North America CACS 2013 

Browse All of Our Events »

Ramsés Gallego BLOG:
A look back at North America CACS 2013

by Ramsés Gallego, ISACA International Vice President

Michael Stevens was recognized for highest score on the December CISA exam at North America CACS.

2013 North America CACS has concluded

We thank our delegates, speakers and sponsors for a great conference! We hope your time at North America CACS has provided you with the education and networking experiences you can take back and share with your colleagues.

View Highlights from
2013 NA CACS

  View Conference Presentations

Visit ISACA on Facebook and Twitter for recaps and photos.

See you next year in Las Vegas, 28-30 April 2014!

Check back for more information.

Networking in the exhibit hall.

QR Code Scan the adjacent code to download the North America CACS App from iTunes or Google Play.

Stay connected at this year’s North America CACS Conference with your smart phone or other mobile device!

With this FREE new feature you will be able to: Smart Phone App

  • Build your own conference schedule
  • Complete conference session surveys
  • Take notes, and export to email to yourself for review later
  • View session presentations

To access this powerful tool, please visit our smart link at  

What's In It For You?

Customized learning experience. Choose the sessions that matter most to you and your enterprise.

World-class networking. Interact face-to-face with colleagues in an environment ideal for unparalleled knowledge sharing.

Update your knowledge. Broaden your understanding of new research and projects being developed across the globe.

Sharpen your skills. Expand your expertise. Earn valuable CPEs.

What's In It For Your Organization?

Exceptional value for training dollars. Receive from every session full documentation that can be shared with colleagues at the office.

Exclusive access to industry experts. Tried and tested solutions to problems facing your organization from those who have been in your role before. Discover what works and doesn’t work from experienced and successful professionals.

Interact with leading vendors. All your organization’s vendors in one place at the InfoExchange. Get answers directly from vendors. Discover new products that will decrease the expense to your organization and increase the return.

Learn about ISACA's Exhibitor and Sponsorship Opportunities

Hyatt Regency Dallas

Attendees stayed close to all the 2013 NA CACS action at the landmark Hyatt Regency Dallas!

BYOD: The March of Consumerization

NA CACS Advocate Nelson Gibbs writes:
"The risk surface for BYOD is becoming well understood, particularly when an organization’s business drivers and deployment methodology are aligned and management tools are rapidly improving to meet enterprise-class needs.”
Read Nelson’s blog.

39 Hours
Earn up to 39 CPE Hours!

Thank You to Our Sponsors!


Qualys, Inc.

Don't Miss Out!

North America Computer Audit, Control and Security (CACS) is a quality professional development opportunity.

  • Join your colleagues
  • Expand your networking opportunities
  • Build a stronger IT community.
  • Increase your member and vendor contacts
  • Interact with speakers who provide insight on IT audit and related topics.

Return to the office motivated to positively contribute to your enterprises’ success and immediately apply what you learned.

TwitterFollow @ISACANews on Twitter and get the latest updates about ISACA's North America CACS with the hash tag #NACACS.

What to Expect

Download the 2013 North America CACS comprehensive brochure, or visit the program tab for more details.

North America CACS News

Program Information

Download the 2013 North America CACS brochure.

View program sessions and workshops below.

On-line registration is now closed. However, conference registrations will be taken at the registration counter at the NACACS Conference in Dallas. See you there!


Pre-Conference Workshops, 9:00AM-5:00PM daily
2-Day Workshops, Saturday and Sunday, 13-14 April 2013

1-Day Workshop, Sunday, 14 April 2013

Post-Conference Workshops
1-Day Workshops, Wednesday, 17 April 2012, 1:00PM-5:00PM, continuing Thursday, 18 April 2012, 9:00AM-12:30PM

Networking Event Sponsored by 

Tuesday, 16 April, 6:45–10:00 pm.

Saddle up your horses and ride into the city. We’re going to Eddie Deen’s Ranch, which is offering up a boot scootin’ good time for all NA CACS attendees. Cowboys, Texas Bar-B-Q, a Country and Western band, games and ranchin’ entertainment await you at this landmark indoor venue. Buses begin departing for Eddie Deen’s from the Hyatt at 6:45 pm.

Join in the fun by dressing in your best western wear. Boots and Wranglers are welcome!

2013 Conference Dates and Times

Pre-Conference Workshop Registration

Saturday, 13 April; 7:30AM - Noon
Sunday, 14 April; 7:30AM - Noon

Conference Registration

Sunday, 14 April; 3:00PM - 7:30PM
Monday, 15 April; 7:00AM - 5:00PM
Tuesday, 16 April; 7:30AM - 5:00PM

Post-Conference Workshop Registration

Wednesday, 17 April; 7:30AM - 3:00PM


Pre-Conference Workshops

Saturday, 13 April; 9:00AM - 5:00PM
Sunday, 14 April; 9:00AM - 5:00PM

Post-Conference Workshop

Wednesday, 17 April; 1:00PM - 5:00PM
Thursday, 19 April; 9:00AM - 12:30PM


Monday, 15 April; 8:30AM - 5:00PM
Tuesday, 16 April; 8:30AM - 5:00PM
Wednesday, 17 April; 8:30AM - Noon

Opening Keynote Address

Disruptive Tech: What’s New, What’s Coming and How It Will Change Everything


David Pogue

As the New York Times’ tech reviewer, David Pogue has a front-row seat for observing the blazing-fast torrent of new inventions. Hundreds of gadgets and technologies come down the pike every year, and plenty get lots of press—and most of it junk.

In this fast, funny presentation, Pogue will stick his neck out to predict which will actually cause major, disruptive changes. He’ll display, discuss and even demonstrate the technological advances—in personal entertainment, cellular tech, Web 2.0, and more— that will have the greatest impact on society in the coming years.

David Pogue is the weekly personal-technology columnist for The New York Times and a monthly columnist for Scientific American. He is also an Emmy Award-winning technology correspondent for CBS Sunday Morning and the current host of NOVA ScienceNow, a post previously filled by Neil deGrasse Tyson, in which he offers an edgy take on science while immersed in hilarious and dangerous situations.

With more than 3 million books in print, Pogue is one of the world's best-selling how-to authors. He has written or co-written seven books in the For Dummies series (including Macs, Magic, Opera and Classical Music). In 1999, he launched his own series of complete, funny computer books called the Missing Manual series, which now includes 120 titles.

Pogue graduated summa cum laude from Yale in 1985 with distinction in music, then spent 10 years conducting and arranging Broadway musicals in New York. He has won an Emmy, a Loeb Award for journalism, and an honorary doctorate in music. He has been profiled on 48 Hours and 60 Minutes.


Closing Keynote Address

Burning The Box™

Bob Kodzis of Flight of Ideas, Inc.

Bob is president and chief creative catalyst at Flight of Ideas, Inc.—a creative think-tank designed to help groups think out of the tank. Working with some of the top organizations in the U.S. and Europe—including Disney Corporation, Siemens Corporation, and Universal Studios—Bob has facilitated hundreds of creative brainstorming and planning sessions.

Burning the Box™ is a fun, interactive experience that has the power to change the way people think. Through helping to identify and eliminate some of their most significant creative barriers, Bob boosts participants' creativity. This is a unique experience for everyone; each participant works to identify the elements that make up their individual “creative boxes.”

View Q&A with Bob Kodzis

Program Sessions and Workshops

North America CACS 2013 Program Level:  Intermediate
Prerequisites for Sessions:  None

Saturday, 13 April 2013

Time Pre-Conference Workshops


Pre-Conference Workshop Continental Breakfast

7:30AM–12:00 Noon

Pre-Conference Workshop Registration


WS1 IT Risk: Governance and Assessment
WS2 COBIT 5 Foundation Course
WS3 IS Audits: Essentials of Data Analytics

Sunday, 14 April 2013

Time Pre-Conference Workshops


Pre-Conference Workshop Continental Breakfast

7:30AM–12:00 Noon

Pre-Conference Workshop Registration


Conference Registration


WS1 IT Risk: Governance and Assessment (cont.)
WS2 COBIT 5 Foundation Course (cont.)
WS3 IS Audits: Essentials of Data Analytics (cont.)
WS4 BYOD: Securing & Auditing Mobile Technologies


Welcome Reception

Monday, 15 April 2013

Time 2013 North America CACS Sessions


Continental Breakfast


Conference Registration


Solution Center Expo Hall Open


Opening Keynote: David Pogue—Disruptive Tech: What’s New, What’s Coming and How It Will Change Everything




111 Dodd Frank – IT Implications
112 Assessing and Auditing Social Media
113 Phishing Within Your Company
114 The Cloud GRC Stack Demystified
115 Hackers Knocking at the Door- What Will You Do Now?
116 Business Continuity – Emerging Trends
117 An Overview of COBIT 5 for Assurance




121 Leveraging Visual Analytics in an Internal Audit Department
122 Using the new COBIT Assessment Program to Perform IT Process Assessments
123 Case Study: Continuous Monitoring in Action
124 Exception Analytics - Balancing Risk & Control
125 PCI in 2013 and Beyond
126 Big Data, Big Questions
127 COBIT 5 for Security

2:15PM – 3:15PM

131 Saving the Boss $50K Using Open Source Software
132 Auditing UNIX/LINUX
133 Reduce Customizations & Automate Controls with GRC
134 Business Intelligence Using the Tools at Hand
135 New Cyberthreats to Information Security
136 Securing and Auditing Cloud Relationships
137 Assurance Forum

3:15PM – 3:45PM


3:45PM – 5:00PM

141 Auditing IT Vendor Capabilities
142 Windows Server 2012
143 Managing SDLC in the New World: A Risk, Security & Controls Based Approach
144 NEW for 2013: Emerging IT Audit Risks
145 It’s a Wrap – New Methods for Securing BYOD Apps
146 Multifactor Authentication and Benefits of NFC
147 MegaTrend: Intellectual Property Theft - The China Equation


Solution Center Expo Hall Reception


Spotlight Session: A Spy's Guide to the Kennedy Assassination
Spotlight Session: Keeping Compliant for Systems and Data in the Cloud, Suppliers, Mobile Devices and Social Network Groups


Spotlight Session: Post Digital Enterprise – Succeeding in Today’s Digital World
Spotlight Session: Leveraging Data Analytics and Continuous Auditing Processes for Improved Audit Planning, Effectiveness, and Efficiency

Tuesday, 16 April 2013

Time 2013 North America CACS Sessions


COBIT 5 Breakfast Event


Conference Registration


Solution Center Expo Hall Open


Panel Discussion




211 Growing an International IT Audit Plan
212 A Vision and Strategy for IT Audit 2015
213 BYOD: Invitation or Rebellion?
214 Privacy Risk Assessment in Cloud Computing
215 Microsoft Windows 8
216 Planning for the Bad Day: How to Mediate APTs 
217 MegaTrend: The Evolution of Automation for IT GRC




221 Information Assurance- Hot Topic
222 Auditing SQL Server
223 Data at Risk: Time to Say Goodbye!
224 My Business is Moving Faster than Security and Compliance
225 Top Security Threats Facing Banks
226 Big Data and Information Governance: Applying Discipline to the Jungle
227 Solving for Current Challenges Using ISACA Tools

2:15PM – 3:15PM

231 How to Start a Big Data Audit Program
232 Don't Let Your Apples Fall Far From the Tree: Understanding iOS Deployment Risk
233 Cataloging Security Incidents with VERIS
234 Vulnerability Assessment is not Risk Intelligence
235 Data Breaches: Paths and Prevention
236 Enterprise-wide Risk Management
237 Security Forum

3:15PM – 3:45PM


3:45PM – 5:00PM

241 Integrating IT into Operational Audits
242 SOC Reporting - Lessons Learned
243 Mastering the Art of Messaging Value
244 Soft Skills and the Next Generation of IT Auditors
245 Can Security Awareness Programs Stand a Real Test?
246 SAP GRC 10… More Than A Tool Implementation, it is a Business Transformation!
247 Risk Forum


Spotlight Session: Automating IT Data Collection and Compliance for GRCM Controls
Spotlight Session: New Challenges for Enterprise Security


Networking reception at Eddie Deen’s Ranch sponsored by Deloitte

Wednesday, 17 April 2013

Time Panels


Continental Breakfast


Post-Conference Workshop Registration


311 5+ Million Compliance Scans: Lessons Learned
312 Matters Requiring Attention in Audit Findings
313 Know Your Risk: Do You Know Where Your Breaches Are?
314 Develop a COSO ERM and COBIT 5 Based Risk Management Program
316 CyberSecurity: What’s Your Plan
317 MegaTrend: Social Media - Don't Believe the Hype...At Your Own Peril!




Closing Keynote: Bob Kodzis—Burning The Box™




Post-Conference Workshops
WS5 Cloud Computing: A Practical Approach to an Effective Audit
WS6 Barbarians at the Gate: Taming Global Privacy Requirements

Thursday, 18 April 2013

Time Post-Conference Workshops


Post-Conference Workshop Continental Breakfast


WS5 Cloud Computing: A Practical Approach to an Effective Audit (cont.)
WS6 Barbarians at the Gate: Taming Global Privacy Requirements (cont.)

Continuing Professional Education Credits

National Registry of CPE SponsorsTo maintain ISACA certifications, certification holders are required to earn 120 CPE credit hours over a three-year period in accordance with ISACA’s continuing professional education (CPE) policy. Attendees can earn up to 39 CPE credits; 19 by attending the North America CACS Conference and an additional 7 CPE credits for attending each day of optional pre- or post conference workshops. ISACA conferences are Group Live and do not require any advanced preparation.

ISACA is registered with the National Association of State Boards of Accountancy (NASBA) as a sponsor of continuing professional education on the National Registry of CPE Sponsors. State boards of accountancy have final authority on the acceptance of individual courses for CPE credit. Complaints regarding registered sponsors may be submitted to the National Registry of CPE Sponsors through its website:

Conference Registration Fees


Member US $1,550 Non-member US $1,750

One-Day Workshop

Member US $550 Non-member US $750

Two-Day Workshop

Member US $750 Non-member US $950

Cancellation Deadline

18 March 2013

Expo Pass

Includes entry into the exhibit hall, complimentary lunch and admission to spotlight seminars
One-day pass: US $50 (Mon or Tues) Two-day pass: US $100 (Mon-Tues)


ISACA offers discounts to organizations sending 4 or more employees to a single conference. Please contact the ISACA Conference department for more details at +1.847.660.5585 or

All fees are quoted in US dollars. The entire registration fee must be received by ISACA before your registration will be considered paid in full.


Registration Methods

On-line registration is now closed. However, conference registrations will be taken at the registration counter at the NACACS Conference in Dallas. See you there! 

Cancellation Policy

If your plans change and you won’t be able to attend the conference and/or workshop, contact us by phone, fax or e-mail to cancel your registration. All cancellations must be received by 18 March 2013 to receive a refund of registration fees. A cancellation charge of US $100 will be subtracted from conference refunds, and US $50 from workshop refunds. No refunds can be given after 18 March 2013. Attendee substitution is permitted at any time until the conference. If a nonmember is substituting a member, then there will be additional nonmember fees.

NOTE: Registration is contingent upon full payment of the registration fee. To guarantee registration, conference and/or workshop fees must be received by the published deadline. It may take 10 or more business days for a wire transfer or mailed check to reach ISACA, so please plan accordingly. If, for any reason, ISACA must cancel a course or event, liability is limited solely to the registration fees paid. ISACA is not responsible for other expenses incurred, including travel and accommodation fees. Conference materials are not guaranteed to those who register onsite or fail to submit payment prior to the event. For more information regarding administrative policies, please contact the ISACA conference department.
Phone: +1.847.660.5585
Fax: +1.847.253.1443


ISACA reserves the right to alter or delete items from the program in the event of unforeseen circumstances. Material has been prepared for the professional development of ISACA members and others in the IT audit, control, security, and governance community. Neither the presenters nor ISACA can warrant that the use of material presented will be adequate to discharge the legal or professional liability of the members in the conduct of their practices. All materials used in the preparation and delivery of presentations on behalf of ISACA are original materials created by the speakers, or otherwise are materials which the speakers have all rights and authority to use and/or reproduce in connection with such presentation and to grant the rights to ISACA as set forth in speaker agreement. Subject to the rights granted in the speaker agreement, all applicable copyrights, trade secrets, and other intellectual property rights in the materials are and remain with the speakers.

Please note: unauthorized recording, in any form, of presentations and workshops is prohibited.

Not a member of ISACA? Join today!

When you register for the conference as a nonmember, the difference between member and nonmember conference fees can be applied towards ISACA membership. This means you can become a member at the international and chapter level for little to no additional cost; it just depends on your local chapter dues. To take advantage of this great offer, check the box on the registration form. For more information about ISACA membership, visit the web site at or contact the membership department at

NOTE: This offer expires 30 days after completion of the event. Nonmembers pay the nonmember conference fee when registering.

Permission to be Photographed

By attending this event, the registrant grants permission to be photographed and videotaped during the event. The resultant photographs and videos may be used by ISACA for future promotion of ISACA’s educational events on ISACA’s web site, in social media and/or in printed promotional materials, and by attending this event, the registrant consents to any such use. The registrant understands any use of the photographs and videos will be without remuneration. The registrant also waives any right to inspect or approve the aforementioned use of any photographs or videos now or in the future.


Business casual is appropriate for this and all ISACA conference events.

Venue and Accommodations

Hyatt Regency Dallas 

Hyatt Regency Dallas
300 Reunion Blvd.
Dallas, TX 75207-4498
Phone: +1.214-651-1234 (Ask for Reservations Department)
Fax: +1.214-742-8126


Guest Room Rate:  Based on availability--please contact hotel directly.
Self Parking**: US $10 per car/per day
Valet Parking**: US $22 plus tax per car/per day

Dallas Hyatt Regency King Room

The Dallas skyline, as seen from Reunion Tower

**Parking rates are subject to change. Please check the hotel web site for current rate information.

Room rate includes complimentary in-guest room internet.

About Dallas

The 9th-largest city and part of the 4th-largest metropolitan area in the nation, Dallas is the number 1 visitor and leisure destination in Texas.

Dallas is centrally located and within a 4-hour flight from most North American destinations. DFW International Airport is the world’s 3rd busiest airport. Once here, visitors can ride one of the fastest-growing light rail systems in the nation or the historic, free McKinney Avenue Trolley from the Dallas Arts District throughout the Uptown area with its restaurants, pubs, boutique hotels and shops.

Throughout the city, a visitor will enjoy the best shopping in the southwest, 4-and 5-diamond/star hotels and restaurants, the largest urban arts district in the nation, 13 entertainment districts and much more. Blend in moderate weather, year-round sports and true Southern hospitality for a true “taste” of the Dallas difference. Visitors are exposed to a city that models its slogan, “Live large. Think big.™” Its pioneering spirit is alive and well, and the philanthropic contributions from its many residents continue to enrich the community and quality of life.

Dallas is also a leading business and meeting city. In 2010, 24 area businesses were named Fortune 500 companies, including Exxon Mobil, JCPenney and Texas Instruments.

For information about Dallas, visit

Old Red and Reunion Tower, Courtesy 

Special Hotel Information

Special hotel rates are available three days prior to and following the conference, and are subject to availability. To obtain the preferred rate, remember to mention that you are attending ISACA North America CACS Conference. Reservation requests received after the cut-off date will be honored on a space-available basis only. All reservations must be guaranteed with a deposit of one night's room cost.

Individuals are responsible for securing their own deposit at the time reservations are made. ISACA strongly encourages all conference delegates to stay at the host hotel. Staying at the host hotel helps keep the cost of the conference and membership dues down by helping us fulfill our negotiated guest room commitments to the hotel. You will also enjoy the benefits of being onsite for conference activities at a reasonable price.

Thank You to Our Sponsors!


DeloitteEffective organizations extend their internal audit (IA) oversight and performance to address IT risks as well as broader organization-wide business risks. Deloitte helps connect IT and IA to gain a greater understanding of the risks and opportunities that come with today's systems, applications, and other technologies. Our focus on emerging IT audit, security, governance, and risk issues — combined with our extensive industry experience — can better enable you to navigate IT challenges, manage organization-wide risks, and elevate the role of IA. Stop by our Spotlight Session or talk with any of our speakers to learn more about Deloitte’s IT IA services.

McAfeeMcAfee, a wholly owned subsidiary of Intel Corporation (NASDAQ:INTC), is the world’s largest dedicated security technology company. McAfee delivers proactive and proven solutions and services that help secure systems, networks, and mobile devices around the world, allowing users to safely connect to the Internet, browse, and shop the web more securely. Backed by its unrivaled global threat intelligence, McAfee creates innovative products that empower home users, businesses, the public sector, and service providers by enabling them to prove compliance with regulations, protect data, prevent disruptions, identify vulnerabilities, and continuously monitor and improve their security. McAfee is relentlessly focused on constantly finding new ways to keep our customers safe.

Qualys, Inc.Qualys Inc. (NASDAQ: QLYS), is a pioneer and leading provider of cloud security and compliance solutions with over 6,000 customers in more than 100 countries, including a majority of each of the Forbes Global 100 and Fortune 100. The QualysGuard Cloud Platform and integrated suite of solutions helps organizations simplify security operations and lower the cost of compliance by delivering critical security intelligence on demand and automating the full spectrum of auditing, compliance and protection for IT systems and web applications. Founded in 1999, Qualys has established strategic partnerships with leading managed service providers and consulting organizations worldwide. The company is also a founding member of the Cloud Security Alliance (CSA). For more information, please visit


Morgan Franklin







2013 Event Exhibitors

  Solution Center EXPO Hall Floor Plan


For Exhibitor and Sponsorship Opportunities

  2013 North America CACS Sponsorship Brochure

Please contact: 

Sean Stringer
Director of Sponsorships
Phone: +1.847.660.5729
Fax: +1.847.253.1443

  Exhibitor and Sponsorship Information


Contact ISACA's Education/Conference Department:
Tel: +1.847.660.5585
Fax: +1.847.253.1443

Media Inquiries

Contact the ISACA Communications Department:
Tel: +1.847.660.5512 or

Please address Sponsorship questions to: