2018 Conference Program

As the program is developed, we will continue to add information to this page – check back frequently for updates!

2017 presentations and workshops

Topic Areas for 2018

The North America CACS Conference is the premier conference for Audit/Assurance, COBIT, Compliance, Risk, Security, and Strategy/Governance professionals. This year’s program will include sessions on:

• IS Audit & Assurance
• Security/Cyber Security
• Integrated Risk Management
• Big Data, Data Analytics & Visualization
• COBIT 5
• Career & Communications Management
• Industry Focused Sessions
• Industry Trends & Insights

2017 Keynote Speaker Recap

Check back to re-live our incredible opening 2017 keynote speaker! The recording of the session will be posted here soon.

The Importance of Hard Problems

Brent Bushnell
CEO of Two Bit Circus, a Los Angeles-based experiential entertainment company.

In this high-energy talk, Brent will dive deep into why the only problems worth solving are the hard ones. One part carny irreverence, one part futuristic fun, and one part change the world, you won’t want to miss it!

View 2017 Keynote

Most recently Bushnell's team launched STEAM Carnival, a modern re-imagining of the midway to inspire kids about science, technology, engineering, art and math. Previously, he was the on-camera inventor for the ABC TV show Extreme Makeover: Home Edition. He is a cofounder of Anti-Aging Games creating casual games to reduce the risk of early memory loss, and a founding member of Syyn Labs, a creative collective combining art and engineering to create high engagement for large brands and brands including Google and Disney, and responsible for the viral hit Rube Goldberg music video for OK Go that garnered 40 million views on YouTube. In his spare time, Brent mentors teens in game development and entrepreneurship via programs such as Spark and NFTE.

2017 Top-Rated Speakers

Congratulations to the following speakers who were rated in the top 5% at the North America CACS 2017 Conference.

According to our post-conference survey results, these speakers were all rated 4.75 or higher (on a 5-point scale) by the attendees of their sessions. Minimum of 20 survey responses required to qualify.

Robert Findlay
SCADA and IoT

McKell Gomm, CISA
Audit & Security: Combating Emerging Threats

Rex Johnson & Alan Gutierrez-Arana
PCI Data Security Standard: Dealing with the challenges of evolving standards

Adam Leigh, CISA, CISM, CGEIT, CRISC
Consequences That Matter - IT Risk

Alejandro Mijares, CISA, CRISC
Cybersecurity: Threat to Banks

Paul Phillips, CISA, CISM
Tips for Effective Presenting

Glenn Wilson
Hackers & The Crown Jewels – How to Fight the Good Fight

Lisa Young, CISA, CISM
A Risk-based Approach to Data Governance

New Ideas

Do you have a topic that is not mentioned above that you think should be offered at this conference? We want to know! Tell us about it by submitting your idea on Twitter using #NACACS!

Workshops

Space will be limited for these workshops, so be sure to reserve your spot and register today!

2-Day Workshops; Pre-Conference (14 CPE)

Saturday, 28 April | 9:00AM – 5:00PM
Sunday, 29 April | 9:00AM – 5:00PM

• WS1-COBIT 5 Foundation
  Learn the importance of an effective framework to enable business value. Delve into the elements of ISACA’s evolutionary framework to understand how COBIT 5 covers the business end-to-end and helps you effectively govern and manage enterprise IT. Developed for anyone interested in obtaining foundation-level knowledge of COBIT, the course explains the COBIT framework and supporting materials in a logical and example-driven approach.
• WS2-Cybersecurity Fundamentals
  Why become a cybersecurity professional? The protection of information is a critical function for all enterprises. Cybersecurity is a growing and rapidly changing field, and it is crucial that the central concepts that frame and define this increasingly pervasive field are understood by professionals who are involved and concerned with the security implications of Information Technologies (IT). The CSX Fundamentals workshop is designed for this purpose, as well as to provide insight into the importance of cybersecurity, and the integral role of cybersecurity professionals. This workshop will also prepare learners for the CSX Fundamentals Exam.

1-Day Workshops; Post-Conference (7 CPE)

Wednesday, 2 May | 1:30PM – 5:00PM; continued on
Thursday, 3 May | 9:00AM – 12:30PM

• WS5-Cybersecurity for Auditors 
  Cybersecurity focus is a requirement for any organization today, but how can a company know and understand what their cybersecurity posture is?  A strong cybersecurity audit program with qualified, capable auditors and a robust work program or standard is a must.  During this workshop, we will dig into the details of cybersecurity audit.  We will evaluate the ISACA NIST Cybersecurity Framework Audit Work Program as well as various cybersecurity frameworks and tools including the NIST Cybersecurity Framework and the FFIEC Cybersecurity Assessment Tool.

COBIT 5 Foundation Exam

Monday, 30 April 2018

• Earn the COBIT 5 Foundation Certificate!
  Attendees can take the Foundations Exam for an additional US $150! The COBIT 5 Foundation Exam will take place on Monday, 30 April 2018.

Registration and Payment Policy

Registration submissions for this conference and any additional workshops are not processed, and a seat is not confirmed or reserved, until full payment is received. All submissions not paid in full will be placed on a waitlist and priority will be given to paid registrants in a payment first-come, first-serve basis. Space is limited, so it is highly recommended that payment is provided at the time of submission to guarantee a seat within the conference and all related events.

Registration rate is determined by the date payment is received by ISACA HQ and current membership status. Please plan accordingly, as it may take 10 or more business days for a wire transfer or mailed check to reach ISACA. Should we receive payment after a registration rate deadline, your account will be adjusted to reflect the current due amount. Entrance to the conference and all related events is contingent upon full payment.

Discounts for the Conference are available, detailed below. In order to verify eligibility for any of these discounts, please contact https://support.isaca.org or +1.847.660.5670. Note that discounts cannot be credited to you after the transaction has been completed.  All discounts are applied to the main conference registration fee, and cannot be applied to workshop registrations. 

RSA Business-Driven Security™ solutions help customers comprehensively and rapidly link security incidents with business context, enabling them to respond effectively and protect what matters most. Our award-winning solutions for threat detection and response, identity and access assurance, consumer fraud protection, and business risk management help RSA customers thrive in an uncertain, high-risk world.

Vanguard Integrity Professionals provides enterprise security software and services that solve complex security and regulatory compliance challenges for financial, insurance, healthcare, education, transportation and government agencies around the world. Vanguard provides Cybersecurity Solutions Securing any Enterprise. The world’s largest Financial, Insurance, Government Agencies and Retailers entrust their security to Vanguard Integrity Professionals. Vanguard is committed to protecting and securing the Cloud, zOS Security Server and Enterprise environments. Vanguard provides 24/7/365 live customer support from the United States of America.

Make it an Experience. Only Adobe gives everyone — from emerging artists to global brands — everything they need to design and deliver exceptional digital experiences. It doesn’t matter if you’re a designer, a marketer, a publisher, or a master storyteller. We empower anyone with an idea with the tools and the insight to transform reality. We help create experiences that make a difference and truly matter.

Deloitte’s Information Technology Internal Audit (IT IA) services help clients extend their internal audit oversight and performance, addressing IT risks as well as broader organization-wide business risks. Deloitte helps connect IT and IA to gain a greater understanding of the risks and opportunities that come with today's systems, applications and other technologies. Our focus on emerging IT audit, security, governance and risk issues—combined with our extensive industry experience—can better enable you to navigate IT challenges, manage organization-wide risks and elevate the role of IA.

Organizations can achieve tangible benefits from emerging technologies such as connected and mobile devices, social media, robotic process automation, 3-D printing or cloud computing. But in doing so, they must recognize the risks that can accompany these disruptive technologies. KPMG’s Emerging Technology Risk practice helps clients recognize and responsibly manage these risks enabling the achievement of benefits. We do this by aligning our partners and professionals with distinct technology skill sets and capabilities with industry-leading methodologies and processes, enabling us to help our clients navigate the challenges from adopting these technologies. https://advisory.kpmg.us/risk-consulting/itas/emerging-technology-risk.html

Protiviti is a wholly owned subsidiary of Robert Half International Inc. (NYSE symbol: RHI). Founded in 1948, Robert Half, the world's first and largest specialized staffing firm, is a member of the S&P 500 index. The company places professionals on a project and full-time basis in the fields of accounting and finance, technology, office administration, legal support and creative services. For 2016, Robert Half reported revenues of over $5.25 billion and now has staffing and consulting operations in more than 400 staffing and consulting locations worldwide.

About PwC
At PwC, our purpose is to build trust in society and solve important problems. We’re a network of firms in 157 countries with more than 223,000 people who are committed to delivering quality in assurance, advisory and tax services. Find out more and tell us what matters to you by visiting us at www.pwc.com.

PwC refers to the PwC network and/or one or more of its member firms, each of which is a separate legal entity. Please see www.pwc.com/structure for further details.

© 2017 PwC. All rights reserved.

RedSeal’s network modeling and risk scoring platform is the foundation for enabling enterprise networks to be resilient to cyber events. RedSeal helps customers understand their network from the inside out – providing actionable intelligence, situational awareness and a Digital Resilience Score to help enterprises measure and improve their resilience. Government agencies and Global 2000 companies around the world rely on RedSeal to help them improve their overall security posture, accelerate incident response and increase the productivity of their security and network teams. Founded in 2004, RedSeal is headquartered in Sunnyvale, California and serves customers through a direct and channel partner network.

www.saiglobal.com

CyberArk is the only security company that proactively stops the most advanced cyber threats – those that exploit insider privileges to attack the heart of the enterprise. The company has pioneered a new category of targeted security solutions to lock down privileged accounts and protect against cyber threats before attacks can escalate and cause irreparable business damage. CyberArk is trusted by the world’s leading companies – including more than 45 of the Fortune 100.

Maclear provides proprietary, award winning, comprehensive enterprise governance, risk and compliance (eGRC) solutions. Our core capabilities cover governance, risk and compliance management software, services and advisory. Our integrated holistic approach to eGRC helps drive efficiency, effectiveness and agility for our clients by minimizing risk and compliance threats, enabling process improvement, fostering collaboration and facilitating automation.

Saviynt is a leading provider of Cloud Security and Identity Governance solutions. Saviynt enables enterprises to secure applications, data and infrastructure in a single platform for Cloud (Office 365, AWS, Salesforce, Workday) and Enterprise (SAP, Oracle EBS, Epic, Cerner). Saviynt delivers IGA 2.0 by integrating advanced risk analytics with fine-grained privilege management. www.saviynt.com

SecZetta redefines the identity perimeter by putting identity first. As a recognized leader in both Identity Lifecycle Management and Identity and Access Management Software and Services, SecZetta provides the most comprehensive solutions to addressing employee and non-employee identity lifecycle. With products built to fill the gaps in IGA products' identity life cycle capabilities, SecZetta provides software to gain full visibility of global identities and true management and control of nonemployee lifecycle and risk.

SSH Communications Security is a leading provider of enterprise cybersecurity solutions which monitor, control, and automate trusted access to critical data. Our technology secures the infrastructure of the modern digital world and runs in over 90 percent of all data centers. Customers worldwide trust our other solutions to manage and monitor access, while greatly reducing costs, time, and compliance risks. We have offices in North America, Europe and Asia and through a network of certified partners.

Capital One^® is a bank and credit card company, but at our core we’re building a leading information-based tech company. Whether it’s rapidly adopting the latest, innovative techniques possible or recruiting high-level talent we’re on a mission to help our customers succeed by bringing ingenuity, simplicity, and humanity to banking.

Qualys, Inc. is a pioneer and leading provider of cloud-based security and compliance solutions with over 9,200 customers in more than 100 countries. The Qualys Cloud Platform and integrated suite of solutions help organizations simplify security operations and lower the cost of compliance by delivering critical security intelligence on demand.

R-CAP™ Audit Life-Cycle and Risk Management Solution leverages on the latest technology and brings Audit Universe & KPIs at your fingertips by offering Mobility, Collaboration & Smart Editing. R-CAP features include: Observations Tracking, Risk & Controls Matrix, Regular Business Monitoring, Audit Timesheet Management, Insightful Dashboards & Reports, and Efficient Workpaper Documentation.

www.servicenow.com