mind of passing the CISA exam."

 In This Issue:

Chapter News
Member Spotlight
President's Message
Upcoming Events
ISACA Resources
Technology News
Featured Download
Trivia

MEMBER SPOTLIGHT

Evie Gunawan


Evie Gunawan is a Senior IT auditor with Ernst & Young LLP. Gunawan currently holds both the CISA and ITIL foundation certifications. While not currently pursuing any ISACA certifications, Gunawan is working towards obtaining her Certified Internal Auditor designation from the Institute of Internal Auditors.

Gunawan has been working in the audit field for over three years, and has been a member of ISACA for the same amount of time. She learned of ISACA through various sources, including college professors and colleagues, as well as printed and online publications. Further, she values the many knowledgebase resources on IT audit trends and standards available to her as a part of her ISACA membership.

PRESIDENT'S MESSAGE

I am pleased to announce future member, Madison Spier. Madison was born on March 25th, and is keeping our family on its toes. I have discussed both the value of ISACA membership and our 2010 program at length with her. She seemed pleased and looks forward to meeting our membership between naps.


Peter Spier
Chapter President

UPCOMING EVENTS

CISA Review Course - Are you studying for your CISA certification? Do you know someone who is and could use help in preparing? The ISACA Western New York Chapter is pleased to offer a full review course beginning March 29th and meeting from 6pm-9pm weekly, through June 7th (No class May 31st). Please contact Chapter Secretary Alex Douds for further information.

White Hat Security Day - The ISACA Western New York Chapter will be attending the May 6th White Hat Security Day conference at the Doubletree Hotel in Rochester NY, featuring a presentation by Chapter President Peter Spier, on the HTTRUST CSF Assurance Program. Registration is FREE and OPEN NOW!

TRIVIA

When conducting an audit of client-server database security, the IS auditor should be most concerned about the availability of:


A. system utilities.
B. application program generators.
C. systems security documentation.
D. access to to stored procedures.


Submit your response through our Contact form. The first received, correct answer wins a $5 Amazon Gift Certificate!

 ISACA RESOURCES

  Learn, Network and Advance Your Career

What if you could spend five days away from the office surrounded by peers in an environment that stimulates learning, update your professional skills,  and earn up to 38 valuable CPE hours? You can – at ISACA’s Training Week! The next Training Week will be held in Charlotte, North Carolina, 24-28 May 2010. Choose to attend any of the three courses:

• Fundamentals of IT Assurance and Audit
• Information Security Management
• COBIT:  Strategies for Implementing IT Governance

If these dates don’t work for you, there are three other dates and locations to choose from. Get more information about the other locations or register for Training Week in Charlotte today!

ISACA also offers On-site Training where you can get the same great education, delivered directly to you. Find out more today!



 

 

TECHNOLOGY NEWS

The QSA's Perspective: PCI Compliance Risks Abound
 

By Peter Spier
Source:Bank Info Security

This coming September 19, we shall once again batten down the hatches and hoist the mainsail in celebration of "Talk Like a Pirate Day." But in information security, we already know that by the time we see the Jolly Roger ... it's often too late. Let's talk about the Payment Card Industry Data Security Standard (PCI DSS, or just PCI). When many merchants and service providers think about PCI, they recall the National Retail Federation's (NRF) June 8, 2009 letter to PCI Council General Manage Bob Russo, wherein it was expressed that it is difficult to "comply with the program's requirements in a cost effective and timely manner." .

Read the full story on cnn's site at the link above.

FEATURED DOWNLOAD

Sharepoint Deployment and Governance Using COBIT 4.1: A practical Approach.

Get the guidance you need to effectively use SharePoint in your organization with ISACA's new publicaiton, Sharepoint Deployment and Governance Using COBIT 4.1: A practical Approach. With this step-by-step guide you will learn how to practically deploy and govern SharePoint 2007 and 2010 using COBIT 4.1, the comprehensive IT governance framework from ISACA. Plus, you'll get authoritative tips, techniques and advice from the experts.
Copyright © 2010 ISACA® Western New York Chapter. All rights reserved.
If you wish to cancel your subscription to this newsletter click here