Upcoming Chapter Events
Below are upcoming chapter conferences, seminars, review courses, and other events. Prior chapter events can also be viewed.
For information on our event policies, see https://isaca-gwdc.org/event-policies/.
- This event has passed.
2022 IT Fraud Conference
November 17 @ 8:30 am - 12:30 pm ESTGWDC Member $10, Non-GWDC Member $30
The ISACA Greater Washington DC (GWDC) is proud to host our annual IT Fraud conference. This conference is part of our monthly events.
Fraud and cybersecurity professionals, IT advisory or audit professionals, business executives, students or professionals interested in learning more about IT fraud.
Registration closed on November 16, 2022 @ 12pm. Participants can use the link below to access CPE Certificates, feedback survey, and presentations. Instructions on how to access these resources are located on the Access Your CPE Certificate page.
8:30 – 9:30 AM – Stanch the Flow: Anatomy of Fraud in Government Programs
Fraud in federal programs is getting bigger, more complex and more ambitious than ever. Although the unprecedented public spending in the wake of the COVID-19 pandemic — and the similarly unprecedented amount of taxpayer dollars lost to fraud — have drawn more attention to this problem in recent years, the government’s fraud woes long predate the pandemic. The U.S. government needs to move with haste to systematically identify fraud risks that threaten its new benefit programs. If these agencies don’t take proactive steps to prevent fraud now — choosing instead to let law enforcement entities chase after fraudsters only after they’ve stolen program funds — the U.S. government stands to lose several billion more in taxpayer dollars, with dubious prospects for recovery. In this session, Linda Miller of Guidehouse will provide insights on how to stanch the flow of money from vulnerable agencies.
9:30 – 10:30 AM – Identity Theft and Tax Schemes
Presenter: Anika Pompey (IRS)
According to the IRS, “tax-related identity theft happens when someone steals your personal information to commit tax fraud. Your taxes can be affected if your Social Security number is used to file a fraudulent return or to claim a refund or credit.” During this session, Anika Pompey will discuss identity theft and tax schemes, how to identity and protect yourself against business and individual identity theft, and steps to take if an individual or business becomes the victim of tax-related identity theft. In addition, Anika Pompey will also discuss the 2022 Dirty Dozen Tax Schemes.
10:30 – 11:30 AM – How does fraud happen via APIs?
Presenter: Jeremy Snyder (FireTail.io)
In this talk, Jeremy Snyder will examine the causes of API data breaches and API abuse. He’ll explain the main control factors, and where to provide observability or instrumentation components to view the necessary data elements. In addition, Jeremy will discuss best practices around API security, and building API security into a development cycle or a security operations pro.
11:30 AM – 12:30 PM – Adversarial OSINT Reconnaisance
Presenter: Kirby Plessas (Plessas Experts Network)
Few realize how broadly Open Source Intelligence gathering can impact their organization’s attack surface including its network, metadata, and personnel. Join Kirby Plessas for a rapid-fire, hands-on, live demonstration of the reconnaissance an adversary can commit against an organization using publicly available data. Scouring Google, exploiting images, and collecting critical data shared by and about individuals round out this attack planning demonstration that also points the way toward what should be done to secure your organization.
Linda Miller is an expert in helping organizations identify and manage their risks to fraud. Linda is a former Olympian in the sport of rowing, a dynamic speaker and a passionate advocate for diversity in the workplace. With the October 2022 acquisition of Grant Thornton, she became a Partner at Guidehouse, where she brings her Fraud & Financial Crimes expertise to a variety of government and private sector clients. In May 2020 Linda was appointed by the Chair of the Council of Inspectors General on Integrity and Efficiency to be the Deputy Director of the Pandemic Response Accountability Committee (PRAC). She held this role for one year, helping to stand up the government’s pandemic oversight function in a fully virtual setting in the midst of the pandemic. Linda also spent ten years at GAO, where she led the development of GAO’s Framework for Managing Fraud Risks in Federal Programs (GAO 15-593SP). This framework was codified in statute with the signing of the Fraud Reduction and Data Analytics Act which requires federal agencies to adhere to the leading practices contained within it.
Zachary Rosenfeld has more than 11 years’ experience conducting evaluations and managing risk for federal programs in emergencies and complex contingency environments. He has delivered high profile evaluations, performance audits, white papers, and briefings on international fraud and anti corruption, including a first-of-its-kind evaluation commissioned by Congress to examine corruption in Afghanistan and the efficacy of the Afghan government’s anti-corruption policies. At Guidehouse, he leads teams responsible for conducting program evaluations and establishing effective, proactive fraud risk management programs using maturity assessments, fraud risk assessments, and data analytics tools. His clients include the Department of State, Federal Communications Commission, and the Export-Import Bank of the United States.
Anika Pompey is a Senior Stakeholder Liaison with the Internal Revenue Service (IRS) in Washington, DC. In this role, she is responsible for performing outreach and establishing relationships with tax practitioners, business and industry organizations, and other audiences for the purpose of sharing information about IRS policies, practices, and procedures. Prior to becoming a Senior Stakeholder Liaison, Anika held the position of Tax Compliance Officer (TCO). In this role, she planned and conducted examinations of individual income tax returns. She was also responsible for educating taxpayers about tax law and tax-related accounting. Anika held the position of TCO for nine years before becoming the frontline manager of a TCO group. Anika has also held the position of Contact Representative where she was responsible for assisting customers with their tax accounts. Overall, Anika’s IRS career spans more than 15 years.
Jeremy is the founder and CEO of FireTail.io. FireTail provides API security via code library, and works with customers worldwide to keep APIs secure. Prior to FireTail, Jeremy has worked at Rapid7, DivvyCloud, AWS and other companies. Jeremy has lived in 5 countries and speaks 5 languages.
Kirby Plessas is the founder and CEO of Plessas Experts Network, Inc. (PEN), an Open Source Intelligence (OSINT) Internet technology and information extraction company specializing in training, researching, and consulting to meet the unique needs of diverse law enforcement, government, and private-sector organizations.
Ms. Plessas established herself as one of the foremost tradecraft experts in OSINT through a successful career as a member of the U.S. Military and as a Government Contractor prior to founding PEN in 2008. A service-disabled veteran, Ms. Plessas began her career in Military Intelligence as an Arabic linguist supporting the Department of Defense and continued using her OSINT experience at the Defense Intelligence Agency. Acknowledged as an expert in her field, in 2007 she was instrumental in the creation and institution of an innovation center for conducting Open Source Intelligence (OSINT). In great tribute to her long list of personal and corporate accomplishments in her field, the Department of Homeland Security declared Ms. Plessas an OSINT Technical Expert (2010).
Through her work at PEN, Kirby Plessas shares her love of innovative technology and OSINT expert skills by delivering hands-on training courses throughout the United States and internationally.
Virtual Event Information
- This event will be presented through Zoom.
- Prior to the event, participants must install the Zoom app on their respective devices. Participants using the web-based Zoom or calling via the phone may not be entitled to CPE credits.
- Participants must respond to all the poll questions via the Zoom polling feature or chat log in order to receive NASBA CPE credits.
- The ISACA Greater Washington, D.C. Chapter will not be responsible for the participant’s inability to respond to the polls
If you have any registration questions about this event, please contact the chapter using the Registration Contact Form.
If you have CPE questions after the event has concluded, please contact the chapter using the CPE Contact Form.
Cancellation and Refund Policy
Cancellation and refund for advance registrations is allowed if cancellations are submitted through the registration system. Refunds vary depending on the date of cancellation. See ISACA GWDC Event Policies for details.
If ISACA GWDC cancels the event, all registrants will be notified as soon as possible through email at the email address provided during registration. Full refunds will be provided.
The GWDC welcomes your comments, complaints, suggestions, questions, and other feedback concerning our website information and services. All complaints should be submitted through the Registration Contact Form.
Earn up to 4 Continuing Professional Education (CPE) credit in the area of Information Technology. The ISACA® Greater Washington, D.C. Chapter is registered with the National Association of State Boards of Accountancy (NASBA) as a sponsor of continuing professional education on the National Registry of CPE Sponsors. State boards of accountancy have final authority on the acceptance of individual courses for CPE credit. Complaints regarding registered sponsors may be submitted to the National Registry of CPE Sponsors through its website: www.NASBARegistry.org
CPE Distribution and Evaluation Survey
CPEs will be distributed via e-mail along with the event evaluation survey after the completion of the event. Attendees must be present for the full event to receive full CPE credit.
- Learning Objective: After this conference, attendees will have a better understanding of current trends and practices in identifying and addressing IT fraud.
- Prerequisites: None
- Advance Preparation: None
- Program Knowledge Level: Basic
- Delivery Method: Group Internet Based
- Field of Study: Information Technology – Technical