North America CACS 2014 

Browse All of Our Events »

Ramsés Gallego BLOG:
A look back at North America CACS 2013

by Ramsés Gallego, ISACA International Vice President



View Highlights from
2013 North America CACS


Visit ISACA on Facebook and Twitter for recaps and photos.

Attendees pack the main conference room at NA CACS 2013


Learn about ISACA's
Exhibitor and Sponsorship Opportunities

What's In It For You?

Customized learning experience. Choose the sessions that matter most to you and your enterprise.

World-class networking. Interact face-to-face with colleagues in an environment ideal for unparalleled knowledge sharing.

Update your knowledge. Broaden your understanding of new research and projects being developed across the globe.

Sharpen your skills. Expand your expertise. Earn valuable CPEs.

What's In It For Your Organization?

Exceptional value for training dollars. Receive from every session full documentation that can be shared with colleagues at the office.

Exclusive access to industry experts. Tried and tested solutions to problems facing your organization from those who have been in your role before. Discover what works and doesn’t work from experienced and successful professionals.

Interact with leading vendors. All your organization’s vendors in one place at the InfoExchange. Get answers directly from vendors. Discover new products that will decrease the expense to your organization and increase the return.

Networking in the exhibit hall. 

NA CACS 2013 attendees

A panel session at NA CACS 2013
39 Hours
Earn up to 39 CPE Hours!

Thank You to Our 2014 Sponsors!


Boldon James
Vanguard Integrity Professionals
BEW Global

What to Expect

Download the 2014 North America CACS comprehensive brochure, or visit the program tab for more details.



North America Computer Audit, Control and Security (CACS) is a quality professional development opportunity.

  • Join your colleagues
  • Expand your networking opportunities
  • Build a stronger IT community.
  • Increase your member and vendor contacts
  • Interact with speakers who provide insight on IT audit and related topics.

Return to the office motivated to positively contribute to your enterprises’ success and immediately apply what you learned.

TwitterFollow @ISACANews on Twitter and get the latest updates about ISACA's North America CACS with the hash tag #NACACS.

Program Information

Check back often as we add more information!

  Download the 2014 North America CACS comprehensive brochure


Immerse yourself in 3 days of:

Educational sessions — workshops, keynotes, case studies and panel discussions
Networking events — spotlight educational sessions, attendee receptions, workshops and more

View program tracks and workshops below.

Pre-Conference 2 Day Workshops

Saturday, 26 April; 9:00AM - 5:00PM
Sunday, 27 April; 9:00AM - 5:00PM

Post-Conference 1 Day Workshops

Wednesday, 30 April; 1:00PM - 5:00PM
continuing Thursday, 1 May; 9:00AM - 12:30PM

2014 Conference Dates and Times

Pre-Conference Workshop Registration

Saturday, 26 April; 7:00AM - Noon
Sunday, 27 April; 7:00AM - Noon

Conference Registration

Sunday, 27 April; 4:00PM - 7:00PM
Monday, 28 April; 7:00AM - 5:00PM
Tuesday, 29 April; 7:30AM - 5:00PM

Post-Conference Workshop Registration

Wednesday, 30 April; 7:30AM - 3:00PM


Pre-Conference Workshops

Saturday, 26 April; 9:00AM - 5:00PM
Sunday, 27 April; 9:00AM - 5:00PM

Post-Conference Workshops

Wednesday, 30 April; 1:00PM - 5:00PM
Thursday, 1 May; 9:00AM - 12:30PM


Monday, 28 April; 8:30AM - 5:00PM
Tuesday, 29 April; 8:30AM - 5:00PM
Wednesday, 30 April; 8:30AM - Noon

Opening Keynote Address

How did One Man Lose $65 Billion?
The Signs, the Red Flags and
How to Make Sure That It Never Happens Again.


Harry Markopolos
Madoff Whistleblower

Chartered Financial Analyst, Certified Fraud Examiner and author of New York Times bestseller No One Would Listen, Harry Markopolos took just five minutes to realize that Bernard Madoff’s investment strategy was a fraud. But try as he did for the next nine years, he could not convince the Securities and Exchange Commission of the truth. The Madoff investigation was his first fraud case. He has been hooked ever since. From the time the Madoff scandal broke, Markopolos has dedicated himself to becoming the world's most visible and shrewd whistleblower on fraud and conflicts of interest in financial markets. Hear what he has to say about fraud, prevention and maintaining a healthy professional skepticism.

In his opening keynote, Markopolos presents a riveting behind-the-scenes account of his nearly nine-year investigation, and reveals:

  • How his four-person investigative team tracked Madoff and the Madoff Feeder Funds throughout Europe and North America
  • The US SEC’s refusal to believe the detailed reports his team repeatedly submitted
  • The red flags, warning signs and the audit steps you need to know to protect your organization

Closing Keynote Address

Countdown To Teamwork


Mike Mullane
Author and Former Space Shuttle Astronaut

The sky has never been the limit for former Space Shuttle Astronaut and inductee to the International Space Hall of Fame Colonel Mike Mullane. He believes that for leaders and teams to be the most effective, they need to continually raise the bar. Colonel Mullane’s own bar raising has taken him millions of miles, logging 356 hours in space over the course of three separate Shuttle missions. Now an author and acclaimed professional speaker on the topics of teamwork, leadership and safety, Mullane has educated, entertained, inspired and thrilled tens of thousands of professionals.

In his keynote address, "Countdown To Teamwork," Mullane offers a unique perspective on how the standards set by leaders and teams at ground level affect the heights enterprises can safely and successfully achieve.

Saturday, 26 April 2014

Time Pre-Conference Workshops


WS1—COBIT 5 Foundation Course Day 1
WS2—Applied Data Analysis in IS Audit Day 1
WS3—Prevention, Detection and Recovery from Cyberattacks: A Seminar/Workshop for IT Risk Professionals Day 1

Sunday, 27 April 2014

Time Pre-Conference Workshops


WS1—COBIT 5 Foundation Course Day 2
WS2—Applied Data Analysis in IS Audit Day 2
WS3—Prevention, Detection and Recovery from Cyberattacks: A Seminar/Workshop for IT Risk Professionals Day 2


Welcome Reception

Monday, 28 April 2014

Time 2014 North America CACS Sessions


Opening Session Keynote: How did One Man Lose $50 Billion?




111—Auditing Cyberpreparation
112—Integrating IT Risk Management with ERM
113—Responding to Targeted Cyberattacks
114—Leveraging COBIT 5 to Audit IT Governance
115—NIST Cybersecurity Framework
116—Building a World Class Audit Organization
117—Governance Forum




121—Cloud Computing and SOC 2 Reports
122—Beyond IT: Third-Party Risk
123—Assessing and Securing Industrial Control Systems
124—The Updated COSO Framework
125—Implementing GRC Tools - Ready for That App?
126—Writing Effective Audit Reports




131—COBIT 5 as an Auditor's Tool
132—Managing Risk in a Changing World
133—CyberAttacks: Prepared?
134—Big Data & Privacy by Design
135—PCI Update
136—Career Management
137—COBIT 5: Family of Products


Networking Break


141—Auditing IT Projects
142—A New Way In - How Attackers are Taking Advantage of Encryption Keys and Certificates to Compromise You
143—Supply Chain Security
144—IT/OT Convergence
145—The Social Media Era
146—KSA Model for IS Auditors
147—Solving for Current Challenges Using ISACA Tools


Expo Hall Reception

Tuesday, 29 April 2014

Time 2014 North America CACS Sessions


211—Auditing Smart Devices
212—"IT" is No Longer About the Delivery of Magic Behind Closed Doors
213—End to End Security
214—Governance in the Cloud
215—The New ISO 27001:2013
216—An Auditor’s Guide to Ensuring Effective Controls Within IT Projects
217—Risk Forum




221—Embedding Data Analytics in Fraud Auditing
222—Privacy Risk Assessments
223—Cybersecurity Awareness
224—IG, Meet BYOD
225—Forensics & eDiscovery
226—Professional Skepticism Awakened




231—SOC2 Reporting for Healthcare Cloud
232—Turning Risk into Results
233—Don’t Let Your Apples Fall Far From the Tree – Understanding iOS Deployment Risk
234—Third-Party Risk
235—HIPAA Compliance Roadmap
236—Strategic Alignment of the Enterprise
237—Megatrend—How IT Auditors are Using Analytics to Define and Perform the Audits of the Future (Sponsored by Deloitte)




241—Continuous Control Monitoring
242—Sustainable Risk Planning
243—2014 Security and Privacy Headlines
244—Enhancing Governance Through Effective IA Activities
245—Multi-Compliance Roadmap for Designing and Implementing an SAP GRC Solution
246—Hiring and Retaining Talent


Networking Break


251—Partnering Audit and Governance for Business and the Cloud
252—Securing a Website
253—Securing Big Data
254—Outsourcing and the Need for Vendor Audits
255—The One-to-Many Approach
256—Crucial Communications
257—Privacy Forum


Networking Reception

Wednesday, 30 April 2014

Time 2014 North America CACS Sessions


311—Using Metrics to Address the Most Common Privacy Audit Findings
312—Big Data Risks and Rewards
313—A Practical Approach to Network Vulnerability Assessment
314—Is IT Relevant as We Know it in this Agile World of Innovation?
315—Compliance Management under the CFPB
316—Writing for Understanding
317—Assurance Forum




Closing Keynote: Countdown To Teamwork




Post-Conference Workshops: Day 1
WS4—COBIT 5 for Assurance Day 1
WS5—Security and Audit Mobile Technologies Day 1
WS6—Using Privacy Principles within Business Day 1

Thursday, 1 May 2014

Time Post-Conference Workshops: Day 2


WS4—COBIT 5 for Assurance Day 2
WS5—Security and Audit Mobile Technologies Day 2
WS6—Using Privacy Principles within Business Day 2


Continuing Professional Education Credits

National Registry of CPE SponsorsTo maintain ISACA certifications, certification holders are required to earn 120 CPE credit hours over a three-year period in accordance with ISACA’s continuing professional education (CPE) policy. Attendees can earn up to 39 CPE credits; 18 by attending the North America CACS Conference and an additional 7 CPE credits for attending each day of optional pre- or post conference workshops. ISACA conferences are Group Live and do not require any advanced preparation.

ISACA is registered with the National Association of State Boards of Accountancy (NASBA) as a sponsor of continuing professional education on the National Registry of CPE Sponsors. State boards of accountancy have final authority on the acceptance of individual courses for CPE credit. Complaints regarding registered sponsors may be submitted to the National Registry of CPE Sponsors through its web site:

Conference Registration Fees

Register and pay by 3 March 2014
Member US $1,395 Non-member US $1,595

Register and pay after 3 March 2014
Member US $1,595 Non-member US $1,795

One-day Workshop
Member: US $550 Non-Member: US $750

Two-day Workshop
Member: US $750 Non-Member: US $950

Cancellation Deadline:

31 March 2014

*If registration fees are not paid in full by 3 March 2014, the attendee will receive the regular conference rate of $1595 member/$1795 non-member. Early Bird pricing can be used in conjunction with group discounts, described below.

Group Discounts

ISACA offers discounts to organizations sending 4 or more employees to a single conference. Please contact the ISACA Conference department for more details at +1.847.660.5585 or
All fees are quoted in US dollars. The entire registration fee must be received by ISACA before your registration will be considered paid in full.

Registration Methods

Choose one of these easy ways to register

  1. Register online.
  2. Fax your completed registration form to +1.847.253.1443
  3. Mail your completed registration form to:
    ISACA, 1055 Paysphere Circle, Chicago, IL 60674 USA
  4. Bank Wires—send electronic payments in US dollars to:
    Bank of America, 135 S. LaSalle St., Chicago, IL 60603
    ABA #0260-0959-3
    ISACA Account #22-71578
    S.W.I.F.T. code BOFAUS3N
    [Please include attendee’s name and NACACS 2014 on the Advice of Transfer.]

Cancellation Policy

If your plans change and you won’t be able to attend the conference contact us by phone, fax or e-mail to cancel your registration. All cancellations must be received by 31 March 2014 to receive a refund of registration fees. A cancellation charge of US $100 will be subtracted from conference refunds, and US $50 from workshop refunds. No refunds can be given after 31 March 2014. Attendee substitution is permitted at any time until the conference. If a nonmember is substituting a member, then there will be additional nonmember fees.

NOTE: Registration is contingent upon full payment of the registration fee. To guarantee registration, conference fees must be received by the published deadline. It may take 10 or more business days for a wire transfer or mailed check to reach ISACA, so please plan accordingly. If, for any reason, ISACA must cancel a course or event, liability is limited solely to the registration fees paid. ISACA is not responsible for other expenses incurred, including travel and accommodation fees. For more information regarding administrative policies, please contact the ISACA conference department.
Phone: +1.847.660.5585
Fax: +1.847.253.1443


ISACA reserves the right to alter or delete items from the program in the event of unforeseen circumstances. Material has been prepared for the professional development of ISACA members and others in the IT audit, control, security, and governance community. Neither the presenters nor ISACA can warrant that the use of material presented will be adequate to discharge the legal or professional liability of the members in the conduct of their practices. All materials used in the preparation and delivery of presentations on behalf of ISACA are original materials created by the speakers, or otherwise are materials which the speakers have all rights and authority to use and/or reproduce in connection with such presentation and to grant the rights to ISACA as set forth in speaker agreement. Subject to the rights granted in the speaker agreement, all applicable copyrights, trade secrets, and other intellectual property rights in the materials are and remain with the speakers.

Please note: unauthorized recording, in any form, of presentations and workshops is prohibited.

Not a member of ISACA? Join today!

When you register for the conference as a nonmember, the difference between member and nonmember conference fees can be applied towards ISACA membership. This means you can become a member at the international and chapter level for little to no additional cost; it just depends on your local chapter dues. To take advantage of this great offer, check the box on the registration form. For more information about ISACA membership, visit the web site at or contact the membership department at

NOTE: This offer expires 30 days after completion of the event. Nonmembers pay the nonmember conference fee when registering.

Permission to be Photographed

By attending this event, the registrant grants permission to be photographed and videotaped during the event. The resultant photographs and videos may be used by ISACA for future promotion of ISACA’s educational events on ISACA’s web site, in social media and/or in printed promotional materials, and by attending this event, the registrant consents to any such use. The registrant understands any use of the photographs and videos will be without remuneration. The registrant also waives any right to inspect or approve the aforementioned use of any photographs or videos now or in the future.


Business casual is appropriate for this and all ISACA conference events.

Venue and Accommodations

Mandalay Bay 

Mandalay Bay Resort & Casino
3950 Las Vegas Blvd. South
Las Vegas, Nevada 89119
Phone (toll free): +1-877-632-7800 (Ask for Reservations Department); +1-702-632-7777
Fax: +702-632-7206

Reserve your guest room on line
(Identify Group as ISACA NACACS 2014)


Guest Room Rate:  $189 per night single/double, plus resort fee of $22 per night plus tax of 12%

Guest Room Cut-off Date:  4 April 2014

All guest reservations are guaranteed by payment of first night’s room plus resort fee and tax. Cancellations with full refund will be allowed up until 48 hours prior to reservation date.

Resort fee is inclusive of:  In-room wireless internet, fitness center admission, daily newspaper, local and toll-free number calls, and outgoing faxes and boarding pass printing at hotel business center.

Great Room Suite at Mandalay Bay

A Deluxe Room at Mandalay Bay

Special Hotel Information

Special hotel rates are available three days prior to and following the conference, and are subject to availability. To obtain the preferred rate, remember to mention that you are attending ISACA North America CACS Conference. Reservation requests received after the cut-off date will be honored on a space-available basis only. All reservations must be guaranteed with a deposit of one night's room cost.

Individuals are responsible for securing their own deposit at the time reservations are made. ISACA strongly encourages all conference delegates to stay at the host hotel. Staying at the host hotel helps keep the cost of the conference and membership dues down by helping us fulfill our negotiated guest room commitments to the hotel. You will also enjoy the benefits of being onsite for conference activities at a reasonable price.

Discounted Travel

ISACA has arranged for discounted travel for up to ten percent on travel to and from ISACA events held in North America on United Airlines. For North America CACS this offer is valid for travel booked during the event dates of Wednesday, 23 April 2014 – Saturday, 3 May 2014. Reservations can be made online at or by emailing While booking, enter Agreement Code: 297964 and Z Code: ZRM8 when searching for flights to take advantage of these discounts.

Thank You to Our 2014 Sponsors!



Microsoft’s Trustworthy Computing group focuses on creating and delivering secure, private, and reliable computing experiences based on sound business practices. Our goal is a safer, more trusted Internet.


Modulo is the leading global provider of information & technology GRC solutions, offering flexible and affordable methods for managing risk, compliance, and business continuity across the enterprise and extended enterprise of vendors. 1,000+ customers leverage Modulo to automate workflow; report compliance against regulations, standards, policies; prioritize risk through analytics and business metrics; secure cloud environments; remediate vulnerabilities; and more.


Effective organizations extend their internal audit (IA) oversight and performance to address IT risks as well as broader organization-wide business risks. Deloitte helps connect IT and IA to gain a greater understanding of the risks and opportunities that come with today's systems, applications, and other technologies.


Vanguard Integrity Professionals

Vanguard Integrity Professionals, an IBM Business Partner, provides enterprise security software and services that solve complex security and regulatory compliance challenges and deliver a rapid return on investment. With automated solutions for Audit and Compliance, Operational Security and Intrusion Management, Vanguard enables government agencies and corporations around the world to ensure continuous monitoring of System z, safeguard cloud computing secure domains, and protect critical data and applications from cybersecurity threats.



Boldon James

For almost 30 years, Boldon James has been a leader in data classification and secure messaging solutions, helping organizations of all sizes manage sensitive information securely and in compliance with legislation and standards, in some of the most demanding messaging environments in the world.


BEW Global

BEW Global is an internationally recognized leader in critical asset protection, providing information and network security services to help organizations in protecting their most critical assets. BEW Global leverages its portfolio of Consulting, Technical, and Managed Security Services combined with Security Assessments and Training to help organizations accomplish these goals.


Supporting Sponsors




CaseWare Analytics


ERP Maestro



MIS Training Institute




TeamMate Solutions




For Exhibitor and Sponsorship Opportunities

  2014 North America CACS Expo Hall Floor Plan
  2014 North America CACS Sponsorship Brochure

Please contact: 

Sean Stringer
Director of Sponsorships
Phone: +1.847.660.5729
Fax: +1.847.253.1443

  Events and Sponsorship Information


Contact ISACA's Education/Conference Department:
Tel: +1.847.660.5585
Fax: +1.847.253.1443

Media Inquiries

Contact the ISACA Communications Department:
Tel: +1.847.660.5512 or

Please address Sponsorship questions to: