Upcoming Chapter Events
Below are upcoming chapter conferences, seminars, review courses, and other events. Prior chapter events can also be viewed.
For information on our event policies, see https://isaca-gwdc.org/event-policies/.
IT Audit and Compliance Conference 2026
May 14, 2026
Virtual Event (Zoom)
Earn up to 4 CPE
$10 for GWDC Members
$30 for Non-Members
IT Audit and Compliance Conference 2026
This conference is part of the GWDC’s monthly conference series. Additional details will be posted when available.
Registration closes on May 13 @ 5PM.
Event Details
Date and Time
The conference will be held on May 14, 2026 from 8:30 am to 12:30 pm.
Add this event to your calendar using the Add to Calendar link at the bottom of the page.
Virtual Event
The conference will be held using Zoom.
Prior to the event, participants must install the Zoom app on their respective devices. Participants using the web-based Zoom or calling via the phone may not be entitled to CPE credits.
Pricing
The fee for GWDC Members is $10 for the conference.
The fee for all other registrants is $30 for the conference.
To become a member and take advantage of the member rate for our events, among other benefits, join ISACA and select the Greater Washington D.C. Chapter as your local chapter.
Event Policies
Cancellation and refund for advance registrations is allowed if cancellations are submitted through the registration system by the date registration closes. Refunds vary depending on the date of cancellation and cost of the event. See ISACA GWDC Event Policies for details.
The GWDC welcomes your comments, complaints, suggestions, questions, and other feedback concerning our website information and services.
All complaints should be submitted through the Registration Contact Form.
Conference Agenda
Conference agendas may change due to schedule conflicts and other unexpected situations. If a previously published agenda has changed, the changes will be noted.
The conference agenda is being developed and updates will be posted when available.
08:30 AM – 09:30 AM
Federal Cyber Risk in Practice: What FISMA and CMMC Mean for Leaders
Presenter: Dr. Anthony Foreman (Library of Congress)
Federal cybersecurity regulations are often approached as compliance exercises, yet their real value lies in how they inform risk-based decision-making. This session examines FISMA and CMMC through a leadership lens, focusing on how federal and defense organizations can translate regulatory requirements into practical, operational cyber risk management.
Attendees will gain insight into how leaders can align governance, controls, and organizational accountability to reduce risk, strengthen resilience, and support mission outcomes—without treating compliance as a checkbox activity.
09:30 AM – 10:30 AM
Topic TBD
Details on the topic will be posted soon.
10:30 AM – 11:30 AM
11:30 AM – 12:30 PM
Safeguarding Privacy Across the AI Development Lifecycle
Presenter: Dr. Kyle David (Dr. David, LLC)
Details on the topic will be posted soon.
Share this Event
If you are interested, planning to attend, or attending this event, please share with your colleagues across your social media networks.
Presenters
At times presenters for a session may change due to schedule conflicts and other unexpected situations. If a previously presenter has been substituted, the changes will be noted.
Dr. Anthony Foreman
Datacenter Management Division Chief @ Library of Congress
Dr. Anthony T. Foreman is a senior IT executive and cybersecurity leader with more than 25 years of experience managing mission-critical infrastructure in some of the most secure and high-visibility federal environments in the United States.
He currently serves as Division Chief for Data Center Management at the Library of Congress, where he provides executive oversight for enterprise infrastructure, cybersecurity remediation, network modernization, and risk management initiatives supporting Congressional operations, digital preservation, and public access systems.
Dr. Foreman previously held senior leadership roles supporting the White House, U.S. Marshals Service, Securities and Exchange Commission, and USAID, where he led large-scale modernization efforts, compliance initiatives, and incident response operations across classified and unclassified environments.
He holds a Doctorate in Organizational Leadership with a concentration in Information Technology, with research focused on cloud security limitations and risk mitigation. Dr. Foreman is also the Founder and Principal Consultant of Foreman Leadership Consulting, where he advises organizations on cybersecurity leadership, governance, and risk-based decision-making.
Randy Marchany
Chief Information Security Officer @ Virginia Tech
Senior Instructor @ SANS
Randy is the Chief Information Security Officer of Virginia Tech and the Director of Virginia Tech’s IT Security Laboratory and has 25 years experience as a systems administrator, IT auditor, and security specialist. He is a co-author of the original SANS Top 10 Internet Threats, the SANS Top 20 Internet Threats, the SANS Consensus Roadmap for Defeating DDoS Attacks, and the SANS Incident Response: Step-by-Step guides. Randy is currently a senior instructor for the SANS Institute and has taught a wide variety of courses over the years. Currently, he can be found teaching SEC566: Implementing and Auditing CIS Controls on a regular basis.
Randy holds the unique position of being the longest running SANS Instructor on the planet. After one of his Solaris systems got hacked in 1991 (part of the attack described in the book @Large: The Strange Case of the World’s Biggest Internet Invasion), he submitted a proposal for a talk to a startup called the SANS Institute in 1992. Alan Paller invited him to work on some projects with them and he’s been doing cybersecurity work with SANS and in his professional career ever since.
Dr. Kyle David
Founder @ Dr. David, LLC
CIPP/US/E, CIPM, AIGP, FIP, CISSP, and AAISM
Dr. Kyle David is the Founder of Dr. David, LLC, where he has delivered privacy and AI governance training to more than 10,000 learners across 125 countries. Previously a Presidential Management Fellow at the U.S. Department of Energy, he led privacy workforce development, created DOE’s AI literacy course, and supported the launch of EnerGPT. He holds a Ph.D., five IAPP designations (CIPP/US/E, CIPM, AIGP, FIP), CISSP, and AAISM.
CPE Information
Earn up to 4 Continuing Professional Education (CPE) credit in the area of Information Technology. The ISACA® Greater Washington, D.C. Chapter is registered with the National Association of State Boards of Accountancy (NASBA) as a sponsor of continuing professional education on the National Registry of CPE Sponsors. State boards of accountancy have final authority on the acceptance of individual courses for CPE credit. Complaints regarding registered sponsors may be submitted to the National Registry of CPE Sponsors through its website: www.NASBARegistry.org
Poll Questions
Participants must respond to all the poll questions via the Zoom polling feature or chat log in order to receive NASBA CPE credits. The GWDC will not be responsible for the participant’s inability to respond to the polls.
CPE Distribution and Evaluation Survey
CPEs will be distributed via e-mail along with the event evaluation survey after the completion of the event. Attendees must be present for the full event to receive full CPE credit.
Learning Objective
After attending this event, attendees will learn about current and future trends in the IT audit and compliance space.
CPE-Related Details
- Prerequisites: None
- Advance Preparation: None
- Program Knowledge Level: Basic
- Delivery Method: Group Internet Based
- Field of Study: Information Technology – Technical