Objective
To provide IT security, governance and risk professionals a technical learning event presented by industry leaders. This Conference will provide participants the tools, best practices, and information on how to overcome challenges and prepare for future trends, delivered with practical and pragmatic approaches to IT security, risk and governance topics and concepts, and is designed for experienced certified and non-certified professional seeking solutions.
Target Audience
IT security, governance and risk professionals with a minimum of 3 to 5 years IT experience who are responsible for the operational aspects of security and governance within the organization.
Learning Objectives and Education Mission
ISACA is looking for innovative session proposals that not only speak to the technical issues, but provide context. Speakers should offer real-world cases, examples of actual tools and working papers used, including mapping to ISACA frameworks, successes and failures, and insight on emerging issues to help attendees stay ahead of the curve. Sessions should be designed to encourage interactive audience participation by including small group discussions, exercises and other activities to promote dialogue. ISACA is not looking for 90 minutes of lectures but rather innovative, energetic and engaging sessions. Proposals from a team or panel are welcome in order to share multiple perspectives on a topic.
The learning objectives must be clear and measurable. Learning objectives need to complete the following sentence: “After completing this session, the participant will be able to…”
Speakers are expected to have read and to be familiar with portions of COBIT, Val IT and Risk IT that are relevant to their presentations. Speakers should consider how presentation content supports CISA, CISM, CGEIT and CRISC knowledge objectives. The speaker must provide additional resources such as documents related to the topic, bibliographies, white papers, relevant articles, tools, guides, sample audit programs and other information that extends the learning beyond the session and adds value to the event.
In addition to the tracks detailed below, here are specific topics to consider.
Outsourcing and Offshoring
- When, Where, How and Why
- Managing the outsourced the IT function
- Risks involved – a legal perspective
Industry Specific Content
- Health Care:
- Health Care Bill 1099 -
- HIPAA regulations
- High-tech privacy concerns
- Emerging Regulations
- Financial:
- Agency Examinations (GLBA, BASEL II)
- New FFIEC Authentication Guidance
Track Descriptions
Privacy and Data Protection Issues
These topics explore how the threats to privacy are evolving, how privacy can be protected and how to balance the need to collect and secure information in a fast-paced environment where electronic information is exchanged. Concern over wireless/mobile communication, financial privacy, medical record confidentiality, background checks, and many sources of searchable Internet data test an enterprise’s data protection controls.
Emerging Issues
These topics explores the concepts and terminology of emerging issues related to IT governance, frameworks and risk management. Included in this track is the ISACA research and tools designed and developed to aid the IT professional in recognizing today’s emerging issues and mitigating impact on the enterprise. Sessions include conceptual discussions of ISACA’s new models and frameworks such as the Business Model for Information Security and The Risk IT Framework. Presented at an intermediate and advanced level, each session combines practical business knowledge, using examples and cases to illustrate best practices for today’s IT assurance professional.
IT Compliance and Governance Issues
This section covers two related topics:
IT Compliance
This area explores a variety of regulations and contractual compliance requirements, and the impact on the overall scope of the IT audit/security program, technology processes and controls. Session discussions include the overall impact of compliance on controls and specifically the scope and planning of the IT audit/security and yearly plans.
IT Governance
IT governance encompasses all stakeholders, internal and external customers, partners in the decision-making process, and the subsequent monitoring to ensure risk-return value is delivered to the organization. This aspect of the track covers governance as it relates to the IT investment portfolio, program management and operational controls for service delivery.
Top IT Security and Governance Issues
These topics include cutting-edge IT and security issues, along with recommendations and solutions. Topics include social media, related risks and new solutions; mobile technology, internal controls and solutions; cloud computing strategies. This track supports case study discussions detailing solutions to specific problems or issues. We are seeking session proposals that are designed for participants with 3 to 5 years of IT experience.
IT Risk and Exposure Management
These topics presents topics essential to IT security and governance professionals to continue perform more advanced tasks and expand upon their job responsibilities. It will cover a variety of topics including using COBIT and COSO to help understand, identify, and assess IT risks, and how to use internal control frameworks to mitigate such risks. This track presents the concepts of risk management and how to apply them for the benefit of the organization and its stakeholders. Sessions in this track will guide the IT professional to translate IT risk and issues into overall business risk and exposures that the organization’s management and audit committees can understand and address. The level of discussion is at an intermediate level, and assumes the participant has more than 3 years of IT experience and is familiar with information technology, terminology and concepts.
How to Submit a Proposal
Potential speakers must complete an official ISACA session proposal form for each proposed event and topic The session proposal form serves to document the speaker’s vision of the proposed session and how he/she intends to treat the various issues of the topic. The Conference Development Task Force can only make its speaker selections after a comprehensive review of the session proposal documentation and bona fides. It is important to include a full biographical sketch and detailed list of speaking engagements.
At the top of this page you will find a link to "Submit or Manage Your Paper" After clicking the link you will be prompted to log in.
If you cannot recall your credentials, click the Forgot Password? link.
Enter your email address and click Submit. You will receive an email notification from loginhelp@isaca.org that contains a link to reset your password. The reset link is valid for 60 minutes after being requested. To ensure you receive this email, please add loginhelp@isaca.org to your address book, contacts or trusted list. Click the link in the email or paste the entire URL into your browser and follow the instructions to make your changes. Should the link expire (exceeded the 60-minute window), you must request another reset password notification.
If you do not have an existing profile, please create an account.
**Special note to public relations firms and internal marketing departments submitting proposals on behalf of a potential speaker: You must provide the direct contact information for the speaker. The speaker must be aware of the submission and be able to accept the commitment of presenting at the event if selected. ISACA must be able to correspond with the speaker directly. ISACA understands third parties and other interested persons often need to be included in any communications and will endeavour to keep everyone informed.