Upcoming Chapter Events

Below are upcoming chapter conferences, seminars, review courses, and other events.  Prior chapter events can also be viewed.

For information on our event policies, see https://isaca-gwdc.org/event-policies/.

Loading Events

« All Events

  • This event has passed.

FISMA and Risk Management Framework

April 22, 2021 @ 3:00 pm - 5:00 pm EDT

Free for ISACA GWDC Members, $60 other ISACA Members and Non-Members
ISACA Cotton

About the 2021 FISMA and Risk Management Framework Panel

The 2021 FISMA and Risk Management Framework Panel is designed to educate IT practitioners who want to learn about cybersecurity as the mission focused and risk optimized management of systems and technology, which maximizes confidentiality, integrity, and availability; third-party risks mitigation; Privacy; NIST Update; and other hot topics.

You will hear panelist from GAO, NIST and the CIGIE FISMA working group.
There are a number of expensive training courses out there - online and classroom - that cover cybersecurity, cloud computing, and privacy, to mention a few. Do not overpay! ISACA GWDC is excited to continue to offer our great lineup of speakers and topics related to the Public and Private sector communities at always-reasonable prices.

Preview the Event

Two (2) NASBA CPE credits

Enjoy discounted or free event pricing and other benefits all year round! Join ISACA GWDC Today!  Check out our calendar of upcoming events for more ISACA GWDC and partner activities. Don't forget to follow ISACA GWDC on LinkedIn,  Twitter, and Facebook for the latest news and information from ISACA GWDC, ISACA, and the audit, governance, and security profession.

Who Should Attend?
IT advisory or audit professional that serves or supports the Public or Private sector communities.
Come join the ISACA GWDC virtual Annual Conference and training event covering a variety of hot topics relevant to current trends, and associated challenges in cyber-security, cloud computing, Privacy, etc.


Loren-Schwartz photo

Moderator: Loren Schwartz, CPA CISA CISSP, Partner, Cotton & Company, LLP

Loren Schwartz joined Cotton & Company in May 2002 and was elected a partner in April 2003. Loren has more than 20 years of diversified information system audit, financial and operational audit, privacy, and risk management consulting experience. He directs many of the firm’s major information technology reviews and audits.
Loren’s experience includes directing and participating in a wide range of system reviews, Federal Information Security Management Act (FISMA) audits, financial statement audits, process re-engineering improvement projects, and audits of internal management controls of automated information systems. He has directed projects with clients ranging in size from start-up entrepreneurial organizations to Fortune 500 organizations. His industry experience includes both commercial and governmental clients. He also has conducted speaking engagements for well-known industry organizations on a variety of Information Technology (IT) -related topics. 

Loren holds a Bachelor of Science degree in Accounting from Virginia Polytechnic Institute and State University. He is a Certified Public Accountant (CPA), a Certified Information Systems Security Professional (CISSP), and a Certified Information Systems Auditor (CISA).

He also is a Board Member at Ronald McDonald House Charities® of Greater Washington, DC.


Panelist: Khalid Hasan, Senior Manager for Information Technology Audits, Office of Inspector General for the Board of Governors of the Federal Reserve System (Board) and the Consumer Financial Protection Bureau (CFPB)

Khalid Hasan serves as senior manager for information technology audits. In that capacity, he directs and oversees a team performing audits and reviews of the economy, efficiency, effectiveness, and security of the information technology programs and systems of the Board and the CFPB.  Mr. Hasan has over 20 years of experience in conducting, managing, and directing IT audits of complex federal information systems, processes, and programs. Mr. Hasan is active in the Inspector General community and currently serves on the information technology committees of the Council of the Inspectors General on Integrity and Efficiency and the Federal Audit Executive Council. Mr. Hasan holds a Bachelor of Science in Decision Sciences and Management Information Systems from George Mason University, a Master of Science in Systems Engineering from George Washington University, and a Master of Business Administration from the University of Maryland, College Park. He is also a certified information systems auditor and project management professional.

Victoria Yan Pillitteri

Panelist: Victoria Yan Pillitteri, Computer Scientist, National Institute of Standards and Technology, CISSP

Victoria Yan Pillitteri is a senior computer scientist in the Computer Security Division at the National Institute of Standards and Technology (NIST). Ms. Pillitteri is the team lead of the Federal Information Security Modernization Act (FISMA) Implementation Project. She supervises a team of technical research and administrative staff that are responsible for conducting the research and development of the suite of risk management guidance used for managing information security risk in the federal government, and associated stakeholder outreach and public-private coordination/collaboration efforts. In addition to her role as supervisor, she leads a research portfolio focused on security and privacy risk management, and frequently hosts and speaks at conferences and workshops on these topics.
Ms. Pillitteri previously worked on the Cybersecurity Framework, led the NIST Smart Grid and Cyber Physical Systems Cybersecurity Research Programs, served on the board of directors of the Smart Grid Interoperability Panel, served as Chair of the Federal Computer Security Managers’ Forum, and completed a detail in the office of the NIST Director as an IT policy advisor. She has co-authored a number of NIST Special Publications (SPs) and Interagency Reports (IRs) on information security, including SP 800-12, 800-37, 800-53, 800-82, 800-171, 800-171A, 800-171B, 800-137A, 1108 and IR 7628.


Panelist: Vijay A. D'Souza, Director in GAO’s Information Technology and
Cybersecurity team

Mr. D'Souza oversees a diverse IT audit portfolio. He leads multiple efforts to evaluate the performance of federal programs in the areas of cybersecurity and information technology. He leads GAO’s Center for Enhanced Cybersecurity, which provides technical support to GAO’s cybersecurity engagements.
Previously Vijay led GAO’s efforts to enhance its data analytics capabilities. He has also led audits in areas such as improper payments and IT program management.
Vijay joined GAO in 2001. Vijay earned a master’s degree in business administration from the University of California-Berkeley and a Bachelor of Science degree in engineering from the University of Maryland, College Park.


Special Instructions

  • Group Live (Due to COVID-19, this training will be delivered via Zoom). Zoom link delivered with registration.
  • Prior to the event, participants must install the Zoom app in their respective devices. Participants using the web-based Zoom or calling via the phone may not be entitled to CPE credits.
  • Participants must respond to all the poll questions via the Zoom polling feature or chat log in order to receive NASBA CPE credits.
  • ISACA Greater Washington DC will not be responsible for the participant’s inability to respond to the polls.


Conference presentations are posted to the Presentations Library if permission is received from the presenter and their organization. In some cases, permission is not received.

Sponsor this Event

If your organization is interested in being an event sponsor, please take a look at the five (5) various event sponsorship packages and click this sponsorship link to become a sponsor.


Earn up to 2 Continuing Professional Education (CPE) credits in the area of Specialized Knowledge. The ISACA® Greater Washington DC is registered with the National Association of State Boards of Accountancy (NASBA) as a sponsor of continuing professional education on the National Registry of CPE Sponsors. State boards of accountancy have final authority on the acceptance of individual courses for CPE credit. Complaints regarding registered sponsors may be submitted to the National Registry of CPE Sponsors through its website: http://www.learningmarket.org.

CPE Distribution and Evaluation Survey

CPE's will be distributed via e-mail along with the event evaluation survey after the completion of the event. Attendees must be present the full day to receive full CPE credit.

CPE-Related Details

  • Prerequisites and Advance Preparation: N/A
  • Program Knowledge Level: Beginner to Intermediate
  • Delivery Method: Virtual


April 22, 2021
3:00 pm - 5:00 pm EDT
Free for ISACA GWDC Members, $60 other ISACA Members and Non-Members
Event Categories:


Jose Torres