2017 GRC Presentations and Descriptions 


2017 program information coming soon!



Workshop 1: COBIT NIST Cybersecurity Framework

Mark Thomas, CGEIT, CRISC
Escoute Consulting 

This course is focused on the Cybersecurity Framework (CSF), its goals, the implementation steps, and the ability to apply this information. The course and exam are for individuals who have a basic understanding of both COBIT 5 and security concepts, and who are involved in improving the cybersecurity program for their enterprises.

In this session, participants will:

  • Understand the goals of the Cybersecurity Framework (CSF).
  • Learn and discuss the content of the CSF and what it means to align to it.
  • Understand each of the seven CSF implementation steps.
  • Be able to apply and evaluate the implementation steps using COBIT 5
  • Discuss the progression and touch points of protecting big data – and what might happen if this is ignored.
  • Learn about the Internet of Things and why it’s both feared and welcomed.
  • Identify how COBIT and NIST can work together to create a customizable framework to stave off attacks.

Pre-requisites for attending this Workshop:

  • Basic knowledge of COBIT
  • Basic knowledge of security concepts

Workshop 2: ERM Can Now Work! Putting the Updated COSO ERM Framework and ISO 31,000 Standards Into Practice

Doug Anderson
Managing Director
CAE Solutions

Charlie Wright
Director of Enterprise Risk Solutions, BKD

This workshop will use the new COSO ERM Framework, with reference to ISO 31000, to discuss how we should consider risk and what it means to properly manage risk in an organization. Those responsible for facilitating risk management in their organization, or auditing a risk management activity, will find this workshop useful in providing a firm understanding of how risk management should be defined, structured and executed in organizations. In addition, as all auditors use risk as the foundation for audit planning, execution and reporting, this workshop will provide insight on how an auditor’s view of risk should be upgraded to incorporate the latest thinking embodied in these two updated projects. The workshop will use a combination of theory and small-group discussion to unpack the theory into easily understandable parts and case studies.


Return to Event Page >>