 |
Hello all, and welcome to fall (finally)! Although my "no travel" job had me traveling last month and I was unable to attend the first meeting, those that attended made it clear that ALL of us that did not attend missed a great meeting. Our October meeting next week brings us together with the Dallas Chapter of the Association of Certified Fraud Examiners (ACFE) for our annual joint meeting and of course will focus on fraud. I always leave this meeting with a higher sense of auditing skepticism as it seems there is often something going on behind the scenes that just one more question would have uncovered. More details are below, but let me leave this topic with just one word: REGISTER, REGISTER, REGISTER. Just a reminder that registration is also open for several other learning opportunities. First, there is our fall seminar covering Active Directory and Windows Auditing. Or for those looking to add a technical certification to their toolbox, we are offering a 5 day CISSP Boot Camp. Finally, the review courses to help prepare for the CISA and CISM exams are now open for registration. Details and registration for all these courses can be found on the Current Events page of our website. Stay tuned to our Chapter Website and your email inbox for all the North Texas Chapter ISACA News. We hope to see each of you at the monthly meeting! Thanks and Take Care. |
|
Marvin Reader, CISA |
October 13, 2011 - Luncheon Meeting Agenda
This month, our Luncheon Meeting is back at Cityplace (map), and is hosted jointly with the Dallas Chapter of the Association of Certified Fraud Examiners (ACFE). Not surprisingly, presentation topic will focus on Fraud -- identifying, rectifying, preventing, and several interesting examples of fraud encountered in recent months.
You have until noon on Wednesday, October 12th to register for this meeting. In the event you are unable to attend after you've registered, please contact reservations@isacantx.org for assistance with canceling your reservation. This will help us keep our event registration fees reasonably priced.
|
Pre-Luncheon Session - 10:30 AM - 11:30 AM Learn how to use Computer Assisted Audit Techniques and technology to identify fraud more effectively. Understand what challenges are related to accessing/obtaining the source data? Is there greater benefit from examining 100%, rather than a sample of data? What is “Profiling” and how does that allow the data to lead you to the evidence? What standards and risks are there which must be met and addressed when performing this type of analysis? Attendees will learn:
Pre-Luncheon registration begins at 10:00 AM. Luncheon Session - 12:20 PM - 1:20 PM Define data analytics and discuss the potential benefits of using data analytics in a fraud investigation. Provide some suggested practices to request, load, and analyze data for an investigation, as well as present findings and results. Attendees will learn about:
Lunch registration begins at 11:15 AM. Lunch is served at 11:45 AM. Post Luncheon Session - 1:30 PM - 2:30 PM Joe will provide insight on the unusual cases handled by FraudNet. He will use case examples to show the challenges and issues encountered when pursuing fraudsters Attendees will learn about:
|
For complete details, including CPE information and to register, click the buttons below.
|
|
|
Copies of the presentations for this meeting will be made available at www.isacantx.org/index.cfm/Presentations,
before the meeting if possible.
 |
Rick Nietubicz, MBA, CISA, CGEIT, PMP, ITIL, Six Sigma, ISO 20000 |
Your Education Committee has been working hard, and is now able to offer two reasonably priced CPE training opportunities this fall - one on Active Directory security, and a CISSP boot camp for those taking the upcoming CISSP exams. Or, you can attend just for the CPE!!
Fall Seminar: Active Directory and Windows Security Auditing
Tanya Baccam is presenting this hands-on training November 1-3, 2011. During this three-day course, students will learn about identifying the risks specific to an Active Directory and Windows environment.
The Windows operating system is typically well known and widely utilized, but can be difficult to secure since there are a large number of security options available. This course provides the tools and techniques needed to effectively conduct an Active Directory and Windows audit. Hands-on exercises give students the opportunity to conduct an audit on their own Windows system. Note that a laptop is required for the course.
Download the Fall 2011 Seminar Flyer for additional details.
Cost: $500, including 18 CPE credits
Tanya is a SANS senior instructor, as well as a SANS courseware author. She provides many security consulting services for clients such as system audits, vulnerability and risk assessments, database assessments, web application assessments and penetration testing. Tanya has previously worked as the Director of Assurance Services for a security services consulting firm, as well as being the Manager of Infrastructure Security for a healthcare organization. Tanya also served as a Manager at Deloitte and Touche in the Security Services practice.
Throughout her career, Tanya has consulted with many clients about their security architecture, including areas such as perimeter security, network infrastructure design, system audits, web server security, and database security. She has played an integral role in developing multiple business applications, and currently holds the CPA, GCFW, GCIH, CISSP, CISM, CISA, CCNA, CCSE, CCSA and Oracle DBA certifications.
The Fall Seminar is being hosted at the JCPenney corporate office in Plano. Visit www.isacantx.org to register for this training. Online registration closes on October 24, 2011 at 5 PM, and class size is limited to the first 60 registrants.
CISSP Boot Camp Review
The North Texas Chapter is also sponsoring a CISSP Boot Camp Review October 31 through November 4, 2011. The CISSP exam is being given in Dallas on November 19, 2011, as well as in other locations in Texas on varying dates. What a great way to finish your preparation for the exam, by attending this review!
Upon completion, the student will have knowledge of each of the ten domain areas in the International Information Systems Security Certification Consortium Common Body of Knowledge ((ISC)2 CBK®). A combination of lecture, discussion and review questions will be used to reinforce each of the knowledge domain areas and their subtopics. Required material for the class will be provided. However, students are strongly encouraged to purchase and review two additional texts in preparation for the class.
Download the CISSP Boot Camp Flyer for the details.
Cost: $1,000, including 40 CPE credits
North Texas Chapter member Clay Risenhoover is leading this five-day intensive review course. Clay is President of Risenhoover Consulting, Inc. (RCI), an IT management consulting firm based in Durant Oklahoma. Founded in 2003, RCI provides IT audit, IT management consulting, customized technology training, and software development services to clients in multiple sectors.
Clay’s past experience includes positions in software development, technical training, LAN and WAN operations, and IT management in both the private and public sector. He currently holds the CISSP, CISA, CISM, GSNA, GPEN, GCIA, MCT, CEH, and Security+ certifications, among others.
The CISSP Boot Camp Review is being hosted at the Park Central Weaver LLP office in Dallas. Visit www.isacantx.org to register for this training. Online registration closes on October 24, 2011 at 5:00 PM.
I sincerely hope you can take advantage of one of these training opportunities, and look forward to seeing you at the October meeting as well!
 |
Greg Streder, CISA, CISSP |
ISACA North Texas Supports New Chapter In Springfield, Missouri
For the past several years, our Dallas Chapter of ISACA has allocated part of our Donations budget to provide assistance to smaller chapters in our North America Central Region. This year (2010-2011 fiscal year), we were able to donate $2,000 to the ISACA chapter in Springfield, Missouri. They are a brand new chapter, chartered in April 2011, with 41 members.
Their President, Charla Berry, was absolutely thrilled to be receiving assistance from the North Texas Chapter. These funds will allow the Springfield Chapter to send a representative to the ISACA PCM Leadership conference in Winnipeg Canada this month (October 2011) to gain exposure to the larger ISACA community. They will also be able to expand their marketing efforts to promote and grow their new chapter.
Check out the ISACA Springfield Chapter website, http://www.isaca.org/chapters2/Springfield/Pages/default.aspx, as we wish them a bright future!
 |
Sue Pagel, CISA, CRISC, CSOX |
ISACA North Texas Chapter Certification Committee
This month, it is our pleasure to congratulate those Chapter members that passed the June 2011 ISACA exams for the CISA, CISM and CGEIT certifications. As we all know, this is a significant achievement, indicative of a solid commitment of time and resources.
And the winners are ...:
CISA |
|||
|
Name
|
Name |
Name
|
Name
|
| Michael Clay Speegle | Beau Saunders | Angela Belote | Charles Eugene Lankford |
| Laura T. Morton | Rodney Dale Reynolds | Lyndon M. Nixon | Yilan Hu |
| Ayodeji Oluwarotimi Awe | Jeffery Lawayne Weaver | Elizabeth C. Sears | Manoj Bhandari |
| Lisa Ledyard Bell | Louis A. Dean | Jeffrey Louis Chalkley | Lauren Renee Lee |
| Mark Richard Jestes | Tim Herlevic | Blanca Margarita Salinas | Kui Cheng |
| Oluwafemi Olayinka Salami | Kiedra Gerl | Robert Taylor Campbell | Sudeep Kizhake |
| Sushil Karki | Korat Kamlesh | Ricardo Rene Valdez, Jr. | Daniel Davis |
| Alecia Simpson | Aaron Carl Droemer | Eric Beck | Vince Matthew Bueno |
| Cynthia Marleen Culbertson | Gregory Gordon | Christopher Ian Streiferd | |
CISM |
|||
Name |
Name |
Name |
Name |
| Gangamma Devaiah Chenanda | Nicholas Valenteen | Ross Henton | Keith Joshua Pritchard |
| Abraham Kwaku Adjeigbenda | Marinko Kimmer | Everette Hubbard | William F. Burke |
| Patrick Angel | Andrew Houshian | Craig Sprunger | Darren Neal May |
CGEIT |
||
Name |
Name |
Name |
| Harold A. Toomey | James C. Hicks | Subodh Jadhav |
| Jeff Chew | Vanda Lynn Tougas | |
In addition, we want to commend those members that achieved the three highest scores within our Chapter in their respective exams, as follows:
CISA |
CISM |
CGEIT |
|
1st |
Mr. Charles Eugene Lankford | Mr. Charles Hight | Mr. Subodh Jadhav |
2nd |
Mrs. Angela Belote | Mr. Patrick Angel | Mr. Jeff Chew |
3rd |
Mr. Michael Clay Speegle | Mr. Nicholas Valenteen | Mr. James C. Hicks |
Again, our congratulations to June's certification "winners", and Good Luck to those taking the December exams.
Now, are you ready to get certified? The registration for the December ISACA exams has been extended to October 14th, so you still have an opportunity.
After signing up for the exam, we can help you pass. Our review courses for the CISA and CISM exams have been scheduled and announced -- see our website for details, at www.isacantx.org, and the Certification article below.
What if you have already acquired your CISA or CISM? Why not take the review course again? It's a cost-effective way to earn additional CPEs.
 |
Iddah Wangondu, CISA, CIA, GSNA, CISSP |
|
Are you registered to take the CISA or CISM exam in December 10th? Do you REALLY want to pass the exam? Or, are you just looking for an opportunity to acquire those end-of-year CPE's you need to maintain your existing certification, or to keep your boss happy? Either way, we have a cost-effective resource for you, and an opportunity to network with other IT Audit and Security professionals during our 3-day or 4-day CISA/CISM review courses. Both review courses take place as follows: |
|
Location: |
UT Dallas Campus - School of Management 2601 N. Floyd Road Richardson TX 75080 |
Cost: |
$250 - Members $300 - Non-Members |
Times: |
9:00 AM - 5:00 PM (lunch and snacks are provided) |
 |
Saturday Dates:
CPE Hours: 32 |
 |
Saturday Dates:
CPE Hours: 24 |
|
Questions? We'll be glad to help -- just e-mail certifications@isacantx.org. |
||||
|
Iddah Wangondu, CISA, CIA, GSNA, CISSP |
We want to welcome our new and returning members - those that have joined/rejoined ISACA and our North Texas Chapter in the last 90 days, and who are part of our current count of 1,617 members (as of 9/28/2011). We hope to see each of you at our monthly meetings.
|
Name
|
Company
|
Name
|
Company
|
|
| Mr. Olalekan. Awolaru | Ms. Jiazi Ding | |||
| Mr. Mike Stephenson | Mr. Philip Arthur | |||
| Mr. Matthew Cass | Mr. Saheed Olalekan Quadri | |||
| Mr. Terry Lee McKinney, Jr. | Mr. David C. Johnson | Manitowoc Walk-ins | ||
| Mr. Richard Eugene Burk | Mr. Mohamed Tawfik Seoudi | |||
| Mr. Zak LaJoie | City of Mesquite | Mr. Michael Thomas Rubbo | ||
| Mr. Justin L. Brown |
(T) = Transfer from another ISACA chapter
 |
Laurie Flandreu, CISA |
In today's hectic and challenging business environment, where we are faced with so many different sources of information, e.g., websites, blogs, tweets, listservs, social networks, RSS feeds, etc, competing for our attention, it is increasingly challenging to create a meaningful and relevant newsletter that members have the time and inclination to read. Despite this, the feedback from the annual chapter survey tells us that the newsletter is generally still well received and wanted. However, we'd like to try an make it even better and that is where you come in.
When we compare ourselves to other award-winning chapter newsletters, one area where we have room for improvement is sharing the work experiences of our chapter members. With over a thousand members in a broad range of industries of varying sizes, we have a vast source of experience. Some of you work in best practice audit groups, others are in less mature organizations that are still developing. All of you have something you can share with other chapter members.
We'd like to hear from any member that is willing to write a brief article for the newsletter that would be of interest to fellow practitioners, e.g.:
These are just a few ideas and not meant to be all inclusive.
In addition, if you have any ideas for other content you'd like to see, let us know.
If you'd like to write an article or have ideas for the newsletter please send them to newsletter@isacantx.org.
 |
Matthew C. Smith, CISA |
The word is getting out - that firms and recruiters can post their available audit and security-based openings on our JOBS Board, without charge. Help bring jobs and job seekers together by promoting job postings. Your fellow ISACA members will appreciate it.
As of October 3, 2011, we have 11 opportunities posted on the jobs board, as summarized below. See our website regularly for any updates and for complete details. Please note that positions may have been filled or new positions added prior to the newsletter publication, so always check the jobs board directly for the most current status.
|
Company: BrightLine CPAs & Associates, Inc |
|
Company: Brinker International |
|
Company: CoreLogic |
|
Company: Dean Foods |
|
Company: Federal Reserve Bank of Dallas |
|
Company: Federal Reserve Bank of Dallas |
|
Company: Mary Kay Inc. |
|
Company: Protiviti |
|
Company: Sentari Technologies, Inc. |
|
Company: Southwest Securities, Inc. |
|
Company: Sumrall consultants, Inc. |
Additional details about these jobs and all current job postings are available at: ISACA North Texas Job Postings.
To post an available position, just complete a Job Posting Template and e-mail it to jobs@isacantx.org. Each job posting will be displayed on our site for one month, but can be reposted again or removed at any time by request.
All posted job descriptions will also be included in this newsletter each month. Members can also examine the available positions on the ISACANTX.ORG job board at http://www.isacantx.org/index.cfm/Job_Postings.
Don't forget - Postings are FREE, and available for members and non-members alike.
 |
Joe McKernan, CISA, CISSP |
Interested in positions outside the DFW area, even world-wide? ISACA International maintains a Career Center that hosts hundreds of available opportunities. Just select Career Center from the left-hand menu options at www.isaca.org.
Did you know the North Texas Chapter has a group on Linked-In? Catch the latest news from the ISACA NTX chapter and your fellow chapter members. Get updates as they happen, get information about professional development and jobs in the area, post questions or comments about an IT audit, security, etc. topic, network with colleagues and give your feedback/input on existing discussions. We look forward to connecting with you on Linked-In!
To access the group go to http://www.linkedin.com/groups?mostPopular=&gid=1360787
Get Linked-In!
 |
Angel Jones, CISA |
September Luncheon Winners
Following each monthly luncheon meeting, we give away four $50 gift cards to popular merchants in the area, typically Home Depot, Lowe's, Macy's, Nordstrom and/or Best Buy.
September's winners are shown below. The next winner, at our October 2011 meeting, could be you!
|
|
|
September 2011 Door Prize Winners - Thomas Ng - Harold Toomey - Dan Seider - David Roberts |
To be eligible for the drawing, you must have checked in and paid at the registration table prior to the luncheon and be present at the time of the drawing. Walk-ins who have paid and registered are also included in the drawing. Our luncheon speaker typically draws the names from the basket to ensure objectivity, and the lucky winners are subsequently photographed for posterity.
 |
Brittany George Teare, CISA |
Have you registered for the December ISACA Certification Exams?
As we went to press, registration for the December 10th CISA, CISM, CGEIT and CRISC examinations has been extended to October 14, 2011. For more details click here.
Register for ISACA's IT Governance, Risk & Compliance Conference
Join us at ISACA’s IT Governance, Risk and Compliance Conference, October 19-21, 2011 in Orlando.
You will discover how to enhance the value that IT provides your enterprise, and learn how to ensure IT-related risks are managed and how to assure outcomes including performance and compliance. You will learn from knowledgeable practitioners and benefit from ISACA’s IT governance frameworks and professional guidance.World Congress: INSIGHTS 2012 - Registration Now Open
ISACA’s World Congress: INSIGHTS 2012, taking place 25-27 June 2012, is an event unlike any other. Designed for progressive IT and business leaders, the conference addresses topics at a strategic level, giving you the insights you need to develop strategies for effective integration of business and technology.
Registration is now open! Join us in San Francisco.2012 North America CACS - May 6-10, 2012
Register today for ISACA's 2012 North America CACS! Be a part of the world-leading audit conference for IT audit, security, governance and risk professionals. This world-class event will be located in Orlando, Florida, May 6-10, 2012.
Earn up to 44 CPE hours!
Check the ISACA web site frequently as additions are being made often.Complimentary Resource for IT Professionals
The COBIT Process Assessment Model (PAM): Using COBIT 4.1 program is now posted here. This complimentary PDF is FREE for members. This e-book can also be purchased at the bookstore for non-members. Download Now
View a variety of other resources as well, free of charge, as an ISACA membership benefit.New White Paper - Web Application Security
Web Application Security: Business and Risk Considerations—The use of web applications in the enterprise has grown exponentially in the last decade. While businesses are benefiting in many ways from the new capabilities of these applications, the prevalence of inherent security vulnerabilities in web applications is creating significant exposure for many enterprises. This white paper explores the root causes of these vulnerabilities, examines the associated risk and impacts, and provides guidance as to how enterprises can alter their practices to mitigate this risk.
View all of our complimentary white papers here.Free CPE Using Your ISACA Membership
As a benefit of your ISACA membership, ISACA International is making free CPE available in four different formats. In fact, you can secure up to 72 hours of CPE per year, as follows:
As always, read the full details at http://www.isaca.org/Certification/Pages/How-to-Earn-CPE.aspx.
 |
Doug Gorrie, CISA, CIA |
