Loading Events

« All Events

IT Audit Conference 2021

February 25 @ 8:15 am - 12:30 pm EST

$0 ISACA Members, $60 Non-Members

The ISACA GWDC is proud to host its our annual IT Audit Conference 2021 with a focus on DOD and Civilian environments on February 25th. IT audit and assurance continue to transform with the ever-changing environment. In the Federal Government, auditors are especially challenged with the ever-increasing use of technology such as artificial intelligence, robotic process automation, machine learning, and evolving business practices yet sometimes slow to adopt compliance rules. How does the profession maintain assurance in this evolving and ever-changing environment? Come to our IT Audit Conference 2021 and find out tips and tricks from local experts. Now Virtual!

The IT Audit Conference 2021 features seasoned IT audit professionals from around the Washington DC area, sharing their knowledge on the latest leading practices, trends, and principles in IT audit and assurance. The IT Audit Conference 2021 also features seven impactful topics relating to IT audit that may have an immediate impact on your everyday roles. Speakers will specifically cover IT audit areas relating to information security, risk management, and tools to optimize the value of IT audits.

Who Should Attend

  • Any professional in the Information Security / Assurance industry, including IT auditors, IT consultants, and general IT professionals with exposure to or looking to get exposure to IT audits in civilian and DoD environments.
  • Anyone that is already or anyone interested in getting involved with IT Audits.


Coming Soon!

Enjoy discounted or free event pricing and other benefits all year round! Join ISACA GWDC Today!

Check out our calendar of upcoming events for more ISACA GWDC and partner activities. Don't forget to follow ISACA GWDC on LinkedIn,  Twitter, and Facebook for the latest news and information from ISACA GWDC, ISACA, and the audit, governance, and security profession.


Data Science Programs
Presenter:  Sarah Hay (GAO Innovation Lab)
Process control and program evaluation are critical components to oversight of operational and other production processes. Implementing this can seem insurmountable to program offices, and data scientists can help. Data scientists play a crucial role in formulating solutions, using data to implement them, and producing output in formats understandable to their less technical peers. Time will be saved at the end for open discussion, Q&A, and to answer questions about GAO’s Innovation Lab.

Auditing Smart Contracts
Presenter:  Tuan Phan (Caplock Security)
Smart contracts are tamper-proof computer codes on the blockchain that enable automated execution of agreements, rights, and obligations in digital form between two of more parties. Smart contracts provide standardization, speed, security, and certainty to transaction settlement. Accordingly, smart contracts are poised for rapid adoption as organizations seek to reduce transaction costs using blockchain technology. One prevailing argument is that the combination of smart contract with blockchain technology reduce or eliminate the demand for audits as the underlying technology is both self-enforcing and verifiable to ensure data accuracy and integrity. However, the reality could not be further from the truth. In the blockchain era, auditors need additional skills beyond preparing and examining records, and attesting that internal control processes are working properly. In other words, auditors must be able to read and understand smart contract codes, and to relate the codes to the organization's internal control processes. This presentation provides the attendees with key understanding of the fundamental concepts behind smart contracts, the legality, the risks relating to their use, and how that may impact audit activities. The presentation provides the launchpad from which auditors can better prepare to carry out audits of smart contracts as more organizations seek to adopt the use of blockchain technology to support their solutions and service offerings to their customers.


Jeanette Duncan

Jeanette M. Duncan
Chief Information Officer
United States Air Force, Office of the Assistant Secretary for Financial Management and Comptroller

Jeanette M. Duncan, a member of the Senior Executive Services, is the Chief Information Officer, Office of the Assistant Secretary for Financial Management and Comptroller, Washington, D.C. In this capacity she provides executive leadership and direction, broad technical knowledge, skill and experience on all technology, innovation and financial transformation matters. Ms. Duncan also ensures development of enterprise operational and system architecture; sets standards, integrates enterprise-wide information technology projects; and advocates for resources required to support innovation and transformation of financial management systems across the Air Force and in support of the Defense Enterprise Account Management system to support the warfighter. Additionally, she supports the principal adviser to the Assistant Secretary and the Air Force senior staff on all issues involving the amended Chief Financial Officers Act of 1990 and related financial management reforms.


Sarah Hay
Assistance Director, Government Accountability Office Innovation Lab

Sarah Hay is the Assistant Director for Advanced Analytics in GAO’s Innovation Lab. During Sarah’s federal career, she has been a passionate advocate for data-driven decision-making, and she’s leveraged these skills to save lives, inform policy development, perform regulatory oversight, and save money. In a past life, Sarah taught math to high school students on the Texas-Mexico border. Sarah has degrees in Mathematics and Spanish from Southwestern University and the University of Texas. In her free time, she enjoys walking in the woods with her family, knitting, reading, and camping.


Tuan Phan
Partner, Caplock Security

Tuan Phan is a partner with Caplock Security LLC with strong expertise in the implementation and management of emerging technologies, information assurance programs, technical projects and operations, and risk management across several industries including government, software, specialty product, drug and medical device manufacturing. Tuan has consulted with state and Federal agencies including Oregon Public Employees Retirement System, Centers for Disease Control and Prevention, National Credit Union Administration, and Federal Retirement Thrift Investment Board on information security and assurance.  As the practice leader for blockchain technology at Caplock Security LLC, he leads the development of several proofs of concept using Hyperledger Fabric and Ethereum private blockchains and advises clients on the security implementation of smart contracts and blockchain infrastructure. Tuan has shared his experience on numerous topics on cybersecurity, blockchain security, smart contract auditing, IT governance, and regulatory compliance at several industry conferences and seminars. Tuan has also authored several articles on blockchain and regulatory compliance topics for industry magazines and journals, served as SME reviewer for ISACA Blockchain Audit Program, and taught seminars on blockchain security.



Conference presentations are posted to the Presentations Library if permission is received from the presenter and their organization. In some cases, permission is not received.

Sponsor this Event

If your organization is interested in being an event sponsor, please take a look at the five (5) various event sponsorship packages and click this sponsorship link to become a sponsor.


Earn up to 4 Continuing Professional Education (CPE) credits in the area of Specialized Knowledge. The ISACA® NCAC is registered with the National Association of State Boards of Accountancy (NASBA) as a sponsor of continuing professional education on the National Registry of CPE Sponsors. State boards of accountancy have final authority on the acceptance of individual courses for CPE credit. Complaints regarding registered sponsors may be submitted to the National Registry of CPE Sponsors through its website: http://www.learningmarket.org.

CPE Distribution and Evaluation Survey

CPE's will be distributed via e-mail along with the event evaluation survey after the completion of the event. Attendees must be present the full day to receive full CPE credit.

CPE-Related Details

  • Prerequisites and Advance Preparation: N/A
  • Program Knowledge Level: Beginner to Intermediate
  • Delivery Method: Virtual


February 25
8:15 am - 12:30 pm EST
$0 ISACA Members, $60 Non-Members
<a class="register-button" href="https://cvent.me/AxPVWL">CLICK TO REGISTER » </a>


Jose Torres