2016/17 Monthly Education Sessions

Building Enterprise Security in the Millennial Age (Earn 2 CPEs)

Date: September 28, 2016
Time: 12:00pm-2:00pm
Cost:ISACA Members - $25; Future Members - $30; Students - $20 (Students - Please bring valid student ID)

Light lunch is included.

Location: NYIT, 701 W Georgia St #1700 – Jordan room (NYIT is located at the intersection of Georgia & Granville)

We are really excited to kick off our monthly lunchtime education events with a fantastic presentation by Dominic Vogel. Dominic is a Cyber Security leader and public speaker in Vancouver. We are lucky to have him present this topic ahead of his talk at the ISACA CSX Conference in Las Vegas later this year.

Presentation overview: Security is not rocket science! Developing an effective and efficient enterprise security program starts with strong culture and risk communication. Ditch the old school security ways and embrace the millennial approach.

Speaker overview: Dominic has an established track record as a business security leader in forming positive security cultures. He has a wide-range of experience having served critical roles overseeing numerous projects including security strategy development, policy development, endpoint security, and threat management in a multitude of industries (financial services, logistics, transportation, government, telecommunications, and critical infrastructure). Dominic frequently appears on TV and radio to discuss topical cyber security news.

Please register by choosing the appropriate web parts towards the right.

*  *  *  *  *  *  *  *  *  *

CISA® 1-day Cram Course (FREE to ISACA Members)

Date: Saturday, 15 October 2016
Cost: FREE TO ISACA Members (Earn 8 CPEs)
Location: Cisco Systems Canada - 21st floor, 595 Burrard Street, Vancouver , BC

The ISACA Vancouver Chapter is sponsoring a 1-day intense CISA® Cram Course. The course is designed to provide an overview of the exam, including domains, format, structure and the exam approach. Learn specific strategies, techniques and tips for taking and passing the exam. Understand the various topics and technical areas covered by the exam. The session includes lecture, group discussion and practice questions to prepare you for the exam. Participants should already have a good knowledge of the domains and materials being tested, to get maximize value from the session.

* Refreshments and lunch can be bought from the nearby shops. There will be short breaks throughout the day, and time for lunch.

For more details and to Register: Please click here to register.

*  *  *  *  *  *  *  *  *  *

Cybersecurity Nexus Fundamentals training course

The ISACA Vancouver chapter would like to extend an invitation to all our members for our upcoming Cybersecurity Nexus Fundamentals training course on October 1 and 2, 2016. Limited spots are still available for this free course!

Date:October 1 and 2, 2016 (Saturday and Sunday)
Time:8:30 am to 4:30 pm on both days
Cost: Free
Location: Deloitte Learning Centre - 1055 Dunsmuir Street, 26th Floor

Please e-mail Don Reyes ( if you are interested in attending to receive the Eventbrite invitation.

NOTE: This is a complimentary course at no cost. Due to high demand, by registering, you are confirming your attendance. Individuals who have registered and do not attend (i.e. no-shows) will be charged for the course.

Course Overview:
The Cybersecurity Fundamentals Course will provide learners with principles of data and technology that frame and define cybersecurity. Learners will gain insight into the importance of cybersecurity and the integral role of cybersecurity professionals. The interactive, self-guided format will provide a dynamic learning experience where users can explore foundational cybersecurity principles, security architecture, risk management, attacks, incidents, and emerging IT and IS technologies. The course will cover strategy and techniques for passing the exam.

Learning Objectives:
• Explain the core information assurance (IA) principles
• Identify the key components of cybersecurity network architecture
• Apply cybersecurity architecture principles
• Describe risk management processes and practices
• Identify security tools and hardening techniques
• Distinguish system and application security threats and vulnerabilities
• Describe different classes of attacks
• Define types of incidents including categories, responses and timelines for response
• Describe new and emerging IT and IS technologies
• Analyze threats and risks within context of the cybersecurity architecture
• Appraise cybersecurity incidents to apply appropriate response
• Evaluate decision making outcomes of cybersecurity scenarios
• Access additional external resources to supplement knowledge of cybersecurity

Refreshments and lunch can be bought from the nearby shops. There will be short breaks throughout the day, and time for lunch.

*  *  *  *  *  *  *  *  *  *

COBIT 5 Assessor for Security Course (Earn 16 CPEs)

Date: December 1 - 2, 2016
Time: 8:30am-5:00pm
Cost:$650 CAD (optional exam $350 USD extra)

Location: Deloitte, 2800-1055 Dunsmuir St, Vancouver, BC

COBIT 5 Assessor for Security course provides a basis for assessing an enterprise’s IT process capabilities against the COBIT 5 Process Assessment Model (PAM). The COBIT 5 Assessor course Evidence-based to enable a reliable, consistent and repeatable way to assess IT process capabilities, this model helps IT leaders gain C-level and board member buy-in for change and improvement initiatives. Assessment results provide a determination of process capability. They can be used for process improvement, delivering value to the business, measuring the achievement of current or projected business goals, benchmarking, consistent reporting and organizational compliance. You can apply to become a COBIT Certified Assessor after taking this course and successfully passing the exam and the COBIT 5 Foundation exam. COBIT 5 Certified Assessors have demonstrated experience in planning, building, running and/or monitoring IT processes.

Participants are highly recommended to read: “The Assessor Guide: using COBIT 5” and “The Process Assessment Model (PAM): Using COBIT” available on

Target Audience:

Internal and external auditors
IT auditors
IT consultants
IT management
Cybersecurity & Information Security professionals

At the conclusion of this course, attendees will understand

How to perform a process capability assessment using the Assessor Guide: using COBIT 5
How to apply the Process Assessment Model (The PAM) in performing a process capability assessment Specifically:

To use the Process Reference Model, in particular to be able to use the 37 processes outlined in the PRM
To apply and analyze the measurement model in assessing process capability levels
To apply and analyze the capability dimension using generic criteria outlined in the PAM
How to identify and assess the roles and responsibilities in the process capability assessment process
How to perform and assess the 7 steps outlined in the Assessor Guide Specifically:

Initiate a process assessment
Scope an assessment, using the tools provided and the PAM for the selection of the appropriate processes
Plan and brief the teams
Collect and validate the data
Do a process attribute rating
Report the findings of the assessment
How to use the self-assessment guide

Course Outline

• Course Introduction
• COBIT 5.0 Overview, Principles, Goal Cascade recap
• Recap of Process Assessment Model ( PAM)
• Roles, responsibilities and Competencies
• Initiate an Assessment
• Scope an assessment
• Plan an assessment
• Brief to the team
• Data Collection
• Data Validation
• Process Attribute Rating
• Assessment Reporting
• Sample exam
• Exam (Optional)

Exam Details

· Objective testing
· 8 questions per paper with 10 marks available per question (80 questions)
· 40 marks or more required to pass (out of 80 available) - 50%
· 2 ½ hours duration ( Non-native English speaking delegates will receive additional 40 Minutes)
· Open book, Using COBIT 5 books only. (‘COBIT 5 Assessor Guide: Using COBIT 5’ and ‘Process Assessment Model: Using COBIT 5’ ).

More Information can be found here.

 Cancellations/Transfers & Refunds

All cancellations/transfers must be received in writing - please send an email to Telephone or verbal cancellations/transfers will not be accepted. Cancellations or transfers of registration at least 10 calendar days prior to the course will result in a full refund. Cancellations or transfers received less than 10 calendar days but more than 3 full* business days prior to the course are subject to an administration fee of $50 for full and half day courses, or $25 for executive breakfasts and luncheons, or hold on credit for use towards a future event.

Cancellation requests received less than 3 full business days prior to the course date (statutory holidays are not considered business days) will not be accepted and the full cost of the seminar will apply, with no credits or refunds. No-shows, registrants who register but do not show up for a seminar will also be responsible for the full cost of the seminar, with no refunds or credits. In such cases, substitution of attendee is permitted up to and including the day of the seminar.