Governance Risk and Control Conference 

The 2016 GRC Conference will take place at the Diplomat Resort and Spa in Fort Lauderdale, Florida. Please continue to check back, as additional information is forthcoming



2016 Governance, Risk and Control Conference
22-24 August 2016 | Diplomat Resort & Spa | Fort Lauderdale, Florida.

Register Now



The IIA and ISACA are pleased to once again collaborate to bring you the 2016 Governance, Risk, and Control (GRC) Conference. Please continue to check back, as additional information is forthcoming! 

Join more than 600 governance, risk, and control professionals from 40+ countries at the event that draws together the best and brightest minds to embrace challenges, forge solutions, and define the future of global GRC.

Who Should Attend?

IIA and ISACA members and all other savvy audit, governance, risk management, control, and business professionals from around the world.

The conference offers an unrivaled opportunity to expand your network, build on your knowledge and sharpen your skills.

Details coming soon on the expert-led workshops and sessions in four learning tracks:

  • Cyber: Risks, Controls and Probabilities

  • IT Audit Core Principles

  • Internal Audit – Personal Brand Enhancement Strategies

  • Internal Audit Core Skills Refinement

What's In It For You?

Experience customized learning

Choose the sessions that matter most to you and your enterprise.

Interact face-to-face

Gain insights and share ideas with colleagues at this world-class networking event.

Update your knowledge and skills

Earn valuable CPEs.

What's In It For Your Organization?

Exceptional value for your training dollars

Receive documentation from every session that can be shared with colleagues.

Access to industry experts

Discover tested solutions that work for successful professionals and could be adapted for your organization.

Meet leading vendors

Visit the Expo Hall to discover products that decrease enterprise expense and increase return on investment. Get answers directly from product representatives.

Countdown to




Earn up to 18 CPE hours by attending this conference.

Browse All ISACA Events 


Stay in the Heart of the Conference Action

Diplomat Resort & Spa
3555 S Ocean Drive
Hollywood, FL 33019

Special hotel rates available for conference attendees, including pre- and post-event nights, subject to availability.


Follow @ISACANews and join the GRC conversation by using the hashtag #GRCConf.
Like ISACA on Facebook to stay informed.
Join the ISACA (Official) LinkedIn group and start a discussion about GRC today.

Thank you to our 2016 sponsors!



2016 Program Information

Educational Tracks

Pre-Conference Workshops


General Session 1: Big Data and the Internet of Things: Boon or Bust for Your Cybersecurity Efforts?

Theresa Payton
Former White House CIO, Cybersecurity Authority & Expert on Identity Theft and the Internet of Things

Marketing databases, customer analytics and behavioral patterns are easier to manage with big data—but will these data elements be safe from hackers? And what is the impact of the Internet of Things? Payton will explain how to harness the power of big data and build your big data to achieve business goals while adding in safeguards to fight cybercriminals. She’ll also explain how the Internet of Things may be the ultimate driver of global change.


General Session 2: The Influence of Culture on GRC

Richard F. Chambers, CIA, QIAL, CGAP, CCSA, CRMA
President and Chief Executive Officer

Internal auditors face many challenges in serving their organizations. Bringing a systemic and disciplined approach to enhancing governance, risk management, and controls is challenging enough in organizations with a strong tone at the top and healthy enterprise cultures. However, when the culture is toxic, the work of internal audit becomes much more complex.

In this session, attendees will:

  • Explore how an organization’s culture influences its governance, risk, and controls
  • Discuss internal audit’s role in considering the impact of organizational culture
  • Determine the factors that influence internal audit’s assessment of organizational culture



General Session 3: Panel Discussion: COSO ERM Framework Update

Moderator: Robert Hirth

Originally issued in 2004, the COSO ERM framework has been updated and released for public comment. Entitled Aligning Risk with Strategy and Performance, this revised framework builds on key foundational concepts developed in the original framework but provides new and important distinctions, improvements, and additions. Key individuals involved in the review process will present this session and take questions.

In this session, attendees will:

  • Gain valuable insight on the rationale for the revisiting the framework and the process undertaken to complete the update
  • Identify the key elements of the original framework being
  • Get a glimpse of new concepts and proposed significant changes
  • Learn how to get involved by participating in the public comment process


General Session 4: Agile Leadership: How to Lead Up, Across, and Down in a VUCA World

Andrew Tarvin

Wednesday, 24 August 2016

We live in a Volatile, Uncertain, Complex, and Ambiguous world. Strategies change frequently, businesses rise and fall overnight, and the only certainty is change.

Sunday, 21 August 2016


8:00AM - 8:30AM

Workshop Registration

8:30AM - 5:00PM

Pre-Conference Workshop 1: COBIT NIST Cybersecurity Framework

8:30AM - 5:00PM

Pre-Conference Workshop 2: Fraud Cases and Their Impact on Internal Audit

4:00PM - 6:00PM

Conference Registration and Customer Relations


Monday, 22 August 2016


7:00AM - 5:00PM

Conference Registration and Customer Relations

7:00AM - 8:30AM

Continental Breakfast and Networking

8:30AM - 9:45AM

General Session 1: Big Data and the Internet of Things: Boon or Bust for Your Cybersecurity Efforts?

9:45AM - 10:15AM

Networking Break

10:15AM - 11:05AM

CS 1-1: Cyber (In)Security
CS 1-2: Information Security: Not Just an Afterthought
CS 1-3: Transforming Internal Audit: The Digital Journey
CS 1-4: What's Trending Now? A Look at the Top Challenges Facing the Profession

11:05AM - 11:15AM

Session Change

11:15AM - 12:05PM

CS 2-1: Mandatory Convergence of IT Audits & Operational Audits
CS 2-2: The Intersection of IT and Audit by Leveraging COBIT 5
CS 2-3: Getting the Truth
CS 2-4: Models, Computing Tools, and Data: An Internal Audit Approach

12:05PM - 1:10PM

Lunch followed by dessert in the Exhibit Hall

1:10PM - 2:00PM

CS 3-1: Information Security From a Criminal Perspective
CS 3-2: Using the COBIT 5 Assessment Program to Improve the Work Process Capability
CS 3-3: Measuring Success: How to Show You Are Winning at Security (or Need More Money)
CS 3-4: Third-party Oversight

2:00PM - 2:10PM

Session Change

2:10PM - 3:00PM

CS 4-1: Five Practical Steps Toward Managing Cyber Risks
CS 4-2: COTS Acquisition: Buyers Are From Mars, Suppliers Are From Venus
CS 4-3: Rebranding Your Internal Audit Department
CS 4-4: How to Implement a GRC Solution

3:00PM - 3:30PM

Networking Break

3:30PM - 4:20PM

CS 5-1: Cybersecurity First Aid Kit: Steps to Recover From a Data Breach
CS 5-2: Continuous Control Monitoring at SAP
CS 5-3: The Five Tiers of Auditor Competency: How Do You Measure Up?
CS 5-4: The Rise of the Machines: Impact of AI on Audit and Assurance

4:10PM - 4:20PM

Session Change

4:20PM - 5:10PM

CS 6-1: Biting Off More than the Enterprise Can Chew – Is Cyber Security Assurance Achievable? Smart City as Context
CS 6-2: What Is Blockchain and What Are the GRC Implications
CS 6-3: Managing Your Personal Brand
CS 6-4: Build a World-class ERM Strategy by Utilizing Data Analytics

5:15PM - 7:00PM

Welcome Reception in the Exhibit Hall


Tuesday, 23 August 2016


7:30AM - 5:00PM

Conference Registration and Customer Relations

7:30AM - 8:30AM

Continental Breakfast and Networking

8:30AM - 9:45AM

General Session 2: Session Title TBD

9:45AM - 10:15AM

Networking Break

10:15AM - 11:05AM

CS 7-1: NIST Cybersecurity Framework Assessment
CS 7-2: A Three Dimensional View of the GRC Universe: Aligning GRC With the Business
CS 7-3: Influence Without Authority: The Impact of Your Actions
CS 7-4: Panel Discussion: COSO ERM Framework Update: What's Up?

11:05AM - 11:15AM

Session Change

11:15AM - 12:05PM

CS 8-1: Security Awarenes: What Compliance Should Look Like
CS 8-2: Using Analytics to Drive Better Ownership of Risks, Controls, and Issue Management
CS 8-3: Marketing the Audit Function
CS 8-4: Organizational Governance: Internal Audit’s Role

12:05PM - 1:10PM

Lunch followed by dessert in the Exhibit Hall

1:10PM - 2:00PM

CS 9-1: De-Identification, Re-Identification, and Anonymization of Personal Data
CS 9-2: Are You Effectively Performing Segregation of Duties (SOD) and Sensitive Access Assessments Over Your ERPs?
CS 9-3: Building Your Personal Brand
CS 9-4: Don't Go Topless on Risks

2:00PM - 2:10PM

Session Change

2:10PM - 3:00PM

CS 10-1: Digitization: What Is It? Why Is It Important to Internal Audit?
CS 10-2: Cloud Security and Privacy Audits: A 360 Degree Crash Course
CS 10-3: Moving the Needle From Police to Partner: Solutions to Help the Business Help Themselves When the Auditor Is Unavailable
CS 10-4: Keeping Good Company – Third Party Risk Management

3:00PM - 3:20PM

Networking Break

3:10PM - 4:00PM

CS 11-1: What Did We Learn From the Sony Hack Last Year? Improve Your Cybersecurity Paradigm Without Sacrificing Operational Expediency
CS 11-2: Protecting Databases From Unauthorized Access
CS 11-3: People-Centric Skills: Crisis Management
CS 11-4: Transforming the Fraud Risk Assessment: Assessment to Testing Model

4:00PM - 4:10PM

Session Change

4:10PM - 5:00PM

CS 12-1: Social Engineering: Is the Threat Real to Your Organization?
CS 12-2: Achieving Operational Integrity in the Automated Advisory and Trading Environment, Responding to Global Regulations Through Harmonization
CS 12-3: Step Up and Stand Out: Put Your Professional Brand on Display
CS 12-4: Finding the First Domino: The Key to Root Cause


Wednesday, 24 August 2016


7:30AM - 11:30AM

Conference Registration and Customer Relations

7:30AM - 8:30AM

Continental Breakfast and Networking

8:30AM - 9:45AM

General Session 3: COSO ERM Framework Update

9:45AM - 10:15AM

Networking Break

10:15AM - 11:30AM

General Session 4: Agile Leadership: How to Lead Up, Across, and Down in a VUCA World



2016 Conference Registration Fees

Our Conference Team is hard at work developing a world-class program and conference experience. Please check back for more information as it becomes available.

Early-Bird Registration

Register by Monday, 20 June 2016

US $1,295

Regular Registration

Register after Monday, 20 June 2016   

US $1,495

Your registration includes:

  • All general and concurrent sessions.
  • Welcome networking reception on Monday night.
  • Continental breakfast daily.
  • Lunch on Monday and Tuesday.
  • Conference app with presentations uploaded (when available from speaker).


Obtaining a VISA is solely the responsibility of the registrant. Please contact the local government of the host country for details. Once a paid registration is received, a letter of invitation will be provided by ISACA, on request. 

Group Discounts

Group discounts are available to organizations sending 4 or more employees to a single conference. Please contact the IIA for more details at +1.407.937.1111 or


Terms and Conditions

ISACA is pleased to co-host this event with The IIA. Please see The IIA’s Registration Terms and Conditions for information regarding the event and The IIA’s privacy policy for details on how The IIA stores and uses personal information that is collected by or provided them.

Cancellation Policy

If your plans change and you won’t be able to attend the conference contact The IIA at to cancel your registration. All cancellations must be received by 4 August 2016 to receive a refund of registration fees. A cancellation charge of US $495 will be subtracted from conference refunds. No refunds can be given after 4 August 2016.

Permission to be Photographed

By attending this event, the registrant grants permission to be photographed and videotaped during the event. The resultant photographs and videos may be used by ISACA for future promotion of ISACA’s educational events on ISACA’s web site, in social media and/or in printed promotional materials, and by attending this event, the registrant consents to any such use. The registrant understands any use of the photographs and videos will be without remuneration. The registrant also waives any right to inspect or approve the aforementioned use of any photographs or videos now or in the future.



2016 Venue and Accommodations

Diplomat Resort & Spa
3555 S Ocean Drive
Hollywood, FL 33019
Hotel Phone: +1.954.602.6000

Rooms are available at a special rate of US $209 per night for a single or double occupancy for reservations made before July 21, 2016. This price is based on availability.

Take in spectacular views of the Atlantic Ocean or the Intracoastal Waterway from Diplomat Resort & Spa Hollywood, a Curio Collection by Hilton. Ideally situated on the golden sand beaches of Hollywood, Fla., this impressive hotel offers the ideal retreat. Every day at our distinctively unique resort is memorable.

Additional Accommodations

Crowne Plaza Hollywood Beach
4000 South Ocean Drive
Hollywood, FL 33019
Hotel Phone: +1.800.315.2621

This hotel is approximately half a mile north of the event venue hotel. Rooms are available at a special rate of US $139 per night for a single or double occupancy. This price is based on availability. Reservations can be made online or by calling +1.954.454.4334.

Discounted Transportation to the Conference

Enjoy discounted travel to and from events. Airline discounts are valid for travel booked to occur three days before the event’s start date and three days post-conference.

For Delta Airlines, book online at and enter Meeting Event Code NMMG5 when searching for flights.

For United Airlines, book online at and enter Offer Code ZVJW299784 when searching for flights.

Diplomat Resort & Spa Special Hotel Information

Special hotel rates are available three days prior to and following the conference, and are subject to availability. To obtain the preferred rate, remember to mention that you are attending the 2016 GRC Conference. Reservation requests received after the cut-off date will be honored on a space-available basis only. All reservations must be guaranteed with a deposit of one night's room cost.

Individuals are responsible for securing their own deposit at the time reservations are made. ISACA strongly encourages all conference delegates to stay at the host hotel. Staying at the host hotel helps keep the cost of the conference and membership dues down by helping us fulfill our negotiated guest room commitments to the hotel. You will also enjoy the benefits of being onsite for conference activities at a reasonable price.

Cancellation Date/Policy: One-night room deposit (excluding taxes) is required at time of reservation. 3-day cancellation policy. If a reservation is cancelled within 3 days of arrival, the full deposit will be forfeited (non-refundable). If a reservation is reduced in length of the stay within the cancellation period, a penalty fee applies. All reservations require a valid credit card and picture identification at time of check in.

Thank you to our 2016 sponsors! 

For information about 2016 sponsor and exhibitor opportunities, please contact or call +1.847.660.5729.​


  Conference Bag Sponsor

  Conference Lunch Sponsor


  Mobile Application Sponsor

  Conference Name Badge Sponsor






For Exhibitor and Sponsorship Opportunities

Please contact: 

Sean Stringer
Director of Sponsorship
Phone: +1.847.660.5729
Fax: +1.847.253.1443

You are about to leave ISACA’s website to go to a third-party website.

That site may have a privacy policy and security measures that differ from ISACA’s website. ISACA is not responsible for the products, services or content on the third-party website. Please click the Register Now button to proceed to the third-party website.

Register Now



Contact ISACA's Training & Education Department:
Tel: +1.847.660.5670
Fax: +1.847.253.1443
Click here to submit a question.

Media Inquiries

Contact the ISACA Communications Department:
Tel: +1.847.660.5512 or

Please address Sponsorship questions to: