Program Sessions and Workshops

Saturday, 5 May 2012

Time	Workshop
9:00AM–5:00PM	WS1 Control and Security of Web Applications WS2 IT Risk Management WS4 Performing IT Audits: A Practical Approach

Sunday, 6 May 2012

Time	Workshop
9:00AM–5:00PM	WS1 Control and Security of Web Applications (cont.) WS2 IT Risk Management (cont.) WS5 Server Virtualization Security and Audit
5:30PM–7:30PM	Welcome Reception

Monday, 7 May 2012

Time	Session
8:30AM–9:55AM	Opening Keynote:  Trends and Technology
10:15AM–11:45AM	T1 111 Business Impact of IT Audit Issues T2 112 What is Virtualization and How Do I Audit It? T3 113 Automating IT Data Collection and Compliance for GRC Controls T4 114 Emerging IT Risks Panel Discussion T5 115 IT Governance Considerations with Mobile Computing T6 116 New for 2012: Emerging IT Audit Risks T7 117 Enterprise Risk Management Essentials
1:30PM–3:00PM	T1 121 Developing a Risk-based Audit Plan T2 122 The Keys to Assessing Risk when Sharing Data with Service Providers T3 123 Does Your Organization Need a Risk Management Plan for Personally Identifiable Information Data? T4 124 Emerging IT Risks Roundtable T5 125 Regulator Hot Topic Panel T6 126 System Authentication: The New Risk and 7 Steps to Audit and Remediate T7 127 IT Risk Management Life-cycle and Enabling IT with GRC Technology
3:30PM–5:00PM	T1 121 Developing a Risk-based Audit Plan (cont.) T2 132 Auditing Mobile Computing/Consumerization of IT T3 123 Does Your Organization Need a Risk Management Plan for Personally Identifiable Information Data? (cont.) T4 134 A Lesson for Leaders: How to Attract and Retain Top Personnel in Today’s Economy T5 135 Trends in Compliance and Regulations Industry Expert T6 136 Auditing Cloud Computing and Outsourced Operations T7 137 Reduce IT Risk Through Improved Management and Planning

Tuesday, 8 May 2012

Time	Session
8:30AM–10:00AM	T1 211 Data Analytics for IT Governance Controls T2 212 Auditing Your Unix and Linux Operating Systems T3 213 Records and Information Management: Understanding the Risks and Operational Challenges T4 214 Changing the C-Suite Perception of Internal Audit T5 215 Implementing COBIT Quickstart in a Healthcare Organization T6 216 In the Crosshairs of Social Engineering Attacks T7 217 The Opportunity in Risk and Security Trends
10:30AM–12NOON	T1 221 Networking and Building Relationships T2 222 Microsoft SQL Database Auditing Industry Expert T3 223 Recent Legal and Technical Trends in Privacy and Data Protection T4 224 Healthcare Security: Learning from Rigorous Government Security Requirements T5 225 Data Quality and Data Classification—Comparisons, Efficiencies and Success Factors T6 226 Secure Coding: Best Practices T7 227 What Color is Your Information Risk—Today?
1:30PM–3:00PM	T1 231 Auditors Guide to Process Improvement, Innovation and Business Process Management T2 232 Auditing Oracle ERP T3 233 Using Encryption Technologies to Protect Data T4 234 Mobile Device Security, Privacy, and Data Protection T5 235 eDiscovery: Trends, Leading Practices, Risks, and Controls T6 236 Reduce Cloud Security and Compliance Risks by Automating Privileged Accounts T7 237 Security Auditing and Governance for Healthcare Providers
3:30PM–5:00PM	T1 241 Embedding Data Analytics in Your Process and Continuous Fraud Auditing T2 242 Networking and Telephony Industry Expert T3 243 Data Breach and Trade Secret Theft: How a Holistic Approach Can Protect Your Assets T4 244 SAP: Real Time Controls in the SAP Environment T5 245 Healthcare Privacy and Security Landscape in 2012 T6 246 Social Media Risk and Mitigation Guidance T7 247 Black Holeistic Disaster Recovery: How to Limit Losses
5:00PM–6:30PM	Solution Center Reception
5:15PM–6:30PM	Spotlight Education Sessions

Wednesday, 9 May 2012

Time	Session
8:30AM–10:00AM	T1 311 Career Development for IT Auditors T2 312 The Risk and Exposure of Today’s Top Web Application Security Risks (OWASP Top 10) T3 313 Developing and Deploying an Enterprise Strategy for Information Loss Prevention T4 314 Data Security & Privacy: Can it Be Institutionalized? T5 315 Certificates – The New Authentication: Risks and Remediation T6 316 Identify and Eradicate: The Top Security Threats to Banks in 2012 T7 317 Establish and Maintain Information Security Oversight
10:15AM–12:15PM	Spotlight Education Sessions
10:00AM-1:30PM	Solution Center
1:30PM–3:00PM	T1 321 An Integrated Approach to Process-based IT Audit Using Quality and Information Security Management Systems T2 322 SAP: Segregation of Duties for SAP and Oracle T3 323 Understanding and Mitigating System, Compliance and Legal Consequences of Cloud Computing T4 324 Is IT Still Relevant? Communicating Trends and Risks Found in the New Technology Landscape T5 325 Beyond Compliance: Reduce Operation Risk and Cost While Complying T6 326 After the Breach T7 327 SaaS: How to Secure the Services Your Team Provides
3:30PM–5:00PM	T1 331 Design and Deliver Report Presentations that Speak to Your Target Audience and Drive Action T2 332 ITIL and CMM Assessments for IT Operations T3 333 Reform Of The European Union Data Protection Framework—A US Perspective T4 334 Incident Management T5 335 Review FFIEC Supplemental Guidance on Internet Banking Authentication, Combat Internet Banking Risks T6 336 How to Conquer the Social Media Landscape: The Vanguard Experience T7 337 CFO and CIO: Partners or Opponents?
6:00PM–8:00PM	Networking Reception

Thursday, 10 May 2012

Time	Session / Workshop
8:30AM–9:45AM	T1 411 Migrating to COBIT 5 for Auditors T2 412 Tips, Techniques, and Tools for Completing a PCI Self Assessment Questionnaire (SAQ) T3 413 A New Opportunity for IT Professionals: PS-Prep™ Audit T4 414 Understanding Your Data Flow: Using Tokenization to Secure Data T5 415 IT Governance: Myth to Reality T6 416 Protecting Your Mobile Devices T7 417 How to Make Enterprise Governance, Risk and Compliance (eGRC) Work for You
10:00AM–11:15AM	T1 421 Auditing the Intangible: Tangible Techniques for Assessing the Internal Control Environment T2 412 Tips, Techniques, and Tools for Completing a PCI Self Assessment Questionnaire (SAQ) (cont.) T3 413 A New Opportunity for IT Professionals: PS-Prep™ Audit (cont.) T4 424 How to Protect Your Network when Social Media Drives Malware Delivery Vehicle T5 425 Information Warfare: Because Weapons Aren’t Always Made of Steel T6 426 Wikileaks: Are You the Next Target? T7 417 How to Make Enterprise Governance, Risk and Compliance (eGRC) Work for You (cont.)
11:30AM–12:30PM	Closing Keynote:  Become a Change Agent—Bringing What You Gained at the Conference
1:30PM–5:00PM	WS6 Cloud Computing Audit and Assurance Issues WS7 Data Loss Prevention (DLP)

Friday, 11 May 2012

Time	Workshop
8:30AM–12NOON	WS6 Cloud Computing Audit and Assurance Issues (cont.) WS7 Data Loss Prevention (DLP) (cont.)

 

Continuing Professional Education Credits

To maintain ISACA certifications, certification holders are required to earn 120 CPE credit hours over a three-year period in accordance with ISACA’s continuing professional education (CPE) policy. Attendees can earn up to 44 CPE credits; 23 by attending the North America CACS Conference and an additional 7 CPE credits for attending each day of optional pre- or postconference workshops. ISACA conferences are Group Live and do not require any advanced preparation.

ISACA is registered with the National Association of State Boards of Accountancy (NASBA) as a sponsor of continuing professional education on the National Registry of CPE Sponsors. State boards of accountancy have final authority on the acceptance of individual courses for CPE credit. Complaints regarding registered sponsors may be submitted to the National Registry of CPE Sponsors through its website:  www.learningmarket.org.

Member US $1750	Non-member US $1950
One-Day Workshop
Member US $550	Non-member US $750
Two-Day Workshop
Member US $750	Non-member US $950
Cancellation Deadline	11 April 2012

All fees are quoted in US dollars. The entire registration fee must be received by ISACA before your registration will be considered paid in full.

NACACS Workshop and Conference Registration is Open. Please register on site at the Loews Royal Pacific Resort at Universal Orlando in the Pacifica Ballroom Foyer. If you have questions, please contact the Conference Department at conference@isaca.org or +1.847.660.5585.

Registration

NACACS Workshop and Conference Registration is Open. Please register on site at the Loews Royal Pacific Resort at Universal Orlando in the Pacifica Ballroom Foyer. If you have questions, please contact the Conference Department at conference@isaca.org or +1.847.660.5585.

Cancellation Policy

If your plans change and you won’t be able to attend the conference and/or workshop, contact us by phone, fax or email to cancel your registration. All cancellations must be received by 11 April 2012 to receive a refund of registration fees. A cancellation charge of US $100 will be subtracted from conference refunds, and US $50 from workshop refunds. No refunds can be given after 11 April 2012. Attendee substitution is permitted at any time until the conference. If a nonmember is substituting a member, then there will be additional nonmember fees.

NOTE: Registration is contingent upon full payment of the registration fee. To guarantee registration, conference and/or workshop fees must be received by the published deadline. It may take 10 or more business days for a wire transfer or mailed check to reach ISACA, so please plan accordingly. If, for any reason, ISACA must cancel a course or event, liability is limited solely to the registration fees paid. ISACA is not responsible for other expenses incurred, including travel and accommodation fees. Conference materials are not guaranteed to those who register onsite or fail to submit payment prior to the event. For more information regarding administrative policies, please contact the ISACA conference department.
Phone: +1.847.660.5585
Fax: +1.847.253.1443
Email: conference@isaca.org

Your North America CACS registration fee includes:

• Attendance at the conference sessions of your choice
• An opportunity to earn up to 44 continuing professional education (CPE) credit hours
• Complimentary continental breakfast for conference attendees
• Complimentary lunches
• Complimentary morning and afternoon refreshment breaks
• Unlimited entry to the InfoExchange exhibits
• Invitations to all social and networking events:
• Welcome Reception
• Solution Center Reception
• Networking Reception

Disclaimer

ISACA reserves the right to alter or delete items from the program in the event of unforeseen circumstances. Material has been prepared for the professional development of ISACA members and others in the IT audit, control, security, and governance community. Neither the presenters nor ISACA can warrant that the use of material presented will be adequate to discharge the legal or professional liability of the members in the conduct of their practices. All materials used in the preparation and delivery of presentations on behalf of ISACA are original materials created by the speakers, or otherwise are materials which the speakers have all rights and authority to use and/or reproduce in connection with such presentation and to grant the rights to ISACA as set forth in speaker agreement. Subject to the rights granted in the speaker agreement, all applicable copyrights, trade secrets, and other intellectual property rights in the materials are and remain with the speakers.

Please note: unauthorized recording, in any form, of presentations and workshops is prohibited.

---

Conference Name Badge

Please wear your name badge at all times during the conference. Your name badge is your ticket into all conference events. Persons not wearing a conference name badge will be denied access into the conference and all affiliated events.

---

Not a member of ISACA? Join today!

When you register for the conference as a nonmember, the difference between member and nonmember conference fees can be applied towards ISACA membership. This means you can become a member at the international and chapter level for little to no additional cost; it just depends on your local chapter dues. To take advantage of this great offer, click on the "Click here to join now" link in your conference registration shopping cart. For more information about ISACA membership, visit the web site at www.isaca.org/membership or contact the membership department at membership@isaca.org.

NOTE: This offer expires 30 days after completion of the event. Nonmembers pay the nonmember conference fee when registering.

---

Permission to be Photographed

By attending this event, the registrant grants permission to be photographed during the event. The resultant photographs may be used by ISACA for future promotion of ISACA’s educational events on ISACA’s web site and/or in printed promotional materials, and by attending this event, the registrant consents to any such use. The registrant understands any use of the photographs will be without remuneration. The registrant also waives any right to inspect or approve the aforementioned use of any photographs now or in the future.

---

Dress

Business casual is appropriate for the North America CACS Conference and all conference events.

---

Visa

Obtaining a VISA is solely the responsibility of the registrant. Please contact the local government of the host country for details. Once a paid registration is received, a letter of invitation will be provided by ISACA, upon request.

Venue and Accommodations Loews Royal Pacific Resort at Universal Orlando® 6300 Hollywood Way Orlando, FL 32819 Phone:  +1.407.503.3000 (Ask for Reservations Department) Fax:  +1.407.503.3010 Web:  www.loewshotels.com (Group Code: GP25U1) Reservation Link:  www.loewshotels.com/en/Royal-Pacific-Resort/GroupPages/ISACA Guest Room Rate:  US $179* Single/Double (US $25 each additional occupant) * Rates based on availability. Self Parking:  US $17 per car/per day Valet Parking: US $24 per car/per day Guest Room Cut Off Date:  20 April 2012 Room rate includes complementary in-guest room wireless internet.

Special Hotel Information

Special hotel rates are available three days prior to and following the conference, and are subject to availability. To obtain the preferred rate, remember to mention that you are attending ISACA North America CACS Conference. Reservation requests received after the cut-off date will be honored on a space-available basis only. All reservations must be guaranteed with a deposit of one night's room cost.

Individuals are responsible for securing their own deposit at the time reservations are made. ISACA strongly encourages all conference delegates to stay at the host hotel. Staying at the host hotel helps keep the cost of the conference and membership dues down by helping us fulfill our negotiated guest room commitments to the hotel. You will also enjoy the benefits of being onsite for conference activities at a reasonable price.

Location:  Orlando

An Orlando vacation is everything a holiday should be, with a range of accommodations, attractions, dining, shopping and recreation activities to turn an ordinary vacation into an experience of a lifetime. In Orlando, the world's most amazing theme parks — Universal Studios Florida at Universal Orlando Resort, Magic Kingdom, Epcot, Disney's Hollywood Studios and Disney's Animal Kingdom at Walt Disney World Resort; Islands of Adventure and SeaWorld Orlando, Harry Potter's World — come together with more than 90 other attractions to create one larger-than-life destination, providing more entertainment options than anywhere on earth. If you would like to discover more about what Orlando, Florida has to offer, please visit www.visitorlando.com.

Transportation

AVIS will be providing discounted car rentals 7 days before and after this event. You can call them directly at +1.800.331.1600, and provide them with ISACA’s Avis Worldwide Discount (AWD) Number J626395. Alternatively, you may make your reservations online utilizing this link which will automatically provide you with our discount.

For Exhibitor and Sponsorship Opportunities

Please contact: 

Sean Stringer
Director of Sponsorships
Phone: +1.847.660.5729
Fax: +1.847.253.1443
sstringer@isaca.org

  Exhibitor and Sponsorship Information