ISACA Research Initiatives

Slides:



Advertisements
Similar presentations
MASFAA Strategic Plan Mission Statement The Massachusetts Association of Student Financial Aid Administrators empowers its members to be educated,
Advertisements

Launching into Learning.
CUPA-HR Strong – together!
CUPA-HR Strong – together!
GETBA Strategic Plan 2013 – 2016 Prepared for Jane Tongatule By Jo Malcolm and Kate Berry.
WIIFM? The LAI and You LAI Action Plan: Promoting Libraries, Supporting Members Philip Cohen, Vice President.
CYPRUS UNIVERSITY OF TECHNOLOGY Internal Evaluation Procedures at CUT Quality Assurance Seminar Organised by the Ministry of Education and Culture and.
Pakistan Services Roadmap ~ Implementation Priorities.
Institute of Industrial Engineers State of the Institute Report Strategic Plan May 2013 Kim LaScola Needy Don Greene President Executive Director.
“Ensuring Employment Sector Service Excellence Across Communities” Carol Stewart Employment Sector Council London-Middlesex (ESCLM)
Strategy 2022: A Holistic View Tony Hayes International President ISACA © 2012, ISACA. All rights reserved.
AACE Goals Goals as identified by AACE’s Board of Directors for
Chapter © 2009 Pearson Education, Inc. Publishing as Prentice Hall.
CIPE ECONOMIC REFORM ROUNDTABLE : PRESENTATION GUIDELINES Date : June 19 th - 21 st, 2008 M. Majdi HASSEN,The IACE (Institut Arabe des Chefs d’Entreprises)
FGFOA Annual Conference
ISACA Research Update Robert Foster Research Director, ISACA Northern England Chapter.
SHRM Overview for AmChams AACCLA Conference October 19, 2011.
TURKISH INSURANCE INSTITUTE. Contents  TII’s foundation  Institutions that are cooperated with  Institutions to which services are provided  Services.
Improving the world through engineeringwww.imeche.orgImproving the world through engineering 1 Strategic objective2011 Budget3 years 5 years/beyond Target.
ISACA Wellington: 2014 Strategy. Background ISACA’s vision: Trust in, and value from, information and information systems ISACA’s mission: For professionals.
Strategic Alliances: The Vital Link Between the National Association for Health Care Recruitment and the State Chapters Terry Bennett, RN, MS, CHCR Director.
BUSINESS & HUMAN RIGHTS UniCredit on its sustainability path: understanding and managing the financial sector’s responsibilities in terms of human rights”
{ FBLA Competitive Events Spring  To prepare students for successful careers in business, these events assess students in the various knowledge,
© ITGI, ISACA - not for commercial use. John R. Robles Guidance for Information.
© 2007 ISACA ® All Rights Reserved DAMA-NCR Chapter Meeting March 11, 2008.
1 Homologues Group Meeting Slovenia, October 2009 Republika SlovenijaEuropean Union Ljubljana, October 2009 Introduction to IT audits PART II IT.
Student engagement International Centre for Genetic Engineering and Biotechnology, Trieste (Italy) Developing knowledge.
Learn. Lead. Connect. AHRMM Delivers the Tools to Bridge the Gap.
The Institute of Internal Auditors
THE HR APPRENTICERICHMOND THE HR APPRENTICE RICHMOND Marvelous Membership Mavericks.
Members Meeting WINGSForum 2014 March 29, 2014 Istanbul, Turkey
OWASP Intra- Governmental Affairs David Campbell Denver Chapter Puneet Mehta Delhi Chapter.
Institute of Industrial Engineers State of the Institute Report Presented at 2014 Annual Conference June 1, 2014 Dennis Oates Don Greene President Executive.
Cybersecurity nexus (CSX)
Professional Standards Committee and Frameworks for IT Audits
BITS Proprietary and Confidential © BITS Security and Technology Risks: Risk Mitigation Activities of US Financial Institutions John Carlson Senior.
Service Coordination Client Service Referral Process to Available EO Services.
©SHRM 2008 Pennsylvania State Leadership Conference Phyllis Shurn-Hannah NE Field Services Director (DE, MD, NJ, PA)
Essential Enterprise IT Governance with COBIT®5 Date: 7 th and 8 th October 2015 Time: 9 am to 5.30 pm Venue: Iverson Associates, Center Point Bandar Utama,
Building Superior Membership and Accreditation Value MAACBA Annual Meetig New Brunswick, NJ October 17, 2014.
UK & Ireland Chapter Business Plan. VISION To build a rich meeting and events community within the UK and Ireland.
The Value of AGA Membership. Are You Connected?  AGA CONNECTS YOU WITH  Networking Opportunities  Education and Training  Professional Certification.
Overview of COBIT5 and Impact on Local Content for IT By Mrs Tokunbo Martins Director Banking Supervision (Central Bank of Nigeria)
Consolidation and Review of Financial Services Legislation (“ CAROL ”) Jane D N Bates Head of Policy and Legal Unit Financial Supervision Commission 21.
FGFOA STANDING COMMITTEES Established and Evaluated by the FGFOA Board of Directors to Utilize talent and resources of the FGFOA Membership.
Disaster Recover Planning & Federal Information Systems Management Act Requirements December 2007 Central Maryland ISACA Chapter.
Take Charge of Change MASBO Strategic Roadmap Update November 15th, 2013.
Catawba County Board of Commissioners Retreat June 11, 2007 It is a great time to be an innovator 2007 Technology Strategic Plan *
More CPE than ever before – an ISACA benefit 20 x 20’’ Presentation Ioannis Lefkakis, CISA, CFE, CRISC ISACA Athens Chapter President & Certifications.
Shared Assessment Committees Update ©2012 The Shared Assessments Program. All Rights Reserved.
Globaliia.org From Dubai to Beijing (How we use your GC input) Anton van Wyk, Chairman of the Board.
The New IPPF: What to Know and What Does It Tell Us?
2010 Holiday Luncheon Chapter Update Jay Adams, President.
Globaliia.org Capacity Building Phil Tarling, Past Chairman of the Board.
Technology Plan SMITA PIMPLAPURE Final Project Technology and Educational Restructuring December 11, 2003.
Institute of Internal Auditors New Zealand IIA NZ Global and Local Happenings.
Supporting Communities Strategic Plan Background to Supporting Communities Supporting Communities NI (SCNI) was set up in 1979 as a small estate.
ISACA: 2016 AND BEYOND MATT LOEB (CGEIT, CAE) ISACA CHIEF EXECUTIVE OFFICER.
1 Office of ASG/CITO Crisis Information Management Strategy UNGIWG-11, Geneva 15 March 2011 A written consent by the UN is required to use the information.
MS in IT Auditing, Cyber Security, and Risk Assessment
IS4680 Security Auditing for Compliance
Professional Certificate in Supply Chain Management
Information Systems Audit and Control Association
Wyoming association of sheriffs and chiefs of police
HPH Strategy Seminar Beijing, China 7 september 2013 Andrea Limbourg
Shared Assessment Committees Update
ACTION PLAN Texas Association for Bilingual Education
FGFOA Committees Established and evaluated by the FGFOA Board of Directors to utilize talent and resources of the FGFOA membership.
ISACA IN 2019 Robin Lyons WHAT’S NEXT, NOW Technical Research Manager
Presentation transcript:

ISACA Research Initiatives Presented by Shannon Donahue, PhD, CISM sdonahue@isaca.org 1

Practical & Pragmatic Guidance 2 2

GPC The Guidance & Practices Committee (GPC) is responsible for developing practical and pragmatic guidance for ISACA’s constituents related to ISACA’s frameworks, emerging technologies and other issues that are relevant to members. 3 3

GPC Deliverables Creating a Culture of Security Builds upon ISACA’s Business Model for Information Security (BMIS) to examine how culture impacts information security Provides practical advice on how to influence an enterprise culture 4 4

GPC Deliverables IT Control Objectives for Cloud Computing Explores security, risk and assurance issues in Cloud Provides mapping to Cloud Computing to COBIT 4.1 5 5

GPC Whitepapers Cloud Computing: Business Benefits with Security, Assurance and Governance Perspectives Available at www.isaca.org Also available is a webcast focusing on the whitepaper 6

White Papers Issued in 2011-2012 Electronic Discovery Sustainability Leveraging XBRL for Value Data Analytics – A Practical Approach Geolocation: Risk, Issues and Strategies Mobile Payments: Risk, Security & Assurance Issues Guiding Principles for Cloud Computing Adoption and Use Incident Management and Response Virtualized Desktop Infrastructure (VDI) Calculating Cloud ROI Currently there are 19 white papers available at www.isaca.org/research 7 7

Guidance and Practices Cloud Projects IT Control Objectives for Cloud Computing – Issued July 2011 Guiding Principles for Cloud Computing – Issued March 2012 Governance of IT for Cloud Computing – in development Cloud Vision Series Security in the Cloud – September 11, 2012 ROI in the Cloud –July 2012 Vendor Management in the Cloud Q2 2013 8 8

Audit Programs The GPC is responsible for creating audit programs. There are over 30 audit programs which are free for members. Some topics include: IPv6 Security Audit / Assurance Audit Program VOIP Audit / Assurance Program Microsoft Exchange Server 2010 Audit / Assurance Program Microsoft SharePoint 2010 Audit / Assurance Program VMware Server Virtualization Audit / Assurance Program Social Media Audit / Assurance Program 9 9

Security, Audit & Control Features Series Security, Audit and Control Features PeopleSoft, 3rd Edition focuses on the attributes and incremental functionality in the most recent version of PeopleSoft Audit / assurance program and internal control questionnaire available as a download to members www.isaca.org/research Others in series include: Oracle Database 3rd Edition SAP ERP 3rd Edition Oracle E-Business Suite 3rd Edition 10 10

Guidance and Practices Future Projects 11

What other questions do you have? Questions For You What topics would be on your list? Can you/your staff/your chapter provide resources (SMEs) to help? Do you know about the Chapter Research Directors? What other questions do you have? 12

Successful Delivery of the Basic Membership Benefits 2012 Europe/Africa Leadership Conference, Munich, Germany, 8-9 September Successful Delivery of the Basic Membership Benefits Sue Milton, President, London Chapter 13

2012/13 Benefits Strategy Objective: to engage with the wider ISACA London Chapter membership through benefit provision, thereby encouraging greater membership retention. 14

Demographics 4th September 2012 (8th): Membership total: 2641 (2661) CISA: 1391 (1401) CISM: 484 (488) CGEIT: 80 (81) CRISC: 320 (323) Events attract 100 – 120. Exam revision: 6 -12 people at each session. Demographics 15

Proposal for 2012/13 Events Stream 1: Monthly Thursday events. Longer sessions for 1.5 CPEs so minimum requirement of 20 CPEs more easily achievable. Stream 2: introduce a series of events at Canary Wharf, London’s 2nd financial centre now employing more staff than the City. 16

Introduction to the GRA – SC Government Regulatory Advocacy Sub-Committee 17

What is ISACA? Vision and Mission “Trust in, and value from, information and information systems” ISACA’s vision (to aspire to as an organization) ISACA’s mission (to guide decision making and investments) “For professionals and organizations be the leading global provider of knowledge, certifications, community, advocacy and education on information systems assurance and security, enterprise governance of IT, and IT-related risk and compliance” 18

What does ISACA do? Respected Professional Credentials 19 70,000+ CISAs certified since inception in 1978 12,000+ CISMs certified since inception in 2003 4,000+ CGEITs certified since inception in 2007 10,000+ CRISCs certified since inception in 2010 19

ISACA Member Benefits Professional Development Research and Knowledge Opening the door to thought leadership, research and knowledge Journal (free CPE) Research publications (many free to members!) COBIT 4.1 Val IT Risk IT ITAF BMIS COBIT mappings COBIT Security Baseline 2nd Ed. Interactive Web site Audit programs and ICQs Research and Knowledge Local Chapters Connecting you with a global community of nearly 100,000 Community & Leadership Increasing your value advancing your career Providing a local network of professionals E-Library E-Symposia and Virtual Trade Shows (VTS) (free CPE quizzes) and Webcasts Career Centre CISA, CISM, CGEIT, CRISC discounts Mentoring (free CPE) Reduced certification maintenance fees Conference/training discounts Bookstore discounts Networking Leadership opportunities at local and global level Enhanced online communities via new ISACA web site Low-cost education In person training Exam preparation Business and social events Engage with people who understand your professional needs

What does the GRA do? Key Responsibilities 2012 Focus Increase ISACA’s visibility by promoting ISACA member’s credibility and capability, value of ISACA’s certifications, and robustness of COBIT and all knowledge products, including professional development On behalf of ISACA, monitor, coordinate and potentially respond to regulatory and/or legislative issues that may impact ISACA members and certification holders professionally. 2012 Focus National Audit Bodies Reserve banks and financial services regulators Agencies focused on Cyber Security, Privacy and Forensics National Workforce and IT Skill Development Communicate Subcommittee activities and opportunities for regulatory and legislative advocacy to ISACA Chapter leaders and members What does the GRA do? 21

IT Audit Regulation in Turkey Kaya Kazmirci, CISA, CISM Chapter President Assoc. Prof. Dr. İzzet Gökhan Özbilgin, CRISC Government Relations Director Leadership Conference Munich, 8.9.2012

IT Audit Regulation Banking Regulatory and Supervision Agency Capital Markets Board of Turkey Turkish Court of Accounts Information Technology and Communication Agency Republic of Turkey Prime Ministry Undersecretariat of Treasury

Banking Regulatory and Supervision Agency www.bddk.org.tr Regulation on IS Audit to be made in banks by independent audit institutions (published in the Offical Gazette dated December 5, 2006) Comminique on the report format of IS Audit Mandates statutory CobiT compliance for banks (1st in Europe, maybe in the world)

Banking Regulatory and Supervision Agency Article 19 says ¨each control object realized in the scope of articles written in regulation is evaluated in compliance with the methods in the framework of CobiT ¨

Capital Markets Board of Turkey www.spk.gov.tr Regulations based on CobiT, ISO 27001. IT Audit is implemented periodically in organizations regulated by CMB (i.e. İstanbul Stock Exchange, Central Registry Agancy) Regulation on IS Audit for the brokerage houses implementing foreign exchange

Other institutions Turkish Court of Accounts www.sayistay.gov.tr Information Technology and Communication Agency www.btk.gov.tr Republic of Turkey Prime Ministry Undersecretariat of Treasury www.treasury.gov.tr

Communities Committee and Knowledge Center Overview 2012 Europe/Africa Leadership Conference Miroslaw Kalinski, CC member, ISACA Warsaw chapter 28

Communities Committee Charge: Identify and support activities to encourage the development of ISACA communities. Analyze community characteristics of all visitors to the web site to identify community interests or opportunities to develop communities based on characteristics such as language, geography, etc. Identify online communities outside website and determine response. Assist boards, committees and task forces to identify communities that may support project or program initiatives. Develop programs to create and support communities. Develop criteria to evaluate Communities Committee program activities and report progress to the Relations Board. 29

The Objective is Participation…. …the Goal is Community The Knowledge Center The Objective is Participation…. …the Goal is Community How do you secure the cloud? I need an audit program 30

Total and Unique Members As of 1 September 2012 © 2012 ISACA. All rights reserved - Confidential 31

Resources and Collaboration The Knowledge Center houses all of ISACA’s research deliverables as well as topic-based communities. Resources and Collaboration 32

Knowledge Center Topics 33

© 2012 ISACA. All rights reserved - Confidential 34 34

THANK YOU!!!!!

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.