Upcoming Chapter Events
Below are upcoming chapter conferences, seminars, review courses, and other events. Prior chapter events can also be viewed.
For information on our event policies, see https://isaca-gwdc.org/event-policies/.
Risk Management Conference 2026
June 11, 2026
Virtual Event (Zoom)
Earn up to 4 CPE
$10 for GWDC Members
$30 for Non-Members
Risk Management Conference 2026
Risk management is the cornerstone of effective governance and cybersecurity in an era defined by rapid technological innovation. The Risk Management Conference 2024 is designed to equip professionals in IT audit, cybersecurity, and governance with the tools and insights necessary to navigate complex risk landscapes.
This conference explores cutting-edge approaches to risk management, with a focus on the NIST Risk Management Framework (RMF) and other industry-leading frameworks that empower organizations to identify, assess, and mitigate risks effectively. Attendees will gain actionable knowledge on:
- Implementing and tailoring risk management frameworks to align with organizational goals and compliance requirements
- Addressing the unique risks posed by emerging technologies such as artificial intelligence and cloud computing
- Strengthening governance structures to drive accountability and resilience
- Practical case studies showcasing successful risk management strategies in real-world scenarios
Whether you’re focused on AI risks, securing cloud environments, or enhancing your organization’s governance practices, this conference offers the expertise, practical guidance, and collaborative opportunities to advance your risk management strategies.
Join us to gain the insights and frameworks you need to navigate today’s risks and prepare for tomorrow’s challenges.
Registration closes on June 10 @ 5PM.
Event Details
Date and Time
The conference will be held on June 11, 2026 from 8:30 am to 12:30 pm.
Add this event to your calendar using the Add to Calendar link at the bottom of the page.
Virtual Event
The conference will be held using Zoom.
Prior to the event, participants must install the Zoom app on their respective devices. Participants using the web-based Zoom or calling via the phone may not be entitled to CPE credits.
Pricing
The fee for GWDC Members is $10 for the conference.
The fee for all other registrants is $30 for the conference.
To become a member and take advantage of the member rate for our events, among other benefits, join ISACA and select the Greater Washington D.C. Chapter as your local chapter.
Event Policies
Cancellation and refund for advance registrations is allowed if cancellations are submitted through the registration system by the date registration closes. Refunds vary depending on the date of cancellation and cost of the event. See ISACA GWDC Event Policies for details.
The GWDC welcomes your comments, complaints, suggestions, questions, and other feedback concerning our website information and services.
All complaints should be submitted through the Registration Contact Form.
Conference Agenda
Conference agendas may change due to schedule conflicts and other unexpected situations. If a previously published agenda has changed, the changes will be noted.
The conference agenda is being developed and updates will be posted when available.
08:30 AM – 09:30 AM
Topic TBD
Details on the topic will be posted soon.
09:30 AM – 10:30 AM
90 Days to AI Governance
Presenter: John Rood (Proceptual)
GRC and data professionals are increasingly being asked to lead AI governance efforts in 2026 — frequently without additional training or incremental staff.
This webinar explores the path to “minimum viable governance” — an effective starting point for a compliant, long-term AI governance program.
10:30 AM – 11:30 AM
Integrating Risk Management into CMMC Compliance: From Gap Analysis to Continuous Monitoring
Presenter: Dr. Constance Blanson (Walden University)
As organizations across the Defense Industrial Base (DIB) prepare for Cybersecurity Maturity Model Certification (CMMC) Level 2, risk management is no longer a theoretical exercise—it is a core operational requirement. This session explores how organizations can systematically integrate risk management practices into their CMMC compliance strategy, aligning with NIST SP 800-171 requirements while building a sustainable, audit-ready security posture.
Participants will gain practical insight into identifying, assessing, and prioritizing cybersecurity risks within scoped CUI environments and translating those risks into actionable remediation plans. The session will also examine common pitfalls in gap assessments, the role of continuous monitoring, and how leveraging Managed Service Providers (MSPs) or Managed Security Service Providers (MSSPs) can accelerate compliance maturity. Real-world examples and assessor-informed perspectives will be shared to help organizations move from reactive compliance to proactive risk governance.
11:30 AM – 12:30 PM
The AI Risks You’re Not Ready to Admit You Have
Presenter: Dr. Keith Morneau (ECPI University)
Most security teams didn’t see AI coming. Not like this. The tools arrived quickly, adoption followed, and somewhere in the middle, a new attack surface quietly opened.
Prompt injection, data poisoning, model theft, jailbreaking, AI-generated phishing, and deepfakes are just some of the AI risks your organization faces. These risks are emerging across enterprises, and most organizations are underprepared. Not because you aren’t trying, but because the frameworks you trust weren’t built for this.
This session is about where AI risk actually hides in your organization. Not in your policy documents, but in your workflows, vendor relationships, and data pipelines. We’ll get into threat assessments, which controls to consider, and how to build a response posture that protects you.
No hype. No doom. Just a clearer picture of what you’re dealing with, and a practical path forward.
Share this Event
If you are interested, planning to attend, or attending this event, please share with your colleagues across your social media networks.
Presenters
At times presenters for a session may change due to schedule conflicts and other unexpected situations. If a previously presenter has been substituted, the changes will be noted.
John Rood
Founder and CEO @ Proceptual
John is a recognized expert in AI literacy, governance, and organizational implementation, with extensive experience working specifically with privacy professionals. He’s passionate about helping professionals navigate the rapidly evolving AI landscape with confidence and strategic insight.
John’s Background
- Speaker at SHRM National Conference and multiple SHRM chapters
- Speaker at Chicago ATD
- Instructor at Michigan State University and University of Chicago, teaching AI governance, safety, and literacy
- Has trained hundreds of leaders on practical AI implementation
Constance Blanson
Core Faculty, College of Faculty and Human Potential @ Walden University
CISSP, CC, ITIL, Sec+, CMMC-PI, CCP
Dr. Constance Blanson is a cybersecurity professional, educator, and consultant specializing in CMMC readiness, NIST SP 800-171 compliance, and risk-based cybersecurity strategies. With a PhD in Information Security and multiple industry certifications, including Certified CMMC Professional (CCP), Certified CMMC Assessor (CCA), and CISSP, Dr. Blanson brings both academic rigor and real-world application to cybersecurity program development.
She has extensive experience supporting organizations in the Defense Industrial Base with gap assessments, mock audits, enclave scoping, and control implementation aligned to federal requirements. In addition to her consulting work, Dr. Blanson serves as a doctoral mentor and faculty member, guiding future leaders in aligning research with practical IT and cybersecurity challenges. Her work focuses on translating complex regulatory frameworks into actionable, scalable solutions that strengthen organizational resilience and audit readiness.
Dr. Keith Morneu
Dean of Computer and Information Science @ ECPI University
Dr. Keith Morneau is the Dean of Computer and Information Science at ECPI University. He has spent more than 30 years at the intersection of technology, education, and cybersecurity. He’s been building programs, closing workforce gaps, and asking uncomfortable questions about how to close the education and workforce skills gap. His research and practice span education, software development, cybersecurity, AI systems, and the very human problem of turning technical knowledge into workforce readiness.
CPE Information
Earn up to 4 Continuing Professional Education (CPE) credit in the area of Information Technology. The ISACA® Greater Washington, D.C. Chapter is registered with the National Association of State Boards of Accountancy (NASBA) as a sponsor of continuing professional education on the National Registry of CPE Sponsors. State boards of accountancy have final authority on the acceptance of individual courses for CPE credit. Complaints regarding registered sponsors may be submitted to the National Registry of CPE Sponsors through its website: www.NASBARegistry.org
Poll Questions
Participants must respond to all the poll questions via the Zoom polling feature or chat log in order to receive NASBA CPE credits. The GWDC will not be responsible for the participant’s inability to respond to the polls.
CPE Distribution and Evaluation Survey
CPEs will be distributed via e-mail along with the event evaluation survey after the completion of the event. Attendees must be present for the full event to receive full CPE credit.
Learning Objective
After attending this event, attendees will learn about current and future trends in the risk management space.
CPE-Related Details
- Prerequisites: None
- Advance Preparation: None
- Program Knowledge Level: Basic
- Delivery Method: Group Internet Based
- Field of Study: Information Technology – Technical