BEGIN:VCALENDAR VERSION:2.0 PRODID:-//ISACA Greater Washington, D.C. Chapter - ECPv6.16.4.1//NONSGML v1.0//EN CALSCALE:GREGORIAN METHOD:PUBLISH X-WR-CALNAME:ISACA Greater Washington, D.C. Chapter X-ORIGINAL-URL:https://isaca-gwdc.org X-WR-CALDESC:Events for ISACA Greater Washington, D.C. Chapter REFRESH-INTERVAL;VALUE=DURATION:PT1H X-Robots-Tag:noindex X-PUBLISHED-TTL:PT1H BEGIN:VTIMEZONE TZID:America/New_York BEGIN:DAYLIGHT TZOFFSETFROM:-0500 TZOFFSETTO:-0400 TZNAME:EDT DTSTART:20230312T070000 END:DAYLIGHT BEGIN:STANDARD TZOFFSETFROM:-0400 TZOFFSETTO:-0500 TZNAME:EST DTSTART:20231105T060000 END:STANDARD BEGIN:DAYLIGHT TZOFFSETFROM:-0500 TZOFFSETTO:-0400 TZNAME:EDT DTSTART:20240310T070000 END:DAYLIGHT BEGIN:STANDARD TZOFFSETFROM:-0400 TZOFFSETTO:-0500 TZNAME:EST DTSTART:20241103T060000 END:STANDARD BEGIN:DAYLIGHT TZOFFSETFROM:-0500 TZOFFSETTO:-0400 TZNAME:EDT DTSTART:20250309T070000 END:DAYLIGHT BEGIN:STANDARD TZOFFSETFROM:-0400 TZOFFSETTO:-0500 TZNAME:EST DTSTART:20251102T060000 END:STANDARD BEGIN:DAYLIGHT TZOFFSETFROM:-0500 TZOFFSETTO:-0400 TZNAME:EDT DTSTART:20260308T070000 END:DAYLIGHT BEGIN:STANDARD TZOFFSETFROM:-0400 TZOFFSETTO:-0500 TZNAME:EST DTSTART:20261101T060000 END:STANDARD END:VTIMEZONE BEGIN:VEVENT DTSTART;TZID=America/New_York:20250325T083000 DTEND;TZID=America/New_York:20250327T170000 DTSTAMP:20250106T011852Z CREATED:20250105T190836Z LAST-MODIFIED:20250106T011852Z UID:33464-1742891400-1743094800@isaca-gwdc.org SUMMARY:Certificate of Cloud Auditing Knowledge (CCAK™) Review Course DESCRIPTION:The CCAK review course is designed to cover the following five core areas of focus: Cloud governance\, Cloud compliance\, Cloud auditing\, Cloud assurance\, and CSA tools. The course will provide knowledge on cloud security assessment methods and techniques\, and will assist students in updating their expertise in cloud and hybrid security auditing. CCAK is a joint project by Cloud Security Alliance® and ISACA®. The CCAK is the first credential available for industry professionals to demonstrate their expertise in the essential principles of auditing cloud computing systems. The CCAK credential and training program fills the gap in the market for technical education for cloud IT auditing. \nThis course is intended for anyone sitting for the CCAK Exam. Students are expected to have prepared for the exam prior to attending the course. \nRegistration closes on March 24 @ 3pm. \nRegister Today! \n  \n\nRe-Take Discount \nStudents who take this GWDC review class and do not pass the corresponding Exam are eligible for a one-time 50% discount on the next review class offered by the GWDC for the exam. Please read the chapter event policy for discount details. \n\n  \nCourse Overview \n\nMarch 25 – 27 \nThe course will be held on March 25 – 27 from 8:30 am to 5:00 pm. \nAdd this event to your calendar using the Add to Calendar link at the bottom of the page. \n  \nVirtual Event \nThe course will be held using Zoom. \nPrior to the event\, participants must install the Zoom app on their respective devices. Participants using the web-based Zoom or calling via the phone may not be entitled to CPE credits. \n\n\nGWDC Member Fee – $500 \nThe fee for GWDC Members is $500 for the course.\nThe fee for all other registrants is $700 for the course. \nTo become a member and take advantage of the member rate for our events\, among other benefits\, join ISACA and select the Greater Washington D.C. Chapter as your local chapter. \n  \nEarn up to 24 CPEs \nAttendees can earn up to 24 CPEs for this event. \nParticipants must respond to all the poll questions via the Zoom polling feature or chat log in order to receive NASBA CPE credits. The GWDC will not be responsible for the participant’s inability to respond to the polls. \n\nShare this Event in Your Network \n\n \n \n \n \n \n \n \n \n \n Share on X\n \n \n \n \n \n \n \n \n \n \n \n Share on Linkedin\n \n \n \n \n \n \n \n \n \n \n \n Share on Facebook\n \n \n \n \n \n \n \n \n \n \n \n Share on Print\n \n \n \n \n \n \n \n \n \n \n Share on Email\n \n \n \n \n \n \n\n \n\n\n  \nCourse Modules \n\nModule 1 \n\n\nCloud Governance \n\nOverview of governance\nCloud assurance\nCloud governance frameworks\nCloud risk management\nCloud governance tools\n\n\n\nModule 2 \n\n\nCloud Compliance Program \n\nDesigning a cloud compliance program\nBuilding a cloud compliance program\nLegal and regulatory requirements\nStandards and security frameworks\nIdentifying controls and measuring effectiveness\nCSA certification\, attestation and validation\n\n\n\nModule 3 \n\n\nCCM and CAIQ Goals\, Objectives and Structure \n\nCCM\nCAIQ\nRelationship to standards: mappings and gap analysis\nTransition from CCM V3.0.1 to CCM V4\n\n\n\nModule 4 \n\n\nA Threat Analysis Methodology for Cloud Using CCM \n\nDefinitions and purpose\nAttack details and impacts\nMitigating controls and metrics\nUse case\n\n\n\nModule 5 \n\n\nEvaluating a Cloud Compliance Program \n\nEvaluation approach\nA governance perspective\nLegal\, regulatory and standards perspectives\nRisk perspectives\nServices changes implications\nThe need for continuous assurance/continuous compliance\n\n\n\nModule 6 \n\n\nCloud Auditing \n\nAudit characteristics\, criteria & principles\nAuditing standards for cloud computing\nAuditing an on-premises environment vs. cloud\nDifferences in assessing cloud services and cloud delivery models\nCloud audit building\, planning and execution\n\n\n\nModule 7 \n\n\nCCM: Auditing Controls \n\nCCM audit scoping guidance\nCCM risk evaluation guide\nCCM audit workbook\nCCM an auditing example\n\n\n\nModule 8 \n\n\nContinuous Assurance and Compliance \n\nDevOps and DevSecOps\nAuditing CI/CD pipelines\nDevSecOps automation and maturity\n\n\n\nModule 9 \n\n\nSTAR Program \n\nStandard for security and privacy\nOpen Certification Framework\nSTAR Registry\nSTAR Level 1\nSTAR Level 2\nSTAR Level 3\n\n\n  \nInstructor \n\n \n\n\nSushila Nair\nCISSP\, GIAC GSTRT\, GSNA GDSA\, CISA\, CISM\, CRISC\, CDPSE\, CCSK\, CCAK \nSushila Nair is the CEO of Cybernetic LLC and former Vice President of Capgemini’s North American Cybersecurity practice\, where she played a crucial role in driving secure digital transformation on a global scale. With over 30 years of experience in computing infrastructure\, business\, and security risk analysis\, Sushila has established herself as a leading authority in the cybersecurity domain. Her career highlights include serving as Vice President responsible for global security offers at NTT DATA Services\, a decade of leading her own IT and cybersecurity company across major UK cities\, and serving as a Chief Information Security Officer (CISO) and trusted advisor to boards\, where she honed her expertise in protecting organizations from evolving digital threats. Recognized through the top cybersecurity leader award by Security Magazine\, Sushila’s influence in the industry is undeniable. \nAn esteemed thought leader\, Sushila has shared her insights on prestigious platforms such as RSA Conference and ISACA’s global events. Her active participation in ISACA’s global emerging trends working group and her leadership as President of ISACA’s Greater Washington\, D.C. Chapter underscore her dedication to advancing the field of cybersecurity. In 2024\, her commitment to nurturing the next generation of cybersecurity professionals and promoting diversity in the industry was honored with the prestigious ISACA Technology for Humanity Award. \n \n\n  \nCCAK Information and Resources \n  \n \nThe CCAK exam will be offered via Computer-Based Testing (CBT). \nRegistration for the CCAK exam is administered by ISACA®\, not the GWDC. Registering for this review course does not register you for the exam. \n» Details on CCAK and Exam Registration \n  \nCCAK Exam Preparation \nStudents who wish to take the exam should purchase the exam study guide here. The Q&A database is purchased here and is helpful for the exam revision. \n  \nEvent Questions and Policies \n\n\nRegistration Questions \nIf you have any registration questions about this event\, please contact us by completing the Registration Contact Form linked below. \nRegistration Questions \n  \n\n\n\n\nCPE Questions \nIf you have CPE questions after the event has concluded\, please contact us by completing the CPE contact form linked below. \nCPE Questions \n  \n\n\n\n\nCancellation and Refunds \nCancellation and refund for advance registrations is allowed if cancellations are submitted through the registration system by the date registration closes. Refunds vary depending on the date of cancellation and cost of the event. See ISACA GWDC Event Policies for details. \n\n\n\n\nComplaints \nThe GWDC welcomes your comments\, complaints\, suggestions\, questions\, and other feedback concerning our website information and services. \nAll complaints should be submitted through the Registration Contact Form. \n\n\n  \nCPE Information \nEarn up to 24 Continuing Professional Education (CPE) credit in the area of Information Technology. The ISACA® Greater Washington\, D.C. Chapter is registered with the National Association of State Boards of Accountancy (NASBA) as a sponsor of continuing professional education on the National Registry of CPE Sponsors. State boards of accountancy have final authority on the acceptance of individual courses for CPE credit. Complaints regarding registered sponsors may be submitted to the National Registry of CPE Sponsors through its website: www.NASBARegistry.org \n  \nCPE Distribution and Evaluation Survey \nCPEs will be distributed via e-mail along with the event evaluation survey after the completion of the event. Attendees must be present for the full event to receive full CPE credit. \n  \nLearning Objectives \n\nDemonstrate key concepts of cloud governance and the role of assurance\, transparency and accountability in the cloud.\nExplain cloud risk management and the application of cloud governance tools.\nDevise the designing\, building and evaluating of a cloud compliance program based on laws\, regulations and regulatory standards.\nApply control objectives\, technical and process controls\, security metrics and relate them to cloud control frameworks\, certification\, attestation and authorizations.\nDefine and illustrate how to use the CSA Cloud Control Matrix and the CSA Top Threat Analysis Methodology.\nBuild and execute an audit plan that addresses cloud concerns by utilizing the Cloud Control Matrix.\nDiscuss the impact of continuous assurance and auditing\, cloud automation\, native development and integration models on auditing and compliance .\nDescribe the role of the CSA STAR Program.\n\n  \nCPE-Related Details \n\nPrerequisites and Advance Preparation: Students are expected to have prepared for the exam prior to attending the course.\nProgram Knowledge Level: Basic\nDelivery Method:  Group Internet Based\nField of Study:  Information Technology – Technical URL:https://isaca-gwdc.org/event/certificate-of-cloud-auditing-knowledge-ccak-review-course/ LOCATION:Virtual Event CATEGORIES:Review Courses ATTACH;FMTTYPE=image/png:https://isaca-gwdc.org/wp-content/uploads/2024/08/review_course_ccak-1.png ORGANIZER;CN="Clifton Persaud (Certifications Program and Special Assistance Requests)":MAILTO:certifications@isaca-gwdc.org END:VEVENT BEGIN:VEVENT DTSTART;TZID=America/New_York:20250320T083000 DTEND;TZID=America/New_York:20250320T123000 DTSTAMP:20250319T125528Z CREATED:20241231T183229Z LAST-MODIFIED:20250319T125528Z UID:33353-1742459400-1742473800@isaca-gwdc.org SUMMARY:SheLeadsTech - Celebrating Women in Technology DESCRIPTION:In celebration of Women’s Month this March\, this SheLeadsTech Conference brings together IT audit and cybersecurity professionals to celebrate the contributions of women leaders in the field while fostering inclusivity and collaboration for all. This unique event is designed for both men and women\, offering sessions that highlight innovation\, leadership\, and strategies to excel in the rapidly evolving tech landscape. \nFeaturing an all-female lineup of inspiring speakers\, this conference provides an opportunity to: \n\nGain actionable insights from industry leaders driving change in IT audit and cybersecurity\nExplore cutting-edge solutions and strategies to address today’s most pressing challenges\nBuild connections in an inclusive environment that champions diversity and collaboration\nCelebrate the achievements of women while engaging in meaningful discussions about empowering the next generation of leaders\n\nWhether you’re an IT auditor\, IT/Cyber professional\, or business leader\, join us for a day of inspiration\, education\, and connection as we celebrate Women’s Month and explore how diverse perspectives strengthen the future of technology and leadership. Together\, we can lead\, innovate\, and thrive. \nRegistration closes on March 19th @ 2pm. \nRegister Today! \n  \nConference Overview \n\nMarch 20 \nThe conference will be held on March 20\, 2025 from \n8:30 am to 12:30 pm. \nAdd this event to your calendar using the Add to Calendar link at the bottom of the page. \n  \nVirtual Event \nThe conference will be held using Zoom. \nPrior to the event\, participants must install the Zoom app on their respective devices. Participants using the web-based Zoom or calling via the phone may not be entitled to CPE credits. \n\n\nGWDC Member Fee – $10 \nThe fee for GWDC Members is $10 for the conference.\nThe fee for all other registrants is $30 for the conference. \nTo become a member and take advantage of the member rate for our events\, among other benefits\, join ISACA and select the Greater Washington D.C. Chapter as your local chapter. \n  \nEarn up to 4 CPEs \nAttendees can earn up to 4 CPEs for this event. \nParticipants must respond to all the poll questions via the Zoom polling feature or chat log in order to receive NASBA CPE credits. The GWDC will not be responsible for the participant’s inability to respond to the polls. \n\nShare this Event in Your Network \n\n \n \n \n \n \n \n \n \n \n Share on X\n \n \n \n \n \n \n \n \n \n \n \n Share on Linkedin\n \n \n \n \n \n \n \n \n \n \n \n Share on Facebook\n \n \n \n \n \n \n \n \n \n \n \n Share on Print\n \n \n \n \n \n \n \n \n \n \n Share on Email\n \n \n \n \n \n \n\n \n\n\n  \nSpeaker Insights Showcase \nThe GWDC Media Relations team works with Conference speakers to share insights into their IT journey as well as their topic for the conference in the “Speaker Insights Showcase” series. Below are the videos for three of this month’s speakers. \nYou can view the full Speaker Insights Showcase series on our YouTube channel. \n \n  \n\n \n  \n\nAgenda \n \n\n08:30 AM – 09:30 AM \n\n\nAccelerate Your Tech Mastery: Leveraging Generative AI to Empower Women in STEM \nPresenter: Sujatha Dantuluri (AWS) \nIn the rapidly evolving technology industry\, the pace of change and the emergence of transformative innovations\, such as generative AI\, have created a pressing need for continuous upskilling and reskilling. This is especially true for women in STEM fields\, who often face unique challenges in accessing the resources and support necessary to keep their skills sharp and stay ahead of the curve. \nThis session will explore how women in tech can leverage the capabilities of Amazon Bedrock\, a comprehensive generative AI platform\, to accelerate their technical upskilling and drive innovation. Through interactive demonstrations and real-world case studies\, attendees will learn how to leverage Bedrock’s advanced language models\, multimodal capabilities\, and customization features to tackle complex challenges\, automate repetitive tasks\, and unlock new levels of creativity and problem-solving. \n\n \n\n09:30 AM – 10:30 AM \n\n\nThe Power of Partnerships \nPresenter: Marcelle Lee (Equinix) \nIn my role as lead for cyber threat research at Equinix\, I am responsible for intelligence sharing partnerships. In this talk\, I will discuss how to establish\, maintain\, and grow these crucial relationships. I will also share practical tips on starting an intelligence sharing program and highlight some success stories that demonstrate the value of collaboration in enhancing cybersecurity. \n\n \n\n10:30 AM – 11:30 AM \n\n\nFireside Chat – Leadership & Talent Development: Breaking Barriers and Building Future-Ready Skills \nPresenters: Emily Lewis Pinnell (Tential Solutions) and Sushila Nair (Cybernetic) and Avneet Sabharwal (GWDC Programs Director) \nJoin us for an engaging fireside chat as part of the ISACA Greater Washington DC SheLeadsTech initiative\, where we will explore the evolving landscape of leadership and talent development. In an era of rapid technological advancements\, organizations are seeking professionals who can blend technical expertise with strategic leadership\, risk management\, and business acumen. \nThis conversation will delve into the most in-demand skills in cybersecurity and IT governance\, from cloud security and AI risk management to regulatory compliance and zero-trust architectures. We’ll discuss practical strategies for upskilling\, career progression\, and overcoming the ‘pink ceiling’—the invisible barriers that often hinder women from reaching leadership roles. \nThrough real-world insights and success stories\, our speakers will address mentorship\, executive presence\, and building influence. Whether you are an emerging leader or an experienced professional looking to advance\, this session will provide actionable strategies to help you future-proof your career\, navigate workplace challenges\, and step into leadership with confidence. \nDon’t miss this opportunity to gain industry insights\, and be part of the conversation shaping the future of leadership in IT audit and cybersecurity. \n\n \n\n11:30 AM – 12:30 AM \n\n\nPioneering Change Through Bold Innovation \nPresenter: Gurmeet Kaur (Agilious) \nThe United Nations finds that in 2022\, only 17% of inventors holding international patents were women\, while 83% were men. To achieve innovation and progress\, it’s necessary to challenge the status quo\, think outside the box\, and break established rules. \nJoin our speaker\, Gurmeet Kaur\, as she walks us through how to navigate barriers\, believe in your idea even when facing challenges\, and persevere against the bias that holds us back. \n\n  \nPresenters \n \n\n  \n  \n  \n\n\nSujatha Dantuluri\nSenior Solutions Architect on the US Federal Civilian team @ AWS \nSujatha Dantuluri is a Senior Solutions Architect on the US Federal Civilian team at AWS. With over 20 years of experience supporting both commercial and government customers\, she is a trusted advisor in building and architecting mission-critical solutions. An active public speaker\, Sujatha also contributes to IEEE standards. Additionally\, she serves as a mentor for women in within and outside the AWS. Sujatha is an active participant in initiatives that enable and empower women in the industry. \n \n\n \n\n \n\n\nMarcelle Lee\nPrincipal Information Security Engineer | Team Lead\, Cyber Threat Research @ Equinix \nMarcelle is a principal information security engineer at Equinix\, the world’s largest digital infrastructure company\, where she oversees the cyber threat research team. She has more than ten years of experience in cybersecurity\, specializing in cyber threat analysis\, research\, and reporting\, identification of tactics\, techniques and procedures (TTPs)\, campaign tracking\, threat hunting\, network traffic analysis\, intrusion analysis\, digital forensics\, malware analysis\, and technical writing. Before embarking on her cyber career\, Marcelle had years of experience leading operations and projects for a variety of organizations. \nMarcelle is also a passionate educator and a published author\, teaching digital forensics and cybersecurity courses at University of Maryland. She is a recognized community leader\, presenting technical talks and training\, providing mentoring\, and volunteering on numerous boards and committees. She is driven by the mission of advancing and empowering people in the field of cybersecurity. \nIf you are looking for a key for a CTF challenge it is “diversity.” \n \n\n \n\n \n\n\nEmily Lewis Pinnell\nSenior Vice President\, Professional Services @ Tential Solutions \nI have worked with hundreds of customers in managing Data\, Cloud and AI initiatives. In building innovative professional services teams\, I focus on the pairing technical expertise with a focus on the impact to people and process. \nI love building and making a tangible impact. With a focus on strategic growth\, I’ve achieved significant success in delivering compelling and tangible results. I am demonstrably committed to optimizing organizational systems\, performance—and the bottom line. \nI effectively lead and empower top-performing global teams. With excellent communication and interpersonal skills\, I easily build productive relationships with diverse groups of key stakeholders\, shareholders\, clients\, and colleagues at all levels. \n \n\n\n \n\n\nSushila Nair\nCEO of Cybernetic LLC\nCISSP\, GIAC GSTRT\, GSNA GDSA\, CISA\, CISM\, CRISC\, CDPSE\, CCSK\, CCAK \nSushila Nair is the CEO of Cybernetic LLC and former Vice President of Capgemini’s North American Cybersecurity practice\, where she played a crucial role in driving secure digital transformation on a global scale. With over 30 years of experience in computing infrastructure\, business\, and security risk analysis\, Sushila has established herself as a leading authority in the cybersecurity domain. Her career highlights include serving as Vice President responsible for global security offers at NTT DATA Services\, a decade of leading her own IT and cybersecurity company across major UK cities\, and serving as a Chief Information Security Officer (CISO) and trusted advisor to boards\, where she honed her expertise in protecting organizations from evolving digital threats. Recognized through the top cybersecurity leader award by Security Magazine\, Sushila’s influence in the industry is undeniable. \nAn esteemed thought leader\, Sushila has shared her insights on prestigious platforms such as RSA Conference and ISACA’s global events. Her active participation in ISACA’s global emerging trends working group and her leadership as President of ISACA’s Greater Washington\, D.C. Chapter underscore her dedication to advancing the field of cybersecurity. In 2024\, her commitment to nurturing the next generation of cybersecurity professionals and promoting diversity in the industry was honored with the prestigious ISACA Technology for Humanity Award. \n \n\n\n \n\n\nAvneet Sabharwal\nIT Audit Manager and GWDC Programs Director\nCISA\, CMMC-AB Registered Practioner \nAvneet Sabharwal is an experienced IT Auditor with nearly a decade of expertise across various industries\, including consulting\, finance\, and telecommunications. She has worked extensively on SOX\, SOC 1\, and FSA audits. In her current role\, Avneet is an Internal Audit Manager at a financial planning firm\, focusing on information systems and data analytics. \nAvneet holds a Master’s degree in Information Systems and Technology and an MBA from the George Washington School of Business. She is also certified as a CISA and a CMMC-AB Registered Practitioner. \nIn addition to her professional role\, Avneet serves as the Director of Virtual Conferences on the ISACA GWDC chapter Board\, where she is responsible for planning\, organizing\, and hosting monthly conferences. \nIn her free time\, Avneet enjoys traveling and exploring new places with her family\, reading thriller novels\, and\, recently\, delving into the art of prompting. \n \n\n \n\n \n\n\nGurmeet Kaur\nChief Product & Experience Officer @ Agilious \nGurmeet is a product and design leader with passion for designing and delivering extraordinary user experiences. Gurmeet’s expertise is in driving user engagement by planning\, designing and delivering digital products that meet end user needs. She brings 25+ years of experience leading successful transformations across the private and non-profit sectors. Gurmeet is building Agilous’s strategy and design practices to ensure all applications and products we build are based on customer data and deliver clear value to the enterprise (private or public sector) and their end users. \nGurmeet joined Agilious from Capital One\, where she built a Developer Experience team from the ground up and delivered the long term vision for Capital One Developer Experience. Gurmeet has led the product transformation at AARP’s for-profit sector and doubled member engagement on the benefits’ app. In her tenure at Marriott she served as the digital lead for all acquisitions\, successfully integrating multiple brands into the digital Marriott platforms\, including The Ritz-Carlton\, Starwood\, Gaylord\, MOXY\, Atlantis\, Protea\, and AC hotels. \nGurmeet is a Gallup certified coach with deep expertise in building high-performing teams by leveraging collective skills\, diverse perspectives\, and complementary expertise. She is also the published author of Empathy & Arrogance: The Paradox of Digital Products\, a compilation of lessons learned over two decades of building digital products. \n \n\n  \nEvent Questions and Policies \n\n\nRegistration Questions \nIf you have any registration questions about this event\, please contact us by completing the Registration Contact Form linked below. \nRegistration Questions \n  \n\n\n\n\nCPE Questions \nIf you have CPE questions after the event has concluded\, please contact us by completing the CPE contact form linked below. \nCPE Questions \n  \n\n\n\n\nCancellation and Refunds \nCancellation and refund for advance registrations is allowed if cancellations are submitted through the registration system by the date registration closes. Refunds vary depending on the date of cancellation and cost of the event. See ISACA GWDC Event Policies for details. \n\n\n\n\nComplaints \nThe GWDC welcomes your comments\, complaints\, suggestions\, questions\, and other feedback concerning our website information and services. \nAll complaints should be submitted through the Registration Contact Form. \n\n\n  \n  \nCPE Information \nEarn up to 4 Continuing Professional Education (CPE) credit in the area of Information Technology. The ISACA® Greater Washington\, D.C. Chapter is registered with the National Association of State Boards of Accountancy (NASBA) as a sponsor of continuing professional education on the National Registry of CPE Sponsors. State boards of accountancy have final authority on the acceptance of individual courses for CPE credit. Complaints regarding registered sponsors may be submitted to the National Registry of CPE Sponsors through its website: www.NASBARegistry.org \n  \nCPE Distribution and Evaluation Survey \nCPEs will be distributed via e-mail along with the event evaluation survey after the completion of the event. Attendees must be present for the full event to receive full CPE credit. \n  \nLearning Objective \nAfter attending this event\, attendees will learn about current and future trends in emerging technology. \n  \nCPE-Related Details \n\nPrerequisites: None\nAdvance Preparation: None\nProgram Knowledge Level: Basic\nDelivery Method:  Group Internet Based\nField of Study:  Information Technology – Technical URL:https://isaca-gwdc.org/event/emerging-technology-conference-2025/ LOCATION:Virtual Event CATEGORIES:Conferences ATTACH;FMTTYPE=image/png:https://isaca-gwdc.org/wp-content/uploads/2024/12/conference-emergingtech-sheleadstech.png ORGANIZER;CN="Avneet Sabharwal":MAILTO:programs@isaca-gwdc.org END:VEVENT BEGIN:VEVENT DTSTART;TZID=America/New_York:20250319T080000 DTEND;TZID=America/New_York:20250319T173000 DTSTAMP:20250311T230146Z CREATED:20250105T185012Z LAST-MODIFIED:20250311T230146Z UID:33454-1742371200-1742405400@isaca-gwdc.org SUMMARY:Cybersecurity Audit Certificate Review Course DESCRIPTION:It’s not just the high cost to an organization in the event of a breach\, but the inevitability of an attack that makes cybersecurity critical. With the increasing number of cyberthreats\, it is becoming critical for the audit plan in every organization to include cybersecurity. As a result\, auditors are increasingly being required to audit cybersecurity processes\, policies and tools to provide assurance that their enterprise has appropriate controls in place. Vulnerabilities in cybersecurity can pose serious risks to the entire organization—making the need for IT auditors well-versed in cybersecurity audit greater than ever. \nISACA’s Cybersecurity Audit Certificate Program provides audit/assurance professionals with the knowledge needed to excel in cybersecurity audits. It provides security professionals with an understanding of the audit process\, and IT risk professionals with an understanding of cyber-related risk and mitigating controls. \nThis course is intended for anyone wanting to strengthen their cybersecurity audit skills as well as those students preparing for the Cybersecurity Audit Certificate exam. \nRegistration closes on March 18 @ 3pm. \nRegister Today! \n  \n\nRe-Take Discount \nStudents who take this GWDC review class and do not pass the corresponding Exam are eligible for a one-time 50% discount on the next review class offered by the GWDC for the exam. Please read the chapter event policy for discount details. \n\n  \nCourse Overview \n\nMarch 19 \nThe course will be held on March 19\, 2025 from \n8:00 am to 5:30 pm. \nAdd this event to your calendar using the Add to Calendar link at the bottom of the page. \n  \nVirtual Event \nThe course will be held using Zoom. \nPrior to the event\, participants must install the Zoom app on their respective devices. Participants using the web-based Zoom or calling via the phone may not be entitled to CPE credits. \n\n\nGWDC Member Fee – $125 \nThe fee for GWDC Members is $125 for the course.\nThe fee for all other registrants is $200 for the course. \nTo become a member and take advantage of the member rate for our events\, among other benefits\, join ISACA and select the Greater Washington D.C. Chapter as your local chapter. \n  \nEarn up to 9 CPEs \nAttendees can earn up to 9 CPEs for this event. \nParticipants must respond to all the poll questions via the Zoom polling feature or chat log in order to receive NASBA CPE credits. The GWDC will not be responsible for the participant’s inability to respond to the polls. \n\nShare this Event in Your Network \n\n \n \n \n \n \n \n \n \n \n Share on X\n \n \n \n \n \n \n \n \n \n \n \n Share on Linkedin\n \n \n \n \n \n \n \n \n \n \n \n Share on Facebook\n \n \n \n \n \n \n \n \n \n \n \n Share on Print\n \n \n \n \n \n \n \n \n \n \n Share on Email\n \n \n \n \n \n \n\n \n\n\n  \nAgenda \nThe course cover the following domains for the Cybersecurity Audit Certificate: \n\nSecurity Frameworks & Best Practices\nThreat Assessment & Management\nAuthorization Processes & Governance\nAsset\, Configuration\, Change & Patch Management Practices\nEnterprise Identity & Information Access Management\nCyber & Legal Regulatory Requirements\n\n  \nInstructor \n\n \n\n\nSushila Nair\nCISSP\, GIAC GSTRT\, GSNA GDSA\, CISA\, CISM\, CRISC\, CDPSE\, CCSK\, CCAK \nSushila Nair is the CEO of Cybernetic LLC and former Vice President of Capgemini’s North American Cybersecurity practice\, where she played a crucial role in driving secure digital transformation on a global scale. With over 30 years of experience in computing infrastructure\, business\, and security risk analysis\, Sushila has established herself as a leading authority in the cybersecurity domain. Her career highlights include serving as Vice President responsible for global security offers at NTT DATA Services\, a decade of leading her own IT and cybersecurity company across major UK cities\, and serving as a Chief Information Security Officer (CISO) and trusted advisor to boards\, where she honed her expertise in protecting organizations from evolving digital threats. Recognized through the top cybersecurity leader award by Security Magazine\, Sushila’s influence in the industry is undeniable. \nAn esteemed thought leader\, Sushila has shared her insights on prestigious platforms such as RSA Conference and ISACA’s global events. Her active participation in ISACA’s global emerging trends working group and her leadership as President of ISACA’s Greater Washington\, D.C. Chapter underscore her dedication to advancing the field of cybersecurity. In 2024\, her commitment to nurturing the next generation of cybersecurity professionals and promoting diversity in the industry was honored with the prestigious ISACA Technology for Humanity Award. \n \n\n  \nCybersecurity Audit Certificate Exam \n \nThe exam is be offered via Computer-Based Testing (CBT). \nRegistration and administration of the exam is handled by ISACA®\, not the GWDC. Registering for this review course does not register you for the exam. \nFor full details on this certificate\, visit the ISACA’s Cybersecurity Audit Certificate page. \n  \nExam Preparation \nFor students who wish to take the Cybersecurity Audit Certificate exam\, it is highly recommended that the prospective candidates should purchase the official study guide. \n  \nEvent Questions and Policies \n\n\nRegistration Questions \nIf you have any registration questions about this event\, please contact us by completing the Registration Contact Form linked below. \nRegistration Questions \n  \n\n\n\n\nCPE Questions \nIf you have CPE questions after the event has concluded\, please contact us by completing the CPE contact form linked below. \nCPE Questions \n  \n\n\n\n\nCancellation and Refunds \nCancellation and refund for advance registrations is allowed if cancellations are submitted through the registration system by the date registration closes. Refunds vary depending on the date of cancellation and cost of the event. See ISACA GWDC Event Policies for details. \n\n\n\n\nComplaints \nThe GWDC welcomes your comments\, complaints\, suggestions\, questions\, and other feedback concerning our website information and services. \nAll complaints should be submitted through the Registration Contact Form. \n\n\n  \nCPE Information \nEarn up to 9 Continuing Professional Education (CPE) credit in the area of Information Technology. The ISACA® Greater Washington\, D.C. Chapter is registered with the National Association of State Boards of Accountancy (NASBA) as a sponsor of continuing professional education on the National Registry of CPE Sponsors. State boards of accountancy have final authority on the acceptance of individual courses for CPE credit. Complaints regarding registered sponsors may be submitted to the National Registry of CPE Sponsors through its website: www.NASBARegistry.org. \n  \nCPE Distribution and Evaluation Survey \nCPEs will be distributed via e-mail along with the event evaluation survey after the completion of the event. Attendees must be present for the full event to receive full CPE credit. \n  \nLearning Objectives: \nBy the end of this course you will be able to: \n\nDefine the roles and responsibilities of a cybersecurity auditor\nUnderstand security frameworks to identify best practices\nAssess the threats with the help of vulnerability management tools\nExplain all aspects of cybersecurity governance\nManage enterprise identity and information access\nRecall the definitions of cybersecurity processes and components related to cybersecurity operations\nDefine threat and vulnerability management\nBuild and deploy secure authorization processes\nDescribe the concepts of firewall\, wireless and network security technologies in reducing the risk of cyber attack\n\n  \nCPE-Related Details \n\nPrerequisites and Advance Preparation: While not required\, professionals who possess a fundamental understanding of cybersecurity concepts and prior audit experience will be best positioned to succeed in this course and the Cybersecurity Audit Certificate Exam.\nProgram Knowledge Level: Basic\nDelivery Method:  Group Internet Based\nField of Study:  Information Technology – Technical URL:https://isaca-gwdc.org/event/cybersecurity-audit-review-course/ LOCATION:Virtual Event CATEGORIES:Review Courses ATTACH;FMTTYPE=image/png:https://isaca-gwdc.org/wp-content/uploads/2025/01/review_course_cyberaudit.png ORGANIZER;CN="Clifton Persaud (Certifications Program and Special Assistance Requests)":MAILTO:certifications@isaca-gwdc.org END:VEVENT BEGIN:VEVENT DTSTART;TZID=America/New_York:20250317T090000 DTEND;TZID=America/New_York:20250319T170000 DTSTAMP:20250105T200851Z CREATED:20250105T183650Z LAST-MODIFIED:20250105T200851Z UID:33483-1742202000-1742403600@isaca-gwdc.org SUMMARY:Certified in Risk and Information Systems Controls™ (CRISC®) Review Course DESCRIPTION:The GWDC is sponsoring an intensive 3-day virtual review course for the Certified in Risk and Information Systems Controls™ (CRISC®).  This review course will provide practical advice on preparing for the CRISC exam and specific instruction regarding the job practice areas addressed by CRISC as defined by ISACA® Global. \nThis event is intended for anyone sitting for the CRISC Exam. Students are expected to have prepared for the exam prior to attending the course. \nRegistration closes on March 16 @ 3 pm. \nRegister Today! \n  \n\nRe-Take Discount \nStudents who take this GWDC review class and do not pass the corresponding Exam are eligible for a one-time 50% discount on the next review class offered by the GWDC for the exam. Please read the chapter event policy for discount details. \n\n  \nCourse Overview \n\nMarch 17 – 19 \nThe course will be held on March 17 – 19 from 9:00 am to 5:00 pm. \nAdd this event to your calendar using the Add to Calendar link at the bottom of the page. \n  \nVirtual Event \nThe course will be held using Teams. \nPrior to the event\, participants must install the Team app on their respective devices. Participants using the web-based Teams or calling via the phone may not be entitled to CPE credits. \n\n\nGWDC Member Fee – $550 \nThe fee for GWDC Members is $550 for the course.\nThe fee for all other registrants is $800 for the course. \nTo become a member and take advantage of the member rate for our events\, among other benefits\, join ISACA and select the Greater Washington D.C. Chapter as your local chapter. \n  \nEarn up to 21 CPEs \nAttendees can earn up to 21 CPEs for this event. \nParticipants must respond to all the poll questions via the Teams polling feature or chat log in order to receive NASBA CPE credits. The GWDC will not be responsible for the participant’s inability to respond to the polls. \n\nShare this Event in Your Network \n\n \n \n \n \n \n \n \n \n \n Share on X\n \n \n \n \n \n \n \n \n \n \n \n Share on Linkedin\n \n \n \n \n \n \n \n \n \n \n \n Share on Facebook\n \n \n \n \n \n \n \n \n \n \n \n Share on Print\n \n \n \n \n \n \n \n \n \n \n Share on Email\n \n \n \n \n \n \n\n \n\n\n  \nAgenda \n\nDay 1 \n\n\nIntroduction \nGovernance (Domain 1) \n\n\nDay 2 \n\n\nIT Risk Assessment (Domain 2) \nRisk Response and Reporting (Domain 3) \n\n\nDay 3 \n\n\nInformation Technology and Security (Domain 4) \nPractice Tests \n\n  \nCourse Materials and Exam Resources \nMaterials Provided During the Course \nParticipants receive a Study Guide to help them prepare for the CRISC exam. The Study Guide contains a presentation\, a case study\, and 20 quiz questions for each domain in the official CRISC Review Manual. The Study Guide contains additional material such as suggested study approach\, exam taking tips\, list of “must know” vocabulary terms\, and other suggested readings to aid participants in their exam preparation. \n  \nStudy Materials \nThe instructor highly recommends that students purchase the CRISC Review Manual and the CRISC Review Questions\, Answers\, and Explanations Database – 12 Month. Below are the study materials available for purchase from the ISACA Bookstore: \n\nCRISC Review Manual\nCRISC Review Questions\, Answers & Explanations Manual\nCRISC Review Questions\, Answers & Explanation Database – 12 month subscription\n\n**It is highly recommended to order these at the earliest opportunity to avoid any possible delays in their availability for the start of the program. \n  \nAdditional Study Resources \nCandidates should review the Exam Candidate Guide and other resources on the ISACA CRISC page as part of their study program.  \n  \nInstructor \n\n \n\n\nJim Wiggins\nCISSP\, ISSEP\, CISM\, CISA\, CRISC\, CDPSE\, CGRC\, CySA+\, SCNA\, SCNP\, IAM\, IEM\, SSCP\, CEH\, ECSA\, CHFI\, LPT\, TICSA\, CIWSA\, Security+\, and MCSE: Security and FITSP-M \nJim has over 28 years of direct experience in the design\, operation\, management\, and auditing of information technology systems\, with the past 23 years focused on information systems security. He has an extensive background in technical education and specializes in security certification courses aimed at federal and government contracting clients. \nToday\, Jim is the Founder and Principal of Securible\, LLC. Securible is an information security service provider offering cyber training programs to organizations of all sizes. At Securible\, Jim has taught IT security certification courses such as CISSP\, CISM\, CISA\, Ethical Hacking\, RMF\, Security+\, and other courses requested by Securible’s clients. Currently\, he provides education and training support for the National Risk Management Center (NRMC) at the Cybersecurity and Infrastructure Security Agency (CISA) within the Department of Homeland Security (DHS). More information on Securible can be found at: http://www.securible.com. \nJim is also the Founder and Chief Executive Officer (CEO) of the Federal IT Security Institute (FITSI). FITSI is a 501(c)(6) non-profit certification body accredited by the ANSI National Accreditation Board (ANAB) under ISO 17024:2012. FITSI offers a role-based IT security certification program targeted at the federal workforce. More information on FITSI can be found at: http://www.fitsi.org. \nAdditionally\, Jim is the Founder and Executive Director of the FITSI Foundation. The FITSI Foundation is a 501(c)(3) public charity that focuses on cyber education and serves as the philanthropic sister organization of the Federal IT Security Institute. The FITSI Foundation operates the Wounded Warrior Cyber Combat Academy (W2CCA). More information on the FITSI Foundation can be found at: https://www.fitsifoundation.org. \nIn 2020\, Jim launched a TV show on cybersecurity called “Cybersecurity Today\,” which can be viewed in the Washington\, DC area. Episodes can also be streamed online at the following website: http://www.cybersecuritytoday.org. \nIn 2019\, FCW named Jim to the “Federal 100” for his tireless efforts to promote cybersecurity education across all branches of the federal government. \nIn 2011\, the Federal Information Systems Security Educators’ Association (FISSEA) named him “Educator of the Year” for the impact he continues to make on the federal workforce. \nJim holds the following IA/IT security certifications: CISSP\, ISSEP\, CISM\, CISA\, CRISC\, CDPSE\, CGRC\, CySA+\, SCNA\, SCNP\, IAM\, IEM\, SSCP\, CEH\, ECSA\, CHFI\, LPT\, TICSA\, CIWSA\, Security+\, and MCSE: Security and FITSP-M. \n \n\n  \nMore Information on CISM \n \nRegistration for the CRISC exam is administered by ISACA®\, not the GWDC. Registering for this review course does not register you for the exam. \n» Details on CRISC and Exam Registration \n  \nEvent Questions and Policies \n\n\nRegistration Questions \nIf you have any registration questions about this event\, please contact us by completing the Registration Contact Form linked below. \nRegistration Questions \n  \n\n\n\n\nCPE Questions \nIf you have CPE questions after the event has concluded\, please contact us by completing the CPE contact form linked below. \nCPE Questions \n  \n\n\n\n\nCancellation and Refunds \nCancellation and refund for advance registrations is allowed if cancellations are submitted through the registration system by the date registration closes. Refunds vary depending on the date of cancellation and cost of the event. See ISACA GWDC Event Policies for details. \n\n\n\n\nComplaints \nThe GWDC welcomes your comments\, complaints\, suggestions\, questions\, and other feedback concerning our website information and services. \nAll complaints should be submitted through the Registration Contact Form. \n\n\n  \nCPE Information \nEarn up to 21 Continuing Professional Education (CPE) credit in the area of Information Technology. The ISACA® Greater Washington\, D.C. Chapter is registered with the National Association of State Boards of Accountancy (NASBA) as a sponsor of continuing professional education on the National Registry of CPE Sponsors. State boards of accountancy have final authority on the acceptance of individual courses for CPE credit. Complaints regarding registered sponsors may be submitted to the National Registry of CPE Sponsors through its website: www.NASBARegistry.org \n  \nCPE Distribution and Evaluation Survey \nCPEs will be distributed via e-mail along with the event evaluation survey after the completion of the event. Attendees must be present for the full event and respond to polling questions to receive full CPE credit. \n  \nCPE-Related Details \n\nLearning Objective: After completing the course\, students will be prepared to sit for the CRISC exam.\nPrerequisites and Advance Preparation: Students are expected to have prepared for the exam prior to attending the course.\nProgram Knowledge Level: Basic\nDelivery Method:  Group Internet Based\nField of Study:  Information Technology – Technical URL:https://isaca-gwdc.org/event/crisc-review-course-spring2025/ LOCATION:Virtual Event CATEGORIES:Review Courses ATTACH;FMTTYPE=image/png:https://isaca-gwdc.org/wp-content/uploads/2025/01/review_course_crisc.png ORGANIZER;CN="Clifton Persaud (Certifications Program and Special Assistance Requests)":MAILTO:certifications@isaca-gwdc.org END:VEVENT BEGIN:VEVENT DTSTART;TZID=America/New_York:20250310T083000 DTEND;TZID=America/New_York:20250313T170000 DTSTAMP:20250228T124458Z CREATED:20250127T142948Z LAST-MODIFIED:20250228T124458Z UID:33589-1741595400-1741885200@isaca-gwdc.org SUMMARY:Certified Information System Auditor® (CISA®) Review Course (Weekday Sessions) DESCRIPTION:CISA Review Course – Weekday Sessions \nThe ISACA Greater Washington\, D.C. Chapter (GWDC) is hosting an intensive 4-day virtual review course for the Certified Information Systems Auditor® (CISA®) Exam. This course is designed to provide practical guidance on preparing for the CISA exam and will cover the essential job practice areas as defined by ISACA® Global.  \nThis event is ideal for professionals planning to sit for the CISA exam. Attendees are encouraged to prepare in advance to maximize the benefits of the course. \nRegistration closes on March 9 @ 12pm.  \nRegister Today! \n  \n\nRe-Take Discount \nStudents who take this GWDC review class and do not pass the corresponding Exam are eligible for a one-time 50% discount on the next review class offered by the GWDC for the exam. Please read the chapter event policy for discount details. \n\n  \nCourse Overview \n\nMarch 10 – 13 \nThe course will be held on March 10 – 13\, 2025 from 9:00 am to 5:00 pm. \nAdd this event to your calendar using the Add to Calendar link at the bottom of the page. \n  \nVirtual Event \nThe course will be held using Teams. \nPrior to the event\, participants must install the Teams app on their respective devices. The instructor will send out the Teams link closer to the course start. \n\n\nGWDC Member Fee – $500 \nThe fee for GWDC Members is $500 for the course.\nThe fee for all other registrants is $1\,000 for the course. \nTo become a member and take advantage of the member rate for our events\, among other benefits\, join ISACA and select the Greater Washington D.C. Chapter as your local chapter. \n  \nEarn up to 32 CPEs \nAttendees can earn up to 32 CPEs for this event. \nParticipants must respond to all the poll questions via the Teams polling feature or chat log in order to receive NASBA CPE credits. The GWDC will not be responsible for the participant’s inability to respond to the polls. \n\nShare this Event in Your Network \n\n \n \n \n \n \n \n \n \n \n Share on X\n \n \n \n \n \n \n \n \n \n \n \n Share on Linkedin\n \n \n \n \n \n \n \n \n \n \n \n Share on Facebook\n \n \n \n \n \n \n \n \n \n \n \n Share on Print\n \n \n \n \n \n \n \n \n \n \n Share on Email\n \n \n \n \n \n \n\n \n\n\n  \nAgenda \nPlease note\, these are estimates as some domains (especially Domains 4 and 5) may span multiple days. \n\nDay 1: 18% Domain 1 – Information Systems Auditing Process & 18% Domain 2 – Governance & Management of IT\nDay 2: 12% Domain 3 – Information Systems Acquisition\, Development & Implementation\nDay 3: 26% Domain 4 – Information Systems Operations & Business Resilience\nDay 4: 26% Domain 5 – Protection of Information Assets\n\n  \nExam Resources \nStudy Recommendations \nThe instructor highly recommends that students purchase the CISA Review Manual and the CISA Review Questions\, Answers\, and Explanations Database – 12 Month ahead of the course date. Below are the study materials available for purchase from the ISACA Bookstore: \n\nCISA Review Manual\nCISA Review Questions\, Answers & Explanations Manual\nCISA Review Questions\, Answers & Explanation Database – 12 month subscription\n\n**It is highly recommended to order these at the earliest opportunity to avoid any possible delays in their availability for the start of the program. \n  \nAdditional Study Resources \nCandidates should review the Exam Candidate Guide and other resources on the ISACA CISA page as part of their study program.  \n  \nInstructor \n\n \n\n\nJim Wiggins\nCISSP\, ISSEP\, CISM\, CISA\, CRISC\, CDPSE\, CGRC\, CySA+\, SCNA\, SCNP\, IAM\, IEM\, SSCP\, CEH\, ECSA\, CHFI\, LPT\, TICSA\, CIWSA\, Security+\, and MCSE: Security and FITSP-M \nJim has over 28 years of direct experience in the design\, operation\, management\, and auditing of information technology systems\, with the past 23 years focused on information systems security. He has an extensive background in technical education and specializes in security certification courses aimed at federal and government contracting clients. \nToday\, Jim is the Founder and Principal of Securible\, LLC. Securible is an information security service provider offering cyber training programs to organizations of all sizes. At Securible\, Jim has taught IT security certification courses such as CISSP\, CISM\, CISA\, Ethical Hacking\, RMF\, Security+\, and other courses requested by Securible’s clients. Currently\, he provides education and training support for the National Risk Management Center (NRMC) at the Cybersecurity and Infrastructure Security Agency (CISA) within the Department of Homeland Security (DHS). More information on Securible can be found at: http://www.securible.com. \nJim is also the Founder and Chief Executive Officer (CEO) of the Federal IT Security Institute (FITSI). FITSI is a 501(c)(6) non-profit certification body accredited by the ANSI National Accreditation Board (ANAB) under ISO 17024:2012. FITSI offers a role-based IT security certification program targeted at the federal workforce. More information on FITSI can be found at: http://www.fitsi.org. \nAdditionally\, Jim is the Founder and Executive Director of the FITSI Foundation. The FITSI Foundation is a 501(c)(3) public charity that focuses on cyber education and serves as the philanthropic sister organization of the Federal IT Security Institute. The FITSI Foundation operates the Wounded Warrior Cyber Combat Academy (W2CCA). More information on the FITSI Foundation can be found at: https://www.fitsifoundation.org. \nIn 2020\, Jim launched a TV show on cybersecurity called “Cybersecurity Today\,” which can be viewed in the Washington\, DC area. Episodes can also be streamed online at the following website: http://www.cybersecuritytoday.org. \nIn 2019\, FCW named Jim to the “Federal 100” for his tireless efforts to promote cybersecurity education across all branches of the federal government. \nIn 2011\, the Federal Information Systems Security Educators’ Association (FISSEA) named him “Educator of the Year” for the impact he continues to make on the federal workforce. \nJim holds the following IA/IT security certifications: CISSP\, ISSEP\, CISM\, CISA\, CRISC\, CDPSE\, CGRC\, CySA+\, SCNA\, SCNP\, IAM\, IEM\, SSCP\, CEH\, ECSA\, CHFI\, LPT\, TICSA\, CIWSA\, Security+\, and MCSE: Security and FITSP-M. \n \n\n  \nMore Information on CISA \n \nRegistration for the CISA exam is administered by ISACA®\, not the GWDC. Registering for this review course does not register you for the exam. \n» Details on CISA and Exam Registration \n  \nEvent Questions and Policies \n\n\nRegistration Questions \nIf you have any registration questions about this event\, please contact us by completing the Registration Contact Form linked below. \nRegistration Questions \n  \n\n\n\n\nCPE Questions \nIf you have CPE questions after the event has concluded\, please contact us by completing the CPE contact form linked below. \nCPE Questions \n  \n\n\n\n\nCancellation and Refunds \nCancellation and refund for advance registrations is allowed if cancellations are submitted through the registration system by the date registration closes. Refunds vary depending on the date of cancellation and cost of the event. See ISACA GWDC Event Policies for details. \n\n\n\n\nComplaints \nThe GWDC welcomes your comments\, complaints\, suggestions\, questions\, and other feedback concerning our website information and services. \nAll complaints should be submitted through the Registration Contact Form. \n\n\n  \nCPE Information \nEarn up to 32 Continuing Professional Education (CPE) credit in the area of Information Technology. The ISACA® Greater Washington\, D.C. Chapter is registered with the National Association of State Boards of Accountancy (NASBA) as a sponsor of continuing professional education on the National Registry of CPE Sponsors. State boards of accountancy have final authority on the acceptance of individual courses for CPE credit. Complaints regarding registered sponsors may be submitted to the National Registry of CPE Sponsors through its website: www.NASBARegistry.org \n  \nCPE Distribution and Evaluation Survey \nCPEs will be distributed via e-mail along with the event evaluation survey after the completion of the event. Attendees must be present for the full event to receive full CPE credit. \n  \nCPE-Related Details \n\nLearning Objective: After completing the course\, students will be prepared to sit for the CISA exam.\nPrerequisites and Advance Preparation: Students are expected to have prepared for the exam prior to attending the course.\nProgram Knowledge Level: Basic\nDelivery Method:  Group Internet Based\nField of Study:  Information Technology – Technical URL:https://isaca-gwdc.org/event/certified-information-system-auditor-cisa-review-course-weekday-sessions-2025/ LOCATION:Virtual Event CATEGORIES:Review Courses ATTACH;FMTTYPE=image/png:https://isaca-gwdc.org/wp-content/uploads/2024/08/review_course_CISA.png ORGANIZER;CN="Clifton Persaud (Certifications Program and Special Assistance Requests)":MAILTO:certifications@isaca-gwdc.org END:VEVENT BEGIN:VEVENT DTSTART;TZID=America/New_York:20250307T083000 DTEND;TZID=America/New_York:20250307T140000 DTSTAMP:20250217T141813Z CREATED:20250105T182614Z LAST-MODIFIED:20250217T141813Z UID:33502-1741336200-1741356000@isaca-gwdc.org SUMMARY:PowerShell® Workshop: Basics DESCRIPTION:Auditors and IT professionals work with large amounts of data\, requiring the need for a variety of tools to help them obtain\, review\, analyze\, and/or export this data. One of the most versatile (and free) tools for working with data is PowerShell®\, which is included with the Windows OS. While designed as a systems administration tool\, it also has powerful capabilities that auditors and IT professionals can use to greatly improve project outcomes and efficiency.  \nThis one-day hands-on virtual workshop is designed for students who want to learn how to use PowerShell in performing audits or data analysis projects. The core skills in working with PowerShell to analyze data are learning how to load data into PowerShell\, reformat/analyze it\, and export it to one or more files. This workshop covers these core skills through lessons and hands-on exercises. PowerShell\, while designed for systems administrators to automate their administration duties\, has data handling and analysis capabilities that auditors and IT professionals can use in accomplishing their projects. \nThis workshop is an excellent opportunity for those who are new to PowerShell to learn about this powerful tool. It’s also a great opportunity for those familiar with PowerShell to refresh and practice their skills. \nRegistration closes on March 6 @ 3pm. \nRegister Today! \n  \nCourse Overview \n\nMarch 7 \nThe workshop will be held on March 27 from 8:30 am to 2:00 pm. \nAdd this event to your calendar using the Add to Calendar link at the bottom of the page. \n  \nVirtual Event \nThe course will be held using Zoom. \nPrior to the event\, participants must install the Zoom app on their respective devices. Participants using the web-based Teams or calling via the phone may not be entitled to CPE credits. \n\n\nGWDC Member Fee – $100 \nThe fee for GWDC Members is $100 for the course.\nThe fee for all other registrants is $150 for the course. \nTo become a member and take advantage of the member rate for our events\, among other benefits\, join ISACA and select the Greater Washington D.C. Chapter as your local chapter. \n  \nEarn up to 6 CPEs \nAttendees can earn up to 6 CPEs for this event. \nParticipants must respond to all the poll questions via the Zoom polling feature or chat log in order to receive NASBA CPE credits. The GWDC will not be responsible for the participant’s inability to respond to the polls. \n\nShare this Event in Your Network \n\n \n \n \n \n \n \n \n \n \n Share on X\n \n \n \n \n \n \n \n \n \n \n \n Share on Linkedin\n \n \n \n \n \n \n \n \n \n \n \n Share on Facebook\n \n \n \n \n \n \n \n \n \n \n \n Share on Print\n \n \n \n \n \n \n \n \n \n \n Share on Email\n \n \n \n \n \n \n\n \n\n\n  \nAgenda \n\nCourse Introduction\nBasics of using PowerShell\nHands-on Practice on common use cases\, including:\n\nThe basic layout of a typical PowerShell script for auditors\nCombining multiple CSV files of the same layout into a single CSV file.\nCollecting\, modifying\, and saving data from XML files.\nCollecting\, modifying\, and saving data from Windows Logs.\nCollecting\, modifying\, and saving data from a Windows Server.\nCollecting\, modifying\, and saving data from Active Directory.\nCollecting\, modifying\, and saving data from websites.\n\n\n\n\nRecap and PowerShell resources\n\n  \nAdditional Course Details \nHands-on Lab Exercises \nEach student will be provided access to a Windows Server to use during the course. The server will be hosted on the Azure Lab Services platform. \nThe server will be accessed using Windows Remote Desktop. Therefore\, on the course dates\, students will need to use a Windows-based computer that permits use of the Remote Desktop protocol. \nAn email will be sent to each student this evening with instructions on accessing the virtual server. Students are encouraged to register and follow the instructions to access the virtual server prior to the start of the seminar. \nEach lesson in the course has practice commands to use during the lesson and practice exercise to reinforce lesson concepts.  All lesson materials will be pre-loaded onto each student’s virtual server. \n  \nMaterials Provided During the Seminar \nEach student attending the seminar will be provided: \n\nPresentation materials\nPowerShell scripts for each lesson\nAccess to the virtual server for up to 10 hours after the course ends for additional practice\nLink to the seminar recording\, good for 30 days after the seminar\n\n  \nInstructor \n\n \n\n\nMike Howard\nCISA\, MBA \nMike Howard is an experienced IT auditor with over 30 years of IT auditing experience in the Federal Government. Mike is a technical auditor who has audited numerous technologies\, including mainframes\, Unix environments\, Active Directory\, databases\, Cisco devices\, and Windows computers. Mike embraces innovative technologies to accomplish his audits\, most notably using PowerShell to write custom scripts. Over the 10+ years that he has been using PowerShell\, he’s written over 300 PowerShell scripts. \nMike is also a member of the ISACA Greater Washington D.C. chapter and has served on the board for 20+ years\, most of the time as Internet/Communications Director. Mike is currently the Information Technology Director\, where he manages the chapter’s website and IT environment. Mike has also used PowerShell to accomplish tasks related to his Chapter duties\, including creating web pages\, calculating CPE credits\, and updating membership rosters. \nMike has a B.S. in Accounting from Old Dominion University and a Masters in Business Administration from George Mason University. \n\n  \nEvent Questions and Policies \n\n\nRegistration Questions \nIf you have any registration questions about this event\, please contact us by completing the Registration Contact Form linked below. \nRegistration Questions \n  \n\n\n\n\nCPE Questions \nIf you have CPE questions after the event has concluded\, please contact us by completing the CPE contact form linked below. \nCPE Questions \n  \n\n\n\n\nCancellation and Refunds \nCancellation and refund for advance registrations is allowed if cancellations are submitted through the registration system by the date registration closes. Refunds vary depending on the date of cancellation and cost of the event. See ISACA GWDC Event Policies for details. \n\n\n\n\nComplaints \nThe GWDC welcomes your comments\, complaints\, suggestions\, questions\, and other feedback concerning our website information and services. \nAll complaints should be submitted through the Registration Contact Form. \n\n\n  \nCPE Information \nEarn up to 6 Continuing Professional Education (CPE) credit in the area of Information Technology. The ISACA® Greater Washington\, D.C. Chapter is registered with the National Association of State Boards of Accountancy (NASBA) as a sponsor of continuing professional education on the National Registry of CPE Sponsors. State boards of accountancy have final authority on the acceptance of individual courses for CPE credit. Complaints regarding registered sponsors may be submitted to the National Registry of CPE Sponsors through its website: www.NASBARegistry.org \n  \nCPE Distribution and Evaluation Survey \nCPEs will be distributed via e-mail along with the event evaluation survey after the completion of the event. Attendees must be present for the full event to receive full CPE credit. \n  \nLearning Objectives \nAfter completing this course\, students will have skills to use PowerShell in the performance of their audits and projects. Specifically\, students will be able to: \n\nImport data from several types of data sources into PowerShell.\nAnalyze data in PowerShell through comparing data and summarizing it.\nReorder data and change its format.\nExport data into CSV and Text files.\nCreate a basic PowerShell script to import\, analyze\, and export data.\n\n  \nCPE-Related Details \n\nPrerequisites: Students should be familiar with using Windows and using CSV files. Basic familiarity with PowerShell or other programming languages is beneficial.\nAdvance Preparation: The instructor will provide materials in advance of the course. The instructor will also provide credentials to access a virtual server several days in advance of the course. Students should log onto the server and share any issues with the instructor in advance of the course.\nProgram Knowledge Level: Basic\nDelivery Method:  Group Internet Based\nField of Study:  Information Technology – Technical URL:https://isaca-gwdc.org/event/powershell-workshop-basics-spring2025/ LOCATION:Virtual Event CATEGORIES:Workshop ATTACH;FMTTYPE=image/png:https://isaca-gwdc.org/wp-content/uploads/2025/01/workshop_powershell_basics.png ORGANIZER;CN="Clifton Persaud (Certifications Program and Special Assistance Requests)":MAILTO:certifications@isaca-gwdc.org END:VEVENT BEGIN:VEVENT DTSTART;TZID=America/New_York:20250227T083000 DTEND;TZID=America/New_York:20250227T170000 DTSTAMP:20250211T171553Z CREATED:20250105T181625Z LAST-MODIFIED:20250211T171553Z UID:33491-1740645000-1740675600@isaca-gwdc.org SUMMARY:Generative AI for Cyber Auditors Workshop DESCRIPTION:This intensive one-day virtual workshop\, “Generative AI for Cyber Auditors\,” scheduled for February 27th\, 2025\, will provide participants with a comprehensive understanding of how generative AI can be incorporated into the audit process to enhance efficiency and accuracy. The workshop will cover the use of AI tools for data analysis and compliance verification\, with practical exercises to ensure participants can apply these techniques effectively.  \nRegistration closes on February 26 @ 3pm.  \nRegister Today! \n  \nCourse Overview \n\nFebruary 27 \nThe workshop will be held on February 27 from 8:30 am to 5:00 pm. \nAdd this event to your calendar using the Add to Calendar link at the bottom of the page. \n  \nVirtual Event \nThe course will be held using Teams. \nPrior to the event\, participants must install the Teams app on their respective devices. Participants using the web-based Teams or calling via the phone may not be entitled to CPE credits. \n\n\nGWDC Member Fee – $125 \nThe fee for GWDC Members is $125 for the course.\nThe fee for all other registrants is $200 for the course. \nTo become a member and take advantage of the member rate for our events\, among other benefits\, join ISACA and select the Greater Washington D.C. Chapter as your local chapter. \n  \nEarn up to 7 CPEs \nAttendees can earn up to 7 CPEs for this event. \nParticipants must respond to all the poll questions via the Teams polling feature or chat log in order to receive NASBA CPE credits. The GWDC will not be responsible for the participant’s inability to respond to the polls. \n\nShare this Event in Your Network \n\n \n \n \n \n \n \n \n \n \n Share on X\n \n \n \n \n \n \n \n \n \n \n \n Share on Linkedin\n \n \n \n \n \n \n \n \n \n \n \n Share on Facebook\n \n \n \n \n \n \n \n \n \n \n \n Share on Print\n \n \n \n \n \n \n \n \n \n \n Share on Email\n \n \n \n \n \n \n\n \n\n\n  \nAgenda \nModule 1: Overview of Generative AI \n\nDefinition and significance of generative AI.\nKey concepts and technologies involved.\nApplications of generative AI in various fields\, with a focus on auditing.\n\nModule 2: Generative AI in the Audit Process \n\nRole of AI in modern auditing.\nBenefits of using generative AI for cyber auditors.\nKey areas of application within the audit process.\n\nModule 3: Incorporating AI Tools into Auditing \n\nOverview of AI tools available for auditing.\nHow to select and implement the right AI tools.\nBenefits of AI tools in improving audit accuracy and efficiency.\n\nModule 4: Data Analysis with Generative AI \n\nTechniques for using AI in data analysis.\nExamples of AI models used for analyzing audit data.\nComparative benefits over traditional data analysis methods.\n\nModule 5: Compliance Verification Using AI \n\nHow AI can streamline compliance verification.\nReal-world examples of AI-driven compliance checks.\nBenefits of AI in ensuring thorough and accurate compliance.\n\nModule 6: Practical Exercise: AI for Data Analysis \n\nSetting up practical exercises for AI-based data analysis.\nInstructions and expectations for participants.\nDiscussion of outcomes and insights gained.\n\nModule 7: Practical Exercise: AI for Compliance Verification \n\nDesigning practical exercises for AI-driven compliance checks.\nStep-by-step guide for participants.\nDebrief and analysis of the exercise results.\n\nModule 8: Ethical and Regulatory Considerations \n\nEthical challenges in using AI for auditing.\nBalancing innovation with ethical considerations.\nOverview of current and future regulations impacting AI in auditing.\n\nModule 9: Future Trends in Generative AI and Auditing \n\nEmerging trends in generative AI relevant to auditing.\nImpact of these trends on the audit process.\nPreparing for future AI advancements in auditing.\n\n  \nInstructor \n\n \n\n\nJim Wiggins\nCISSP\, ISSEP\, CISM\, CISA\, CRISC\, CDPSE\, CGRC\, CySA+\, SCNA\, SCNP\, IAM\, IEM\, SSCP\, CEH\, ECSA\, CHFI\, LPT\, TICSA\, CIWSA\, Security+\, and MCSE: Security and FITSP-M \nJim Wiggins is a seasoned IT and cybersecurity expert with over 28 years of industry experience\, 23 of which have been dedicated to information security. He is the Founder and CEO of Securible\, LLC\, a Washington\, DC-based cybersecurity training and consulting firm specializing in practical\, forward-thinking solutions. Through Securible\, Jim has championed innovative approaches to address emerging threats\, ensure regulatory compliance\, and harness the power of Artificial Intelligence in IT audit\, cybersecurity\, governance and privacy. \nIn addition to his leadership at Securible\, Jim also serves as the Founder and CEO of the Federal IT Security Institute (FITSI)\, a 501(c)(6) non-profit certification body accredited by the ANSI National Accreditation Board (ANAB) under ISO 17024:2012. FITSI provides role-based cybersecurity certifications designed to fortify the U.S. federal cybersecurity workforce. \nRecognized as a Federal 100 award recipient in 2019 and the Federal Information Systems Security Educators’ Association (FISSEA) “Educator of the Year” in 2011\, Jim is widely respected for his commitment to elevating cybersecurity education. In the rapidly evolving arena of Artificial Intelligence (AI)\, Jim has directly trained well over 1\,000 IT and cyber professionals on generative AI fundamentals through intensive sessions with the Department of the Interior’s University\, the Defense Information Systems Agency (DISA)\, the National Risk Management Center (NRMC) within CISA\, and the Greater Washington DC Chapter of ISACA. He leverages AI-driven tools such as ChatGPT\, Gemini\, Dalle\, Midjourney\, and Copilot to translate complex concepts into practical\, governance-focused applications. \nBelow is the list of credentials Jim currently holds: \n\n\n\nCybersecurity: CISM\, CISA\, CRISC\, CDPSE\, CISSP\, ISSEP\, CGRC (CAP)\, SCNA\, SCNP\, IAM\, IEM\, SSCP\, CEH\, ECSA\, CHFI\, LPT\, TICSA\, CIWSA\, Security+\, and FITSP-M.\nInformation Technology: MCITP\, MCSE: Security\, MCSE: Messaging\, MCSA\, MCDST\, Server+\, Network+\, A+.\nProject Management: PMP (Project Management Professional).\nEducation: ICE-CCP (I.C.E. Certified Credentialing Professional).\n\n\n\nJim is currently working on a Master’s Degree in Education from George Washington University with a concentration in Assessment\, Testing\, and Measurement (sometimes called psychometrics). \n\n \n\n  \n  \nEvent Questions and Policies \n\n\nRegistration Questions \nIf you have any registration questions about this event\, please contact us by completing the Registration Contact Form linked below. \nRegistration Questions \n  \n\n\n\n\nCPE Questions \nIf you have CPE questions after the event has concluded\, please contact us by completing the CPE contact form linked below. \nCPE Questions \n  \n\n\n\n\nCancellation and Refunds \nCancellation and refund for advance registrations is allowed if cancellations are submitted through the registration system by the date registration closes. Refunds vary depending on the date of cancellation and cost of the event. See ISACA GWDC Event Policies for details. \n\n\n\n\nComplaints \nThe GWDC welcomes your comments\, complaints\, suggestions\, questions\, and other feedback concerning our website information and services. \nAll complaints should be submitted through the Registration Contact Form. \n\n\n  \nCPE Information \nEarn up to 7 Continuing Professional Education (CPE) credit in the area of Information Technology. The ISACA® Greater Washington\, D.C. Chapter is registered with the National Association of State Boards of Accountancy (NASBA) as a sponsor of continuing professional education on the National Registry of CPE Sponsors. State boards of accountancy have final authority on the acceptance of individual courses for CPE credit. Complaints regarding registered sponsors may be submitted to the National Registry of CPE Sponsors through its website: www.NASBARegistry.org \n  \nCPE Distribution and Evaluation Survey \nCPEs will be distributed via e-mail along with the event evaluation survey after the completion of the event. Attendees must be present for the full event to receive full CPE credit. \n  \nLearning Objectives \n\nUnderstand the foundational concepts of generative AI and its relevance in the auditing process.\nExplore the applications of AI tools in enhancing audit efficiency and accuracy.\nLearn how to utilize AI for data analysis and compliance verification.\nEngage in practical exercises to apply AI techniques in real-world audit scenarios.\nDevelop strategies for integrating generative AI into existing audit frameworks.\n\nCPE-Related Details \n\nPrerequisites and Advance Preparation: None\nProgram Knowledge Level: Basic\nDelivery Method:  Group Internet Based\nField of Study:  Information Technology – Technical URL:https://isaca-gwdc.org/event/gen-ai-for-cyber-auditors-workshop/ LOCATION:Virtual Event CATEGORIES:Workshop ATTACH;FMTTYPE=image/png:https://isaca-gwdc.org/wp-content/uploads/2025/01/workshop_gen_ai_cyber_auditors.png ORGANIZER;CN="Clifton Persaud (Certifications Program and Special Assistance Requests)":MAILTO:certifications@isaca-gwdc.org END:VEVENT BEGIN:VEVENT DTSTART;TZID=America/New_York:20250222T083000 DTEND;TZID=America/New_York:20250222T170000 DTSTAMP:20250105T200652Z CREATED:20250105T180347Z LAST-MODIFIED:20250105T200652Z UID:33438-1740213000-1740243600@isaca-gwdc.org SUMMARY:IT Risk Fundamentals Review Course DESCRIPTION:Every organization experience risk. ISACA’s IT Risk Fundamentals Certificate is perfect for anyone wanting to learn about information and technology (I&T)-related risk. Our IT Risk Fundamentals course covers the fundamentals of risk management; from identifying and prioritizing risk to responding and communicating the risk to management.  \nThis course covers the six critical functions of the IT Risk Fundamentals Certificate: Risk Intro and Overview\, Risk Governance and Management\, Risk Identification\, Risk Assessment and Analysis\, Risk Response\, and Risk Monitoring.  \nThis course is intended for anyone wanting to strengthen their understanding of the IT risk management life cycle as well as those students preparing for the IT Risk Fundamentals exam.  No prior knowledge required!  This course will teach you the fundamentals of IT Risk Management. \nRegistration closes on February 21 @ 3pm. \nRegister Today! \n  \n\nRe-Take Discount \nStudents who take this GWDC review class and do not pass the corresponding Exam are eligible for a one-time 50% discount on the next review class offered by the GWDC for the exam. Please read the chapter event policy for discount details. \n\n  \nCourse Overview \n\nFebruary 22 & March 1 \nThe course will be held on February 22 and March 1\, 2025 (Saturdays) from 8:30 am to 5:00 pm. \nAdd this event to your calendar using the Add to Calendar link at the bottom of the page. \n  \nVirtual Event \nThe course will be held using Zoom. \nPrior to the event\, participants must install the Zoom app on their respective devices. Participants using the web-based Zoom or calling via the phone may not be entitled to CPE credits. \n\n\nGWDC Member Fee – $350 \nThe fee for GWDC Members is $350 for the course.\nThe fee for all other registrants is $600 for the course. \nTo become a member and take advantage of the member rate for our events\, among other benefits\, join ISACA and select the Greater Washington D.C. Chapter as your local chapter. \n  \nEarn up to 14 CPEs \nAttendees can earn up to 14 CPEs for this event. \nParticipants must respond to all the poll questions via the Zoom polling feature or chat log in order to receive NASBA CPE credits. The GWDC will not be responsible for the participant’s inability to respond to the polls. \n\nShare this Event in Your Network \n\n \n \n \n \n \n \n \n \n \n Share on X\n \n \n \n \n \n \n \n \n \n \n \n Share on Linkedin\n \n \n \n \n \n \n \n \n \n \n \n Share on Facebook\n \n \n \n \n \n \n \n \n \n \n \n Share on Print\n \n \n \n \n \n \n \n \n \n \n Share on Email\n \n \n \n \n \n \n\n \n\n\n  \nAgenda \nThe course will cover the following six critical IT Risks functions: \n\nDomain 1 – Risk Introduction and Overview (5%): We start by setting a strong foundation and understanding of risk. In this domain we will cover fundamental concepts of IT risk management. We will discuss how risks links to business functions\, the importance of the three lines of defense and the role of IT controls.\nDomain 2 – Risk Governance and Management (15%): We will explain the structure of risk governance and management and how it’s used to set a direction for a business. We will discuss risk appetite\, risk tolerance\, and risk capacity and introduce the risk management cycle.\nDomain 3 – Risk Identification (20%): Risk identification is the process of spotting and documenting the risks a business faces. It is crucial because only identified risks can be assessed and responded to. In this domain we will talk about assets\, threats\, and vulnerabilities and how we can use them to identify risk.\nDomain 4 – Risk Assessment and Analysis (25%): After identifying risk\, the next step is to understand its impact on the business. In this domain\, we will discuss the different approaches to risk assessments\, how to use risk registers to document risks\, and the importance of risk aggregation.\nDomain 5 – Risk Response (15%): After risk has been identified and assessed\, decisions need to be made about the appropriate risk response. In this domain we will discuss risk response strategies\, control design and implementation and other response approaches.\nDomain 6 – Risk Monitoring\, Reporting and Communication (20%): The monitoring and reporting of risk play an important role in the risk management process. Indicators for risk and performance should be considered carefully and chosen deliberately\, based on their alignment with enterprise goals. Because of the changing nature of risk and associated controls\, ongoing monitoring and reporting are essential steps in the risk management process.\n\nThe instructor will provide a copy of the presentation materials (PDF) to online attendees\, along with additional materials prepared by instructor to support the course. \n  \nInstructor \n\n \n\n\nRamona Ratiu\nCybersecurity | Board Advisor | Adjunct Professor | Mentor | SheLeadsTech Ambassador\nMS\, CISM\, GSTRT\, GCCC \nRamona Ratiu is a seasoned cybersecurity professional with a focus on effective risk planning and cyber resilience strategies. Currently serving at Zurich Insurance Group\, she spearheads transformative cybersecurity projects to build on the organizational resilience. With a background encompassing information security\, governance\, audit\, risk management\, and compliance\, Ms. Ratiu has honed her expertise in developing and implementing technical and procedural solutions. These solutions facilitate stakeholders in achieving and sustaining compliance across various standards efficiently. \nEquipped with a bachelor’s degree in finance and a Master of Science in Information Security and Compliance from DePaul University\, Ms. Ratiu holds several prestigious certifications\, including Certified Information Systems Manager (CISM)\, Certified Information Systems Auditor (CISA)\, GIAC GCCC and GSTRT. \nIndustry engagements: Teaching Certifications Review Courses (7+ years): As an APMG Accredited Trainer\, Ramona Ratiu has instructed CISM and IT Risk Fundamentals courses for the ISACA Chicago Chapter. \nGlobal Teaching Engagements (2022-2023): Ramona extended her expertise globally\, teaching IT Risk courses to students in Sri Lanka\, UK\, Romania\, and underrepresented students from Africa through the CyberGirls program. \nShe serves as an Adjunct Professor at DePaul University\, lecturing students on IT Risk Management principles. \nMentorship and Leadership Roles: Ramona served as President of the ISACA Chicago chapter for 2 consecutive terms (4 years). She acts as a mentor for the Chicago GROW mentorship program and serves as a Professional mentor for the TechWomen program focused on Emerging Leaders. \nAdditionally\, she founded the “SheLeadsTech with… Expertise” program\, dedicated to increasing women’s representation in technology leadership roles. Ramona also serves as a Global SheLeadsTech Ambassador. \nAdvocacy and Awards: Ramona’s dedication to the ISACA Chicago Chapter led to significant achievements\, including the 2020 J Wayne Snipes Best Chapter Award and the 2021 Innovative Chapter Award for the #CollectiveResilience program. She was honored with the 2022 Outstanding Chapter Leader award and the 2023 Inspirational Leadership Award for her inspiring work\, education\, mentorship\, and guidance to advance current and future generations of technologists and advocating for women worldwide. In 2024\, she led the SheLeadsTech Chicago program to win the Innovative Award for Education. She has received the 2024 Excellence in Leadership Award for Best Faculty Advisor\, by DePaul University. \nRecent Publications: Ramona continues to contribute to the industry’s knowledge base with articles and publications such as “Blueprint for Ransomware Preparations and Defense\,” “Strengthening Collaboration for Cyber Resilience\,” “Securing the Future: Enhancing Cybersecurity in 2024 and beyond\,” and “Applying Zero Trust principles” – published by ISACA. \nMs. Ratiu’s extensive experience and qualifications position her as a key figure in the realm of cybersecurity\, driving resilience and preparedness within organizations. \n \n\n  \nIT Risk Fundamentals Certificate Exam \n \nThe exam is be offered via Computer-Based Testing (CBT). \nRegistration and administration of the exam is handled by ISACA®\, not the GWDC. Registering for this review course does not register you for the exam. \nFor full details on this certificate\, visit the ISACA’s CET Cloud Fundamentals Certificate page. \n  \nExam Preparation \nFor students who wish to take the IT Risk Fundamentals exam\, it is highly recommended that the prospective candidates should purchase the official study guide. \n  \nEvent Questions and Policies \n\n\nRegistration Questions \nIf you have any registration questions about this event\, please contact us by completing the Registration Contact Form linked below. \nRegistration Questions \n  \n\n\n\n\nCPE Questions \nIf you have CPE questions after the event has concluded\, please contact us by completing the CPE contact form linked below. \nCPE Questions \n  \n\n\n\n\nCancellation and Refunds \nCancellation and refund for advance registrations is allowed if cancellations are submitted through the registration system by the date registration closes. Refunds vary depending on the date of cancellation and cost of the event. See ISACA GWDC Event Policies for details. \n\n\n\n\nComplaints \nThe GWDC welcomes your comments\, complaints\, suggestions\, questions\, and other feedback concerning our website information and services. \nAll complaints should be submitted through the Registration Contact Form. \n\n\n  \nCPE Information \nEarn up to 14 Continuing Professional Education (CPE) credit in the area of Information Technology. The ISACA® Greater Washington\, D.C. Chapter is registered with the National Association of State Boards of Accountancy (NASBA) as a sponsor of continuing professional education on the National Registry of CPE Sponsors. State boards of accountancy have final authority on the acceptance of individual courses for CPE credit. Complaints regarding registered sponsors may be submitted to the National Registry of CPE Sponsors through its website: www.NASBARegistry.org. \n  \nCPE Distribution and Evaluation Survey \nCPEs will be distributed via e-mail along with the event evaluation survey after the completion of the event. Attendees must be present for the full event to receive full CPE credit. \n  \nCPE-Related Details \n\nLearning Objective: After completing the course\, students will be prepared to sit for the CET exam.\nPrerequisites and Advance Preparation: None\nProgram Knowledge Level: Basic\nDelivery Method:  Group Internet Based\nField of Study:  Information Technology – Technical URL:https://isaca-gwdc.org/event/it-risk-fundamentals-review-course/ LOCATION:Virtual Event CATEGORIES:Review Courses ATTACH;FMTTYPE=image/png:https://isaca-gwdc.org/wp-content/uploads/2025/01/review_course_itrisk.png ORGANIZER;CN="Clifton Persaud (Certifications Program and Special Assistance Requests)":MAILTO:certifications@isaca-gwdc.org END:VEVENT BEGIN:VEVENT DTSTART;TZID=America/New_York:20250220T083000 DTEND;TZID=America/New_York:20250220T123000 DTSTAMP:20250222T191604Z CREATED:20241231T173905Z LAST-MODIFIED:20250222T191604Z UID:33349-1740040200-1740054600@isaca-gwdc.org SUMMARY:Artificial Intelligence Conference DESCRIPTION:Artificial intelligence (AI) is reshaping the landscape of IT audit and cybersecurity\, offering unprecedented opportunities and challenges for professionals in the field. This conference brings together thought leaders\, innovators\, and practitioners to explore how AI is transforming the way organizations secure their systems\, manage risks\, and navigate regulatory requirements. \nWhether you’re an IT auditor\, cybersecurity professional\, or business leader\, this conference equips you with the knowledge and tools to harness the power of AI while addressing its unique risks. Prepare to lead your organization into the future with confidence\, innovation\, and resilience. \nRegistration closes on February 19th @ 8pm. \nRegister Today! \n  \nConference Overview \n\nFebruary 20 \nThe conference will be held on February 20\, 2025 from \n8:30 am to 12:30 pm. \nAdd this event to your calendar using the Add to Calendar link at the bottom of the page. \n  \nVirtual Event \nThe conference will be held using Zoom. \nPrior to the event\, participants must install the Zoom app on their respective devices. Participants using the web-based Zoom or calling via the phone may not be entitled to CPE credits. \n\n\nGWDC Member Fee – $10 \nThe fee for GWDC Members is $10 for the conference.\nThe fee for all other registrants is $30 for the conference. \nTo become a member and take advantage of the member rate for our events\, among other benefits\, join ISACA and select the Greater Washington D.C. Chapter as your local chapter. \n  \nEarn up to 4 CPEs \nAttendees can earn up to 4 CPEs for this event. \nParticipants must respond to all the poll questions via the Zoom polling feature or chat log in order to receive NASBA CPE credits. The GWDC will not be responsible for the participant’s inability to respond to the polls. \n\nShare this Event in Your Network \n\n \n \n \n \n \n \n \n \n \n Share on X\n \n \n \n \n \n \n \n \n \n \n \n Share on Linkedin\n \n \n \n \n \n \n \n \n \n \n \n Share on Facebook\n \n \n \n \n \n \n \n \n \n \n \n Share on Print\n \n \n \n \n \n \n \n \n \n \n Share on Email\n \n \n \n \n \n \n\n \n\n\n  \nSpeaker Insights Showcase \nThe GWDC Media Relations team works with Conference speakers to share insights into their IT journey as well as their topic for the conference in the “Speaker Insights Showcase” series. Below are the videos for three of this month’s speakers. \nYou can view the full Speaker Insights Showcase series on our YouTube channel. \n \n  \n\n \n  \n\nAgenda \n \n\n08:30 AM – 09:30 AM \n\n\nMITRE ATLAS: Actionable Tools for AI Security & Assurance \nPresenter: Dr. Christina Liaghati (MITRE) \nMITRE ATLAS (atlas.mitre.org) is a public knowledge base of adversary tactics and techniques based on real-world attack observations and realistic demonstrations from artificial intelligence (AI) red teams and security groups. \nThis capabilities overview will include the latest MITRE ATLAS community driven and open sourced efforts focused on capturing and sharing cross community data on real world AI incidents\, expanding the community’s data on vulnerabilities that can arise when using open-source AI models or data\, especially for vulnerabilities that fall outside of the scope of CVE/CWE\, and developing mitigations to defend against these AI security threats and vulnerabilities. \n\n \n\n09:30 AM – 10:30 AM \n\n\nEthics of Artifical Intelligence \nPresenter: Diana Burley (American University) \nAI and other emerging technologies both empower innovation and expose societal vulnerabilities. The policies that guide their deployment and use determine\, to a large extent\, the role that these innovations play in society. As such\, the policies\, and the policymakers who shape them\, are powerful arbiters of future human welfare. How then\, do we extend the “responsible” principles we promote with the technology developers to the policies and policymakers who shape societal standards? \n\n \n\n10:30 AM – 11:30 AM \n\n\nAI Trends and Deploying Systems Securely at Scale \nPresenter: Henrik Balle (AWS) \nThis presentation explores the latest generative AI trends and cloud-native approaches to deploying enterprise-ready generative AI solutions at scale\, highlighting advances in and the advantages of managed services alongside comprehensive security controls. We examine how modern cloud infrastructure enables organizations to build innovative generative AI solutions while maintaining security\, data privacy and regulatory compliance. Key focus areas include flexible model deployment options\, knowledge bases\, AI agents\, integrated governance tools\, and scalable architecture that helps enterprises minimize risks while maximizing AI innovation. \n\n \n\n11:30 AM – 12:30 AM \n\n\nUnpacking Generative AI Applications: Navigating Security Risks \nPresenter: Ahmed Abugharbia (SANS) \nGenerative AI (GenAI) is no longer a future possibility—it’s a present reality transforming industries at an unprecedented pace. As organizations embrace GenAI to drive innovation and gain competitive advantages\, they must also navigate the significant risks it introduces. In this talk\, we will demystify the core components of GenAI applications and examine the critical security challenges they pose. \n\n  \nPresenters \n \n\n \n\n\nDr. Christina Liaghati\nTrustworthy & Secure AI Department Manager and MITRE ATLAS Lead @ MITRE \nWorking across a collaborative global community of industry\, government\, and academia\, Dr. Liaghati leads MITRE’s Trustworthy & Secure AI Department and MITRE ATLAS\, where she passionately drives research and developments in trustworthy and secure AI for everyone working to leverage AI-enabled systems. Leading her department of 50+ scientist and engineers and serving the community with the not-for-profit\, objective\, MITRE perspective\, she is dedicated to working together to create and openly share actionable tools\, capabilities\, data\, and frameworks for trustworthy and secure AI like ATLAS\, an ATT&CK-style framework of the threats and vulnerabilities of AI-enabled systems. \nAs Dr. Liaghati has worked across the community to improve the common understanding of AI security concerns\, her work quickly started overlapping with broader AI assurance concerns\, which includes AI equitability\, interpretability\, reliability\, robustness\, safety\, and needs for privacy enhancement. As a result of this expansion beyond AI security into more of these elements of trustworthy AI and AI assurance\, her current focus under ATLAS and across the international community is to build a protected mechanism for increased knowledge and incident sharing across government and industry in both AI security and the broader areas of AI assurance. \nDr. Liaghati also chairs the NATO Science and Technology Organization Research Task Group on the AI Assurance and Security\, focused on fostering an enduring collaborative community of NATO organizations and industry partners\, leveraging the Science and Technology Organization to shape future interoperable capability developments in AI security and assurance. \n \n\n \n\n \n\n\nDr. Diana Burley\nVice Provost for Research and Innovation @ American University \nDr. Diana L. Burley is a global cybersecurity expert with more than 30 years of experience driving digital transformation\, implementing cybersecurity workforce initiatives\, and promoting an equitable global technology community. Diana is currently Vice Provost for Research and Innovation at American University where she also leads the Khan Cyber & Economic Security Institute and serves as a member of the faculty. As both the university’s chief research officer and chief innovation officer\, Diana oversees the university-wide R&D portfolio\, research partnerships\, and strategic initiatives to catalyze discovery. She advises government officials and regularly offers thought leadership at executive forums. Her board service includes the Cyber Future Foundation and the Global Cyber Security Advisory Group\, and she has been honored by GET Cities\, Executive Women’s Forum\, SC Magazine\, ACM\, and others for her leadership in building the global cybersecurity workforce. She earned her Ph.D. from Carnegie Mellon University. \n \n\n \n\n \n\n\nHenrik Balle\nPrincipal Solutions Architect @ AWS \nHenrik Balle is a Principal Solutions Architect at AWS supporting federal civilian customers\, and he helps them achieve their mission through architecting and implementing innovative solutions at scale. He works closely with customers on a range of topics from AI/ML to security and governance at scale\, and he holds both AWS Security and Machine Learning Specialty certifications. In his spare time\, he loves road biking\, motorcycling\, or you might find him working on yet another home improvement project. \n \n\n\n \n\n\nAhmed Abugharbia\nSANS Certified Instructor and Founder of Cyberdojo\nGIAC GSEC and GPEN\, AWS Certified DevOps Engineer Professional\, AWS Certified Solutions Architect Associate\, CEH\, JNCIS-FWV\, JNCIA-IDP\, and CCNA \nAhmed Abugharbia is a SANS Certified Instructor and founder of Cyberdojo\, focusing on GenAI and Cloud Security. With over 17 years of experience in security\, Ahmed has worked and led projects in cloud security\, network and application security\, as well as incident handling. He is the author of SEC545: GenAI and LLM Application Security™ and an instructor for SEC540: Cloud Security and DevSecOps Automation™ \nFor over a decade Ahmed has been providing training in various capacities. Starting with mentoring new team members at work to providing training to clients on various security topics\, teaching them about hacking concepts and the possible effects on their infrastructure. His first interaction with SANS was in 2013 when he took both SEC401: SANS Security Essentials and SEC560: Network Penetration Testing and Ethical Hacking\, earning both the GSEC and GPEN certificates. By that point at his career\, he had taken many classes\, exams\, and attended many seminars but felt none of which came close to how practical and comprehensive the SANS courses were. A few years later\, after realizing he wanted teaching to be an integral part of his career\, SANS was his first choice. He is also a faculty member of the SANS Technology Institute\, an NSA Center of Academic Excellence in Cyber Defense and multiple winner of the National Cyber League competition. \nAhmed holds a bachelor’s degree in Computer Science along with a myriad of professional certifications including: GIAC GSEC and GPEN\, AWS Certified DevOps Engineer Professional\, AWS Certified Solutions Architect Associate\, CEH\, JNCIS-FWV\, JNCIA-IDP\, and CCNA. He’s fluent in both English and Arabic and when not in front of a computer screen\, he is practicing Brazilian Jiu Jitsu\, which he describes as a form of martial arts that is all about solving technical problems. \n \n\n  \nEvent Questions and Policies \n\n\nRegistration Questions \nIf you have any registration questions about this event\, please contact us by completing the Registration Contact Form linked below. \nRegistration Questions \n  \n\n\n\n\nCPE Questions \nIf you have CPE questions after the event has concluded\, please contact us by completing the CPE contact form linked below. \nCPE Questions \n  \n\n\n\n\nCancellation and Refunds \nCancellation and refund for advance registrations is allowed if cancellations are submitted through the registration system by the date registration closes. Refunds vary depending on the date of cancellation and cost of the event. See ISACA GWDC Event Policies for details. \n\n\n\n\nComplaints \nThe GWDC welcomes your comments\, complaints\, suggestions\, questions\, and other feedback concerning our website information and services. \nAll complaints should be submitted through the Registration Contact Form. \n\n\n  \n  \nCPE Information \nEarn up to 4 Continuing Professional Education (CPE) credit in the area of Information Technology. The ISACA® Greater Washington\, D.C. Chapter is registered with the National Association of State Boards of Accountancy (NASBA) as a sponsor of continuing professional education on the National Registry of CPE Sponsors. State boards of accountancy have final authority on the acceptance of individual courses for CPE credit. Complaints regarding registered sponsors may be submitted to the National Registry of CPE Sponsors through its website: www.NASBARegistry.org \n  \nCPE Distribution and Evaluation Survey \nCPEs will be distributed via e-mail along with the event evaluation survey after the completion of the event. Attendees must be present for the full event to receive full CPE credit. \n  \nLearning Objective \nAfter attending this event\, attendees will learn about current and future trends in the IT Audit space. \n  \nCPE-Related Details \n\nPrerequisites: None\nAdvance Preparation: None\nProgram Knowledge Level: Basic\nDelivery Method:  Group Internet Based\nField of Study:  Information Technology – Technical URL:https://isaca-gwdc.org/event/artificial-intelligence-conference/ LOCATION:Virtual Event CATEGORIES:Conferences ATTACH;FMTTYPE=image/png:https://isaca-gwdc.org/wp-content/uploads/2024/12/conference-ai-2025.png ORGANIZER;CN="Avneet Sabharwal":MAILTO:programs@isaca-gwdc.org END:VEVENT BEGIN:VEVENT DTSTART;TZID=America/New_York:20250123T083000 DTEND;TZID=America/New_York:20250124T123000 DTSTAMP:20250122T172105Z CREATED:20241105T120254Z LAST-MODIFIED:20250122T172105Z UID:33189-1737621000-1737721800@isaca-gwdc.org SUMMARY:NIST Cybersecurity Framework (CSF) v2 Workshop DESCRIPTION:This two-day workshop offers participants a deep dive into the complexities and nuances of the NIST Cybersecurity Framework requirements. \nDesigned to be comprehensive and practical\, this workshop is tailored to equip attendees with the knowledge and skills necessary to proficiently implement and adhere to each requirement within the NIST CSF.  Each of the NIST CSF Functions will walk through the function\, category and subcategory; providing the students with the thorough understanding of the people\, processes\, and technology in addition to the use cases and case studies within each of the six CSF Functions. \nUpon conclusion of this workshop\, participants will possess actionable insights to enhance their organization’s cybersecurity posture.  This workshop is intended for anyone interesting in gaining a deeper understanding of NIST CSV v2. \nPrerequisites \nParticipants will need to have a fundamental grasp of cybersecurity concepts and terminology.  Familiarity with fundamental IT concepts\, technologies\, services\, capabilities and practices is highly recommended and desired. \nRegistration closes on January 22nd @ 5 pm \nRegister Today! \n  \nWorkshop Overview \n\nJanuary 23 and 24 \nThe workshop will be held on January 23 and 24\, 2025 from 8:30 am to 12:30 pm on both days. \nAdd this event to your calendar using the Add to Calendar link at the bottom of the page. \n  \nVirtual Event \nThe workshop will be held using Zoom. \nPrior to the event\, participants must install the Zoom app on their respective devices. Participants using the web-based Zoom or calling via the phone may not be entitled to CPE credits. \n\n\nGWDC Member Fee – $299 \nThe fee for GWDC Members is $299 for the workshop.\nThe fee for all other registrants is $399 for the workshop. \nTo become a member and take advantage of the member rate for our events\, among other benefits\, join ISACA and select the Greater Washington D.C. Chapter as your local chapter. \n  \nEarn up to 8 CPEs \nAttendees can earn up to 8 CPEs for this event. \nParticipants must respond to all the poll questions via the Zoom polling feature or chat log in order to receive NASBA CPE credits. The GWDC will not be responsible for the participant’s inability to respond to the polls. \n\nShare this Event in Your Network \n\n \n \n \n \n \n \n \n \n \n Share on X\n \n \n \n \n \n \n \n \n \n \n \n Share on Linkedin\n \n \n \n \n \n \n \n \n \n \n \n Share on Facebook\n \n \n \n \n \n \n \n \n \n \n \n Share on Print\n \n \n \n \n \n \n \n \n \n \n Share on Email\n \n \n \n \n \n \n\n \n\n\n  \nAgenda \nDay 1: Understanding NIST CSF and Core Functions \n\nSession 1: NIST Primer & Refresher\nSession 2: CSF Governance Function\nSession 3: CSF Identify Function\nSession 4: CSF Protect Function\nSession 5: CSF Detect Function\n\nDay 2: Implementing and Adhering to NIST CSF \n\nSession 6: CSF Respond Function\nSession 7: CSF Recover Function\nSession 8: Continuous Improvement & Compliance\nSession 9: Future-proofing\nSession 10: Wrap-up and Beyond\n\nSession Skeleton \n\nEach session will reference previous session to identify the relationships between functions.\nEach session will cover and define the function\, categories and sub-categories\nEach session will include Practical Insights & Takeaways\nEach session will provide example use cases\nEach session will provide example roles\nEach session will provide example processes\nEach session will provide example technology\nEach session will include a case study\nEach session will summarize that session\nEach session will have an Open Forum Q&A\n\n  \nInstructor \n\n \n\n\nEdward McCabe\nThe Rubicon Advisory Group\nCISM | CRISC | CGEIT | CDPSE | COBIT | ISO/IEC 27K1 ISMS LI | SABSA \nA business focused information security professional\, Edward is an active practitioner\, mentor\, and instructor with over three decades of experience supporting Fortune 100 companies\, various domestic state\, federal and foreign government agencies. Industries supported include Financial Services\, Defense Industrial Base\, Retail\, Electric Power Transmission & Distribution\, Hospitality\, Legal Services\, Payment Processing\, Health Care\, Construction\, Insurance\, Technology\, Aviation\, Manufacturing\, and Media. \nEdward specializes in Enterprise Governance\, Risk Management\, Compliance\, Incident Response\, Threat Intelligence Program Management\, Enterprise Security Architecture\, and Advanced Adversarial Attack & Penetration Testing. \nEdward is often invited to present and speak on a variety of topics including Social Engineering\, Incident Response & Digital Forensics\, Threat Intelligence Analysis & Management\, Practical Security Data Visualization\, Advanced Attack & Penetration Testing\, IT Audit Development\, Enterprise Governance & Risk Management\, and Adopting Information Security as part of Corporate Culture. \nVenues have included: the ISACA Computer Audit\, Control and Security (CACS) Summit\, ISACA Cyber Security Nexus (CSX)\, ISACA Atlanta Geek Week\, Central Ohio Information Security Summit\, various Security BSides\, (ISC) 2 eSymposium on Threat Intelligence\, the Health Information Management Summit\, Data Management (DAMA) International\, CircleCityCon\, DerbyCon\, Louisville’s Annual InfoSec Summit\, and HackRedCon. Edward receives invitations to speak with specific industries and organizations around the globe. \nA veteran of the United States Navy\, Edward holds various professional certifications including the Governance of Enterprise Information Technology (CGEIT)\, Risk and Information Systems Controls (CRISC)\, Information Security Manager (CISM)\, Data Privacy Solutions Engineer (CDPSE) and COBIT\, in addition to being an ISO/IEC 27001 Lead Implementer\, SABSA/Chartered Architect\, and a former Qualified Security Assessor (QSA) for the Payment Card Industry. \nEdward is an accredited instructor for ISACA’s CISM\, CRISC\, CGEIT\, CDPSE and COBIT certifications and the co‐author for the CGEIT\, CRISC\, CISM and the soon to be released Certified Cybersecurity Operations Analyst (in Beta) certification bodies of knowledge and the lead for ISACA’s Ransomware Readiness Audit Program and Blueprint for Ransomware Defense. Additionally\, Edward develops and delivers custom trainings on a wide range of courses from Analysis of Competing Hypotheses to Zero Trust. \nEdward enjoys spending time with his family in Brandenburg\, KY where you will often find him relaxing by the fire pit\, sitting on the balcony\, smoking various meats or contemplating how restoring their historic Queen Anne home is the embodiment and personification of the Information Security industry. \n\n  \nEvent Questions and Policies \n\n\nRegistration Questions \nIf you have any registration questions about this event\, please contact us by completing the Registration Contact Form linked below. \nRegistration Questions \n  \n\n\n\n\nCPE Questions \nIf you have CPE questions after the event has concluded\, please contact us by completing the CPE contact form linked below. \nCPE Questions \n  \n\n\n\n\nCancellation and Refunds \nCancellation and refund for advance registrations is allowed if cancellations are submitted through the registration system by the date registration closes. Refunds vary depending on the date of cancellation and cost of the event. See ISACA GWDC Event Policies for details. \n\n\n\n\nComplaints \nThe GWDC welcomes your comments\, complaints\, suggestions\, questions\, and other feedback concerning our website information and services. \nAll complaints should be submitted through the Registration Contact Form. \n\n\n  \nCPE Information \nEarn up to 8 Continuing Professional Education (CPE) credit in the area of Information Technology. The ISACA® Greater Washington\, D.C. Chapter is registered with the National Association of State Boards of Accountancy (NASBA) as a sponsor of continuing professional education on the National Registry of CPE Sponsors. State boards of accountancy have final authority on the acceptance of individual courses for CPE credit. Complaints regarding registered sponsors may be submitted to the National Registry of CPE Sponsors through its website: www.NASBARegistry.org \n  \nCPE Distribution and Evaluation Survey \nCPEs will be distributed via e-mail along with the event evaluation survey after the completion of the event. Attendees must be present for the full event to receive full CPE credit. \n  \nLearning Objectives \nTo gain a practical understanding of how to effectively implement and adhere to these requirements \nUse of the practical insights\, takeaways\, use cases and case studies should sufficiently give those who meet the prerequisites the ability to meet the desired learning objectives \n  \nCPE-Related Details \n\nPrerequisites: Participants will need to have a fundamental grasp of cybersecurity concepts and terminology. Familiarity with fundamental IT concepts\, technologies\, services\, capabilities and practices is highly recommended and desired.\nAdvance Preparation: None\nProgram Knowledge Level: Basic\nDelivery Method: Group Internet Based\nField of Study: Information Technology – Technical URL:https://isaca-gwdc.org/event/nist-csf-v2-workshop/ LOCATION:Virtual Event CATEGORIES:Special Seminars ATTACH;FMTTYPE=image/png:https://isaca-gwdc.org/wp-content/uploads/2024/11/seminar-csf-v2.png ORGANIZER;CN="Clifton Persaud (Certifications Program and Special Assistance Requests)":MAILTO:certifications@isaca-gwdc.org END:VEVENT BEGIN:VEVENT DTSTART;TZID=America/New_York:20250116T083000 DTEND;TZID=America/New_York:20250116T123000 DTSTAMP:20250109T164216Z CREATED:20241119T015248Z LAST-MODIFIED:20250109T164216Z UID:33210-1737016200-1737030600@isaca-gwdc.org SUMMARY:IT Audit Conference DESCRIPTION:The GWDC’s Annual IT Audit Conference is a must-attend virtual event for IT Auditor\, IT professionals\, and cybersecurity enthusiasts. Scheduled for January 16\, 2025\, from 8:30 am to 12:30 pm EST\, this highly anticipated conference provides a platform to explore cutting-edge topics in IT auditing and cybersecurity. Key sessions include strategies for preventing cloud incidents from escalating into breaches\, implementing robust security controls\, and addressing cloud misconfigurations. Attendees will gain valuable insights from industry experts\, ensuring they stay ahead in the rapidly evolving IT landscape. With the opportunity to earn up to 4 Continuing Professional Education (CPE) credits\, this event is an excellent investment in professional growth and expertise. \nWhether you are a seasoned IT auditor or new to the field\, this conference is tailored to meet diverse professional needs. Registration is affordably priced at $10 for GWDC members and $30 for non-members\, making it accessible to a wide audience. The convenience of a virtual format allows participants from across the globe to join without travel constraints. Don’t miss the chance to network with like-minded professionals\, engage with thought leaders\, and enhance your skill set. Registration closes on January 15\, 2025\, at 2:00 pm\, so secure your spot today and take a significant step toward advancing your IT audit capabilities. \nRegistration closes on January 15th @ 2pm. \nRegister Today! \n  \nConference Overview \n\nJanuary 16 \nThe conference will be held on January 16\, 2025 from \n8:30 am to 12:30 pm. \nAdd this event to your calendar using the Add to Calendar link at the bottom of the page. \n  \nVirtual Event \nThe workshop will be held using Zoom. \nPrior to the event\, participants must install the Zoom app on their respective devices. Participants using the web-based Zoom or calling via the phone may not be entitled to CPE credits. \n\n\nGWDC Member Fee – $10 \nThe fee for GWDC Members is $10 for the conference.\nThe fee for all other registrants is $30 for the conference. \nTo become a member and take advantage of the member rate for our events\, among other benefits\, join ISACA and select the Greater Washington D.C. Chapter as your local chapter. \n  \nEarn up to 4 CPEs \nAttendees can earn up to 4 CPEs for this event. \nParticipants must respond to all the poll questions via the Zoom polling feature or chat log in order to receive NASBA CPE credits. The GWDC will not be responsible for the participant’s inability to respond to the polls. \n\nShare this Event in Your Network \n\n \n \n \n \n \n \n \n \n \n Share on X\n \n \n \n \n \n \n \n \n \n \n \n Share on Linkedin\n \n \n \n \n \n \n \n \n \n \n \n Share on Facebook\n \n \n \n \n \n \n \n \n \n \n \n Share on Print\n \n \n \n \n \n \n \n \n \n \n Share on Email\n \n \n \n \n \n \n\n \n\n\n  \nSpeaker Insights Showcase \nThe GWDC Media Relations team works with Conference speakers to share insights into their IT journey as well as their topic for the conference in the “Speaker Insights Showcase” series. Below are the videos for three of this month’s speakers. \nYou can view the full Speaker Insights Showcase series on our YouTube channel. \n \n  \n\n \n  \n\n \n  \n\n\n\n  \n  \nAgenda \n \n\n08:30 AM – 09:30 AM \n\n\nPrevent Cloud Incidents from Becoming Cloud Breaches \nPresenter: Brandon Evans (On-Brand Technologies LLC) \nThe number of cloud security breaches in the headlines have been staggering lately. It seems like a week cannot go by without a massive amount of sensitive data being leaked from either AWS\, Azure\, or Google Cloud. \nOne example that would be funny if it were not so sad is the September 2023 incident where the Microsoft AI team leaked 38TB of sensitive data\, including employee workstation backups and 30\,000 internal Teams messages\, due to a misconfigured storage configuration. How is the industry failing to use the clouds properly\, let alone Microsoft\, the extremely mature company who created Azure in the first place? \nJoin Brandon as he shares his analysis on this trend. He will discuss the unique challenges of protecting the cloud\, why the cloud providers are unable to solve these problems alone\, why multicloud makes matters even more difficult\, and how your organization can take practical measures to mitigate the impact of cloud incidents. The presentation will include case studies of real breaches that were made much worse due to a lack of defense-in-depth. Learn how to prevent real attacks with controls that matter. \n\n \n\n09:30 AM – 10:30 AM \n\n\nMaking Controls Work for You \nPresenter: Valecia Stocchetti (Center for Internet Security) \nHave you ever been in the position of implementing and/or auditing against a set of controls? For one framework or multiple frameworks? It can become exhausting chasing down people for evidence\, fulfilling hundreds of evidence requests\, or worse\, falling behind and not being able to keep up with challenging deadlines. And that’s the key word in all of this…CONTROL. However\, in this talk\, we are going to discuss the context of not just any control\, but the CIS Critical Security Controls\, a set of prescriptive\, prioritized\, and simplified best practices that you can use to strengthen your cybersecurity posture. Through implementation of the Controls\, an organization is able to demonstrate a commitment to strengthening their cybersecurity posture\, but also working their way toward aligning with other frameworks in the world of security and compliance – frameworks such as NIST 800-53\, ISO 27001\, PCI DSS\, HIPAA\, and more. \nThere are two sets of challenges this talk will address and one has to do with frameworks. Any given organization may need to comply with one or more frameworks\, depending on the industry they are in. There’s no one “golden” approach to take when implementing these controls. One thing is for certain though\, less is more in this scenario. Most frameworks have overlap and therefore\, controls can be “mapped” from one framework to another to alleviate the pressure of assessing against each individual framework\, which can quickly add up to hundreds and hundreds of controls. To go one step further\, CIS helps alleviate this mapping process by providing users with mappings to over 25 security and compliance frameworks\, along with the tools that help to streamline the mapping process. \nThe second challenge has to do with tooling. During an assessment\, organizations may face challenges keeping information straight. This includes evidence\, the implementation status of a control\, who is responsible for a control\, and so on. Even with an external audit team\, internal tools are still needed for the work that is involved before the external audit. Additionally\, an organization may want to adopt a continuous compliance methodology\, where audits don’t just happen once a year\, but at various points throughout the year. A tool is needed to keep this information in one space. CIS has tools and resources available to help alleviate this burden\, through their CIS Controls Self-Assessment Tool (CSAT)\, which helps them track and prioritize their implementation of the CIS Controls. \nJoin us for this invigorating talk that will not just highlight the challenges\, but also offer solutions! \n\n \n\n10:30 AM – 11:30 AM \n\n\nUsing Cloud Security Posture Management (CSPM) Solutions to Mitigate Cloud Misconfigurations \nPresenter: Michael Ratemo (Cyber Security Simplified) \nThe rapid adoption of cloud technology by organizations has led to a shift towards both single and multi-cloud environments. Unfortunately\, this shift has also resulted in cloud misconfigurations\, which are one of the top risks associated in the cloud. Cloud misconfiguration refers to any errors or gaps in the security measures of a cloud environment. \nWe will begin by discussing the root causes of cloud misconfigurations. The primary cause is human error followed by poor governance. Additionally\, the lack of knowledge and skills in cloud technology is a key factor resulting in misconfigurations. Another challenge is system complexity\, as there are numerous cloud services with distinct implementations and nuances. \nWe will then review case studies of organizations that have suffered data breaches due to cloud misconfigurations\, such as Capital One in 2019\, eBay in 2014\, and World Wrestling Entertainment (WWE) in 2017. These case studies will emphasize the importance of proper cloud security controls and measures. \nWe will then walk through built-in tools provided by AWS\, Microsoft Azure\, and Google Cloud\, that cyber professionals can leverage to mitigate security risks in the cloud. These tools are also known as Cloud Security Posture Management (CSPM) solutions. \nCloud Security Posture Management tools are automated solutions designed to identify misconfiguration issues and compliance risks in the cloud so that they can be remediated\, reducing the risk of successful breaches. We will explore AWS Security Hub\, Microsoft Defender for Cloud\, and Google Security Command Center\, and review how each tool can be used to gain visibility into the current security posture of each respective cloud. Furthermore\, we will emphasize how these tools can be applied to determine alignment with relevant regulatory compliance standards and industry-standard benchmarks\, as well as identify threats and potential security weaknesses. \nThe Key Takeaways from this session are: \n\nMost cloud breaches are due to misconfigurations or human errors.\nDo not rely on your Cloud Service Provider to secure your data (Understand the Shared Responsibility model).\nYou cannot protect what you do not have visibility into (CSPM solutions can help).\nCloud security should begin with implementation of Cloud Governance.\n\n\n \n\n11:30 AM – 12:30 AM \n\n\n“I ran a data science livestream every day for 100 days. Here’s what I learned about the future of data science in your organization” \nPresenter: Dennis Salguerna (Data Science With Dennis) \nI have been fortunate to build a global community of data science enthusiasts and have more than 15\,000 followers on social media. I also run what I believe to be the world’s first daily data science stream. In this presentation\, I want to discuss the meta-themes that have emerged during this period. There are fundamental risks that exist in how data science is currently executed; people understand the How (development tools\, processing power\, etc.) but not the Why or When (methodology). There is also an emerging risk in the level of creativity that will be required in future data science development work. Finally\, I will present a framework that your organization can use to address these risks and be better prepared for the changing landscape of data science. \n\n  \nPresenters \n \n\n \n\n\nBrandon Evans\nOwner and InfoSec Consultant @ On-Brand Technologies LLC \nBrandon is the owner and an InfoSec Consultant at On-Brand Technologies LLC\, a consultancy helping organizations secure their applications and other workloads in multi cloud environments\, specializing in AWS\, Azure\, and Google Cloud. Prior to starting his consultancy\, Brandon led the secure development training program at Zoom Video Communications. He began his career as a Software Engineer\, where he worked on both the core product of a startup\, later acquired by a Fortune 500 organization\, and on various products spanning a multi-billion dollar enterprise. \nBrandon is lead author for SANS Institute course SEC510: Cloud Security Controls and Mitigations a contributor to SEC540: Cloud Security and DevSecOps Automation\, host of Cloud Ace podcast\, Season 1\, an analyst for the SANS Multicloud Survey\, a multi-year RSA Conference presenter\, and participates in bug bounties\, such as when he found a critical vulnerability in Microsoft Defender for Cloud. \n \n\n \n\n \n\n\nValecia Stocchetti\nSenior Cybersecurity Engineer @ the Center for Internet Security\, Inc. (CIS®)\nGCFE\, GCFA\, GSEC \nValecia Stocchetti is a Senior Cybersecurity Engineer at the Center for Internet Security\, Inc. (CIS®). As a member of the CIS Critical Security Controls team\, she has led multiple projects including: the CIS Cost of Cyber Defense for IG1\, CIS Community Defense Model (CDM) v2.0\, CIS Risk Assessment Method (CIS RAM) v2.1\, as well as multiple Living off the Land (LotL) guides. Stocchetti was also one of the principal authors of the Blueprint for Ransomware Defense. \nPrior to joining the CIS Controls team\, she led the Cyber Incident Response Team (CIRT) at the Multi-State and Elections Infrastructure Information Sharing and Analysis Centers (MS-ISAC® and EI-ISAC®). While managing CIRT\, Stocchetti spearheaded multiple forensic investigations and incident response engagements for the MS-ISAC and EI-ISAC’s state\, local\, tribal\, and territorial (SLTT) community. Stocchetti was also the Information Security Audit Manager at CIS where she evaluated and managed the control implementation within CIS and measured compliance to various standards and best practices. Stocchetti came to CIS from the eCommerce field where she worked complex financial fraud cases. She holds multiple certifications\, including GIAC Certified Forensic Examiner (GCFE)\, GIAC Certified Forensic Analyst (GCFA)\, and GIAC Security Essentials Certification (GSEC). \nWhile she enjoys all things InfoSec\, Stocchetti particularly finds the cybercrime and espionage fields fascinating\, which is what prompted her career choice. Stocchetti earned her Bachelor of Science degree in Digital Forensics from the University at Albany\, State University of New York\, as well as her Master of Science degree in Information Security at Champlain College. \n \n\n \n\n \n\n\nMichael Ratemo \nMichael Ratemo is a Principal Security Consultant at Cyber Security Simplified\, a boutique security firm that provides Cloud Security and Cyber Security solutions. He speaks security in a language businesses can understand and has built a career advising organizations on effective security strategies. \nMichael is a thought leader in the field of Cyber Security\, and the author of the LinkedIn Learning Courses; “Cloud Security and Audit Foundations in AWS\, Microsoft Azure\, and Google Cloud\,” and “Building and Auditing a Cyber Security Program.” In addition\, Michael is the co-author of the “Cloud Auditing Best Practices” book. \nFinally\, Michael is a speaker and trainer at major industry events including RSA Conference\, Cloud Security Alliance\, and Stronger Conference. \nMichael gives back to the community by providing mentorship and guidance to future security practitioners. \n \n\n \n\n \n\n\nDennis Salguero \nPrincipal @ Data Science With Dennis \nDennis Salguero has been a technology professional for more than 20 years. He has worked for companies such as Citi\, IBM\, Ticketmaster\, and Caesars Entertainment. He is also a Top Data Science Voice on LinkedIn and has more than 15\,000 followers on social media. \nIn his free time\, he enjoys playing poker\, golf\, and traveling the world. He has visited 6 continents and only Antarctica remains as the final continent to visit. \n \n\n  \nEvent Questions and Policies \n\n\nRegistration Questions \nIf you have any registration questions about this event\, please contact us by completing the Registration Contact Form linked below. \nRegistration Questions \n  \n\n\n\n\nCPE Questions \nIf you have CPE questions after the event has concluded\, please contact us by completing the CPE contact form linked below. \nCPE Questions \n  \n\n\n\n\nCancellation and Refunds \nCancellation and refund for advance registrations is allowed if cancellations are submitted through the registration system by the date registration closes. Refunds vary depending on the date of cancellation and cost of the event. See ISACA GWDC Event Policies for details. \n\n\n\n\nComplaints \nThe GWDC welcomes your comments\, complaints\, suggestions\, questions\, and other feedback concerning our website information and services. \nAll complaints should be submitted through the Registration Contact Form. \n\n\n  \n  \nCPE Information \nEarn up to 4 Continuing Professional Education (CPE) credit in the area of Information Technology. The ISACA® Greater Washington\, D.C. Chapter is registered with the National Association of State Boards of Accountancy (NASBA) as a sponsor of continuing professional education on the National Registry of CPE Sponsors. State boards of accountancy have final authority on the acceptance of individual courses for CPE credit. Complaints regarding registered sponsors may be submitted to the National Registry of CPE Sponsors through its website: www.NASBARegistry.org \n  \nCPE Distribution and Evaluation Survey \nCPEs will be distributed via e-mail along with the event evaluation survey after the completion of the event. Attendees must be present for the full event to receive full CPE credit. \n  \nLearning Objective \nAfter attending this event\, attendees will learn about current and future trends in the IT Audit space. \n  \nCPE-Related Details \n\nPrerequisites: None\nAdvance Preparation: None\nProgram Knowledge Level: Basic\nDelivery Method:  Group Internet Based\nField of Study:  Information Technology – Technical URL:https://isaca-gwdc.org/event/it-audit-conference-2025/ LOCATION:Virtual Event CATEGORIES:Conferences ATTACH;FMTTYPE=image/png:https://isaca-gwdc.org/wp-content/uploads/2024/11/conference_itaudit.png ORGANIZER;CN="Avneet Sabharwal":MAILTO:programs@isaca-gwdc.org END:VEVENT BEGIN:VEVENT DTSTART;TZID=America/New_York:20241214T190000 DTEND;TZID=America/New_York:20241214T210000 DTSTAMP:20241209T031254Z CREATED:20241126T124728Z LAST-MODIFIED:20241209T031254Z UID:33255-1734202800-1734210000@isaca-gwdc.org SUMMARY:GWDC Virginia Holiday Party DESCRIPTION:Share on X\n \n \n \n \n \n \n \n \n \n \n \n Share on Linkedin\n \n \n \n \n \n \n \n \n \n \n \n Share on Facebook\n \n \n \n \n \n \n \n \n \n \n \n Share on Print\n \n \n \n \n \n \n \n \n \n \n Share on Email\n \n \n \n \n \n \n\n \n\n\nISACA GWDC welcomes members to join us for our annual holiday get together. Come enjoy drinks (2 drink tickets) and small eats stay for the raffle where we will be giving away ISACA GWDC merch. \nThis event is for GWDC Members only and a guest (optional).  There is no charge to attend this social; however\, since space is limited in the venue\, we ask that you register only if you will attend. \nWe have reached the capacity for this event and are no longer accepting additions to the waitlist. \n  \nVenue Information \n \nBronson Bierhall (Arlington)\n4100 Fairfax Dr\nArlington\, VA 22203 \nParking Information\nThere are a number of parking garages in the area\, including the Ballston Public Parking Garage ($1 for first 3 hours). Metered street parking is also available. \nNearest Metro\nBronson Bierhall is located near the Ballston MU Metro Station (Orange and Silver lines). \n  \nEvent Questions and Policies \nRegistration Questions \nIf you have any registration questions about this event\, please contact the chapter using the Registration Contact Form. \nIf you have CPE questions after the event has concluded\, please contact the chapter using the CPE Contact Form. \n  \nCancellation and Refund Policy \nCancellation and refund for advance registrations is allowed if cancellations are submitted through the registration system. Refunds vary depending on the date of cancellation. See ISACA GWDC Event Policies for details. \nIf ISACA GWDC cancels the event\, all registrants will be notified as soon as possible through email at the email address provided during registration. Full refunds will be provided. \n  \nComplaint Policy \nThe GWDC welcomes your comments\, complaints\, suggestions\, questions\, and other feedback concerning our website information and services. All complaints should be submitted through the Registration Contact Form. \n  URL:https://isaca-gwdc.org/event/gwdc-virginia-holiday-party/ LOCATION:VA CATEGORIES:Social Events ATTACH;FMTTYPE=image/png:https://isaca-gwdc.org/wp-content/uploads/2024/11/social-holiday-party.png ORGANIZER;CN="Mike Howard":MAILTO:itadmin2@isaca-gwdc.org END:VEVENT BEGIN:VEVENT DTSTART;TZID=America/New_York:20241206T180000 DTEND;TZID=America/New_York:20241206T200000 DTSTAMP:20241204T012054Z CREATED:20241126T124743Z LAST-MODIFIED:20241204T012054Z UID:33248-1733508000-1733515200@isaca-gwdc.org SUMMARY:GWDC Maryland Holiday Party DESCRIPTION:Share on X\n \n \n \n \n \n \n \n \n \n \n \n Share on Linkedin\n \n \n \n \n \n \n \n \n \n \n \n Share on Facebook\n \n \n \n \n \n \n \n \n \n \n \n Share on Print\n \n \n \n \n \n \n \n \n \n \n Share on Email\n \n \n \n \n \n \n\n \n\n\nISACA GWDC welcomes members to join us for our annual holiday get together. Come enjoy drinks (2 drink tickets) and small eats stay for the raffle where we will be giving away ISACA GWDC merch. \nThis event is for GWDC Members only and a guest (optional).  There is no charge to attend this social; however\, since space is limited in the venue\, we ask that you register only if you will attend. \nCapacity for this event has been reached. However\, those interested can add their names to the waitlist. Those on the waitlist can still attend the event; however\, drink tickets may not be available. \nRegistration closes on December 5\, 2024 @ 2pm \nRegister Today! \n  \nVenue Information \n \nWorld of Beer (Bethesda)\n7200 Wisconsin Ave\nBethesda\, MD 20814 \nParking Information\nThere are a number of parking garages in the area. Metered street parking is also available. \nNearest Metro\nWorld of Beer is within walking distance of the Bethesda Metro station (Red Line). \n  \nEvent Questions and Policies \nRegistration Questions \nIf you have any registration questions about this event\, please contact the chapter using the Registration Contact Form. \nIf you have CPE questions after the event has concluded\, please contact the chapter using the CPE Contact Form. \n  \nCancellation and Refund Policy \nCancellation and refund for advance registrations is allowed if cancellations are submitted through the registration system. Refunds vary depending on the date of cancellation. See ISACA GWDC Event Policies for details. \nIf ISACA GWDC cancels the event\, all registrants will be notified as soon as possible through email at the email address provided during registration. Full refunds will be provided. \n  \nComplaint Policy \nThe GWDC welcomes your comments\, complaints\, suggestions\, questions\, and other feedback concerning our website information and services. All complaints should be submitted through the Registration Contact Form. \n  URL:https://isaca-gwdc.org/event/holiday-party-maryland-2024/ LOCATION:VA CATEGORIES:Social Events ATTACH;FMTTYPE=image/png:https://isaca-gwdc.org/wp-content/uploads/2024/11/social-holiday-party.png ORGANIZER;CN="Mike Howard":MAILTO:itadmin2@isaca-gwdc.org END:VEVENT BEGIN:VEVENT DTSTART;TZID=America/New_York:20241205T083000 DTEND;TZID=America/New_York:20241205T123000 DTSTAMP:20241204T184000Z CREATED:20240817T194849Z LAST-MODIFIED:20241204T184000Z UID:32663-1733387400-1733401800@isaca-gwdc.org SUMMARY:Security and Risk Insights Conference DESCRIPTION:Share on X\n \n \n \n \n \n \n \n \n \n \n \n Share on Linkedin\n \n \n \n \n \n \n \n \n \n \n \n Share on Facebook\n \n \n \n \n \n \n \n \n \n \n \n Share on Print\n \n \n \n \n \n \n \n \n \n \n Share on Email\n \n \n \n \n \n \n\n \n\n\nNavigating the Future: A CISO’s Perspective on 2024 Security and Risk Priorities \nThe ISACA Greater Washington D.C. Chapter (GWDC) invites you to our Annual Security and Risk Insights Conference—a must-attend event for cybersecurity professionals and business leaders. This year’s seminar offers a comprehensive review of the most critical cybersecurity and risk trends from 2024 and provides actionable insights on where to focus your budget and training efforts for 2025. Whether you’re a CISO\, IT manager\, or business executive\, this conference equips you with the knowledge you need to prepare for the year ahead. \nWhy Attend? \n\n In-Depth Analysis of 2024 Trends: Understand the key developments that shaped the cybersecurity landscape in 2024.\n Future-Focused Strategies: Learn about emerging risks and opportunities in 2025\, helping you make informed decisions about budget allocations and training priorities.\n Expert Guidance: Hear from industry leaders like Ira Winkler\, Greg Carpenter\, and Gary Hayslip on how to navigate the evolving security environment.\n Practical Takeaways: Gain actionable insights that you can apply immediately to strengthen your organization’s security posture.\n\n \nRegistration closes on December 4\, 2024 @ 2pm. \nRegister Today! \n  \nAgenda \n\n\n08:30 AM – 09:30 AM \n\n\nYour Budget is a Horse’s A$$ \nPresenter: Ira Winkler (CYE Security) \nExplore the historical influence of horse-drawn carts on railcar dimensions and how it relates to rigid cybersecurity budgeting. Join this session to learn how to apply machine learning and other mathematical concepts to justify budget allocation\, optimize risk\, and design effective cybersecurity programs for limited resources. \n\n\n\n09:30 AM – 10:30 AM \n\n\nTeaching Information Warfare: Current and Future Adversarial Philosophy and Strategy by Greg Carpenter \nPresenter: Greg Carpenter (KnowledgeBridge) \nThis presentation provides a concise overview of the philosophy and teaching strategies employed in academic and government institutions to educate adversaries on information warfare techniques and procedures. The information has been collected from various sources\, including the Russian Ministry of Defense and the Peoples Liberation Army National Defense University. Most information has been collected from sources which are not publicly available. Participants will have a better understanding of what our adversaries’ strategic goals are and how to best identify and defend against them. \n\n\n\n10:30 AM – 11:30 AM \n\n\nGenAI & Security – Championing the use of GenAI within the Security Program \nPresenter: Gary Hayslip (SoftBank Investment Advisers) \nAs GenAI use becomes the norm\, what approach should CISOs take to effectively deploy these technologies and build resilient security programs? \n\n\n\n11:30 AM – 12:30 AM \n\n\nThe Growing Threat of Supply Chain Attacks \nPresenter: Erika Carrara (The Greenbrier Companies) \nSuccess: No longer accepting the unacceptable risks we inherit from our 3rd parties. Implementing stricter vendor risk management practices and improved software supply chain security\, reducing vulnerabilities introduced through third-party software. Challenging assumptions embedded in long accepted best practices. \nChallenge: Sophisticated supply chain attacks\, like SolarWinds and the CrowdStrike debacle\, exposed the fragility of software supply chains and the potential for widespread damage. These incidents underscored the challenge of securing complex systems\, where a single compromised component can infiltrate numerous others. The CrowdStrike incident prompted a reevaluation of allowing blanketed automated security updates\, revealing potential vulnerabilities introduced through this practice. These events highlight the need for a multi-layered security approach\, including rigorous vendor risk management\, continuous monitoring\, and robust incident response plans. \nView Erika’s Speaker Showcase for this Conference on the GWDC YouTube channel \n\n  \nPresenters \n\n\n \n\n\nIra Winkler\nField CISO @ CYE Security\nCISSP \nIra Winkler\, CISSP is the Field CISO for CYE Security\, former Chief Security Architect at Walmart\, and author of You Can Stop Stupid\, Security Awareness for Dummies\, and Advanced Persistent Security. He is considered one of the world’s most influential security professionals\, and has been named a “Modern Day James Bond” by the media. He did this by performing espionage simulations\, where he physically and technically “broke into” some of the largest companies in the World and investigating crimes against them\, and telling them how to cost effectively protect their information and computer infrastructure. He continues to perform these espionage simulations\, as well as assisting organizations in developing cost effective security programs. Ira also won the Hall of Fame award from the Information Systems Security Association\, as well as several other prestigious industry awards. CSO Magazine named Ira a CSO Compass Award winner as The Awareness Crusader. He was named 2021 Top Cybersecurity Leader by Security Magazine\, and most recently 2022 Cybersecurity Champion of the Year by the Cybersecurity Association of Maryland. \nIra is also author of the riveting\, entertaining\, and educational books\, Advanced Persistent Security\, Spies Among Us and Zen and the Art of Information Security. He also writes for a variety of online sites\, including RSA Conference\, DarkReading and ComputerWorld\, and for several other industry publications. \nMr. Winkler has been a keynote speaker at almost every major information security related event\, on 6 continents\, and has keynoted events in many diverse industries. He is frequently ranked among\, if not the\, top speakers at the events. \nMr. Winkler began his career at the National Security Agency\, where he served as an Intelligence and Computer Systems Analyst. He moved onto support other US and overseas government military and intelligence agencies. After leaving government service\, he went on to serve as President of the Internet Security Advisors Group\, Chief Security Strategist at HP Consulting\, and Director of Technology of the National Computer Security Association. He was also on the Graduate and Undergraduate faculties of the Johns Hopkins University and the University of Maryland. Mr. Winkler was previously elected the International President of the Information Systems Security Association\, which is a 10\,000+ member professional association. \nMr. Winkler has also written the book Corporate Espionage\, which has been described as the bible of the Information Security field\, and the bestselling Through the Eyes of the Enemy. Both books address the threats that companies face protecting their information. He has also written hundreds of professional and trade articles. He has been featured and frequently appears on TV on every continent. He has also been featured in magazines and newspapers including Forbes\, USA Today\, Wall Street Journal\, San Francisco Chronicle\, Washington Post\, Planet Internet\, and Business 2.0. \n \n\n\n\n \n\n\nGreg Carpenter\nChief Security Officer @ KnowledgeBridge International\nCISM\, Lean Six-Sigma Black Belt\, and ISO-9000 lead auditor \nDr. Gregory Carpenter serves as the Chief Security Officer at KnowledgeBridge International\, holds the title of Fellow of the Royal Society for the Arts in London\, and was named the National Security Agency’s Operations Officer of the Year. He is on the Board of Directors for ATNA Systems\, an advisor for RedSeer Security\, a Senior Advisor for ARIC\, Inc.\, and a Special Operations Medical Association member. Previously\, Dr. Carpenter has served on the International Board of Advisors for the Mackenzie Institute and as an advisor for EC-Council University\, Prior to his current role\, Dr. Carpenter held various senior military and civilian positions\, including Vice President for Cyber Operations\, Chief of Security Testing\, Chief Operations Officer\, Counterintelligence Division Chief\, Chief of Special Space Operations\, and Functional Team Lead for Electronic Warfare. \nDr. Carpenter is a co-author of Reverse Deception: Organized Cyber Threat Counterexploitation\, he is an international keynote speaker on adversarial psychology\, techniques\, and deception. He has worked projects with the UN\, INTERPOL\, and several domestic and international law enforcement and intelligence agencies. \nHe is a retired U.S. Army officer who served 27 years. He holds a Bachelor of Science\, a Master of Science\, and a Doctorate in Public Health. His professional qualifications include Certified Information Security Manager\, Lean Six-Sigma Black Belt\, and ISO-9000 lead auditor. \n \n\n\n\n \n\n\nGary Hayslip\nGlobal CISO @ Softbank Investment Advisors \nWith over 20 years of IT\, cybersecurity\, and risk management experience\, Gary Hayslip has established a reputation as a skilled communicator\, author\, board director\, and keynote speaker. Currently\, as Global CISO\, he advises Softbank Investment Advisers (SBIA) executive leadership on protecting critical information resources and overseeing enterprise cybersecurity strategy. Hayslip co-authored the CISO Desk Reference Guide: A Practical Guide for CISOs\, volumes 1 and 2\, which enable CISOs to expand their business and leadership expertise. Hayslip’s previous executive roles include multiple CISO\, CIO\, Deputy Director of IT and Chief Privacy Officer for the US Navy (active duty)\, the US Navy (Civil Service)\, the City of San Diego\, California\, and Webroot Software. \n \n\n\n\n  \n\n\nErika Carrara\nVP\, Chief Technology & Security Officer @ The Greenbrier Companies \nErika Carrara is a highly strategic and visible executive at Greenbrier Companies\, serving as the Chief Technology & Security Officer. With a career focus on being a security-minded technologist\, Erika is a business enabler who thrives on innovation and solving complex problems. Her deep understanding of both security and infrastructure\, coupled with her alignment with the SRE methodology\, allows her to create a more reliable\, secure\, and efficient IT environment. \nErika’s leadership philosophy centers on the power of thought\, emphasizing that we become what we think about. She believes in continuous learning\, serving others\, and embracing individuality. Her foundational principles include defining one’s desires\, setting clear goals\, and viewing failure as a learning opportunity. As a leader\, Erika is committed to empowering her team\, fostering collaboration\, and inspiring growth. She expects her team to embrace challenges\, think critically\, communicate openly\, and strive for excellence. \n \n\n  \nEvent Questions and Policies \nRegistration Questions \nIf you have any registration questions about this event\, please contact the chapter using the Registration Contact Form. \nIf you have CPE questions after the event has concluded\, please contact the chapter using the CPE Contact Form. \n  \nCancellation and Refund Policy \nCancellation and refund for advance registrations is allowed if cancellations are submitted through the registration system. Refunds vary depending on the date of cancellation. See ISACA GWDC Event Policies for details. \nIf ISACA GWDC cancels the event\, all registrants will be notified as soon as possible through email at the email address provided during registration. Full refunds will be provided. \n  \nComplaint Policy \nThe GWDC welcomes your comments\, complaints\, suggestions\, questions\, and other feedback concerning our website information and services. All complaints should be submitted through the Registration Contact Form. \n  \nCPE Information \nEarn up to 4 Continuing Professional Education (CPE) credit in the area of Information Technology. The ISACA® Greater Washington\, D.C. Chapter is registered with the National Association of State Boards of Accountancy (NASBA) as a sponsor of continuing professional education on the National Registry of CPE Sponsors. State boards of accountancy have final authority on the acceptance of individual courses for CPE credit. Complaints regarding registered sponsors may be submitted to the National Registry of CPE Sponsors through its website: www.NASBARegistry.org \n  \nCPE Distribution and Evaluation Survey \nCPEs will be distributed via e-mail along with the event evaluation survey after the completion of the event. Attendees must be present for the full event to receive full CPE credit. \n  \nLearning Objective \nAfter attending this event\, attendees will learn about current and future trends in the cybersecurity and risk governance space. \n  \nCPE-Related Details \n\n Prerequisites: None\n Advance Preparation: None\n Program Knowledge Level: Basic\n Delivery Method:  Group Internet Based\n Field of Study:  Information Technology – Technical URL:https://isaca-gwdc.org/event/security-and-risk-insights-conference-2024/ LOCATION:Virtual Event CATEGORIES:Conferences ATTACH;FMTTYPE=image/png:https://isaca-gwdc.org/wp-content/uploads/2024/08/conference-security-insights-2024.png ORGANIZER;CN="Avneet Sabharwal":MAILTO:programs@isaca-gwdc.org END:VEVENT BEGIN:VEVENT DTSTART;TZID=America/New_York:20241203T083000 DTEND;TZID=America/New_York:20241203T173000 DTSTAMP:20240918T200014Z CREATED:20240817T153514Z LAST-MODIFIED:20240918T200014Z UID:32612-1733214600-1733247000@isaca-gwdc.org SUMMARY:CET Cloud Fundamentals Review Course DESCRIPTION:Share on X\n \n \n \n \n \n \n \n \n \n \n \n Share on Linkedin\n \n \n \n \n \n \n \n \n \n \n \n Share on Facebook\n \n \n \n \n \n \n \n \n \n \n \n Share on Print\n \n \n \n \n \n \n \n \n \n \n Share on Email\n \n \n \n \n \n \n\n \n\n \nThe GWDC will be hosting a one-day virtual course for the Certified in Emerging Technology™ (CET) Cloud Fundamentals Certificate on December 3 from 8:30 am to 5:30 PM. \nThis course covers characteristics\, components\, deployment models\, risks\, and business drivers of cloud computing. Learners gain insight into the principles and concepts of cloud computing\, services models\, cloud governance\, and an overview of critical cloud service considerations. The interactive\, self-guided format blends both knowledge and performance-based training components to provide a truly unique and dynamic learning experience that builds and reinforces the critical skills required to perform real-world technical tasks. \nIndividuals with little to zero years’ experience in cloud and those seeking to increase their knowledge and skills in Emerging Technology Topics should attend this event.  It’s also intended for anyone preparing for the CET Cloud fundamentals certificate exam. \n \nRegistration closes on December 2 @ 3pm. \nRegister Today! \n  \n\nRe-Take Discount \nStudents who take this GWDC review class and do not pass the corresponding Exam are eligible for a one-time 50% discount on the next review class offered by the GWDC for the exam. Please read the chapter event policy for discount details. \n\n  \nAgenda \nModule 1 – Cloud Computing Models \n\nCloud Components\nCloud Service Implementation Considerations\nCloud Deployment Models\n\nModule 2 – Cloud Service Models \n\nSoftware as a Service\nPlatform as a Service\nSolution Stacks\nInfrastructure as a Service\n\nModule 3 – Cloud Governance \n\nBusiness Drivers to Cloud \nRisks Associated with cloud solutions\nCloud Vendor Selection and Management\nPortability of Services\n\nModule 4 – Cloud Service supports \n\nDistinguish between service implementation and support in the cloud\nDescribe the testing and validation requirements for post-cloud implementation\nArticulate the special role that configuration management plays in cloud computing\nIdentify resource management challenges with cloud computing implementations\n\n  \nInstructor \n\n \n\n\nSushila Nair\nCISSP\, GIAC GSTRT\, GSNA GDSA\, CISA\, CISM\, CRISC\, CDPSE\, CCSK\, CCAK \nSushila Nair is the CEO of Cybernetic LLC and former Vice President of Capgemini’s North American Cybersecurity practice\, where she played a crucial role in driving secure digital transformation on a global scale. With over 30 years of experience in computing infrastructure\, business\, and security risk analysis\, Sushila has established herself as a leading authority in the cybersecurity domain. Her career highlights include serving as Vice President responsible for global security offers at NTT DATA Services\, a decade of leading her own IT and cybersecurity company across major UK cities\, and serving as a Chief Information Security Officer (CISO) and trusted advisor to boards\, where she honed her expertise in protecting organizations from evolving digital threats. Recognized through the top cybersecurity leader award by Security Magazine\, Sushila’s influence in the industry is undeniable. \nAn esteemed thought leader\, Sushila has shared her insights on prestigious platforms such as RSA Conference and ISACA’s global events. Her active participation in ISACA’s global emerging trends working group and her leadership as President of ISACA’s Greater Washington\, D.C. Chapter underscore her dedication to advancing the field of cybersecurity. In 2024\, her commitment to nurturing the next generation of cybersecurity professionals and promoting diversity in the industry was honored with the prestigious ISACA Technology for Humanity Award. \n \n\n  \nCET Cloud Fundamentals Certificate Exam \nThe exam is be offered via Computer-Based Testing (CBT). \nRegistration and administration of the exam is handled by ISACA®\, not the GWDC. Registering for this review course does not register you for the exam. \nFor full details on this certificate\, visit the ISACA’s CET Cloud Fundamentals Certificate page. \n  \nExam Preparation \nFor students who wish to take the CET- Cloud fundamentals exam\, it is highly recommended that the prospective candidates should purchase the official study guide and labs here as the exam includes hands on elements. \n  \nVirtual Meeting Information \n\nGroup Internet-Based. Zoom link delivered with registration.\nPrior to the event\, participants must install the Zoom app on their respective devices. Participants using the web-based Zoom or calling via the phone may not be entitled to CPE credits.\nParticipants must respond to all the poll questions via the Zoom polling feature or chat log in order to receive NASBA CPE credits.\nISACA Greater Washington\, D.C. will not be responsible for the participant’s inability to respond to the polls.\n\n  \nEvent Questions and Policies \nRegistration Questions \nIf you have any registration questions about this event\, please contact the chapter using the Registration Contact Form. \nIf you have CPE questions after the event has concluded\, please contact the chapter using the CPE Contact Form. \n  \nCancellation and Refund Policy \nCancellation and refund for advance registrations is allowed if cancellations are submitted through the registration system. Refunds vary depending on the date of cancellation. See ISACA GWDC Event Policies for details. \nIf ISACA GWDC cancels the event\, all registrants will be notified as soon as possible through email at the email address provided during registration. Full refunds will be provided. \n  \nComplaint Policy \nThe GWDC welcomes your comments\, complaints\, suggestions\, questions\, and other feedback concerning our website information and services. All complaints should be submitted through the Registration Contact Form. \n  \nCPE Information \nEarn up to 9 Continuing Professional Education (CPE) credit in the area of Information Technology. The ISACA® Greater Washington\, D.C. Chapter is registered with the National Association of State Boards of Accountancy (NASBA) as a sponsor of continuing professional education on the National Registry of CPE Sponsors. State boards of accountancy have final authority on the acceptance of individual courses for CPE credit. Complaints regarding registered sponsors may be submitted to the National Registry of CPE Sponsors through its website: www.NASBARegistry.org. \n  \nCPE Distribution and Evaluation Survey \nCPEs will be distributed via e-mail along with the event evaluation survey after the completion of the event. Attendees must be present for the full event to receive full CPE credit. \n  \nCPE-Related Details \n\nLearning Objective: After completing the course\, students will be prepared to sit for the CET exam.\nPrerequisites and Advance Preparation: None\nProgram Knowledge Level: Basic\nDelivery Method:  Group Internet Based\nField of Study:  Information Technology – Technical URL:https://isaca-gwdc.org/event/cet-cloud-fundamentals-2024/ LOCATION:Virtual Event CATEGORIES:Review Courses ATTACH;FMTTYPE=image/png:https://isaca-gwdc.org/wp-content/uploads/2024/08/review_course_cet_cloud.png ORGANIZER;CN="Clifton Persaud (Certifications Program and Special Assistance Requests)":MAILTO:certifications@isaca-gwdc.org END:VEVENT BEGIN:VEVENT DTSTART;TZID=America/New_York:20241121T180000 DTEND;TZID=America/New_York:20241121T200000 DTSTAMP:20241028T001958Z CREATED:20241028T001958Z LAST-MODIFIED:20241028T001958Z UID:33176-1732212000-1732219200@isaca-gwdc.org SUMMARY:GWDC Meetup for November 2024 DESCRIPTION:Share on X\n \n \n \n \n \n \n \n \n \n \n \n Share on Linkedin\n \n \n \n \n \n \n \n \n \n \n \n Share on Facebook\n \n \n \n \n \n \n \n \n \n \n \n Share on Print\n \n \n \n \n \n \n \n \n \n \n Share on Email\n \n \n \n \n \n \n\n \n\n\nCome out for a fun evening at the Boardroom. Meet the ISACA GWDC board and get to know people who are already members of ISACA or are interested in cyber and audit professions. \nThe event is open to members and non-members\, including students.  The first 30 who register will receive a drink ticket; however\, if the attendee has not arrived by 7pm it will be given to a different attendee. \nRegister by November 19\, 2024 @ 3pm.   \nRegister Today! \n  \nVenue Information \nThe Board Room (Clarendon)\n925 N. Garfield Street\nArlington\, VA 22201 \nParking Information\nThere is street parking near the restaurant.  Parking is also available at the nearby Colonial Parking garage. \nNearest Metro\nThe restaurant is a short walk from Clarendon Metro Station (Orange and Silver lines). \n  \nEvent Questions and Policies \nRegistration Questions \nIf you have any registration questions about this event\, please contact the chapter using the Registration Contact Form. \nIf you have CPE questions after the event has concluded\, please contact the chapter using the CPE Contact Form. \n  \nCancellation and Refund Policy \nCancellation and refund for advance registrations is allowed if cancellations are submitted through the registration system. Refunds vary depending on the date of cancellation. See ISACA GWDC Event Policies for details. \nIf ISACA GWDC cancels the event\, all registrants will be notified as soon as possible through email at the email address provided during registration. Full refunds will be provided. \n  \nComplaint Policy \nThe GWDC welcomes your comments\, complaints\, suggestions\, questions\, and other feedback concerning our website information and services. All complaints should be submitted through the Registration Contact Form. \n  URL:https://isaca-gwdc.org/event/meetup-november-2024/ LOCATION:The Board Room\, 925 N. Garfield Street\, Arlington\, VA\, 22201\, United States CATEGORIES:Social Events ATTACH;FMTTYPE=image/png:https://isaca-gwdc.org/wp-content/uploads/2024/10/networking_social.png ORGANIZER;CN="Mike Howard":MAILTO:itadmin2@isaca-gwdc.org END:VEVENT BEGIN:VEVENT DTSTART;TZID=America/New_York:20241118T083000 DTEND;TZID=America/New_York:20241122T170000 DTSTAMP:20240918T200006Z CREATED:20240831T121852Z LAST-MODIFIED:20240918T200006Z UID:32741-1731918600-1732294800@isaca-gwdc.org SUMMARY:Certified Information System Auditor® (CISA®) Review Course DESCRIPTION:Share on X\n \n \n \n \n \n \n \n \n \n \n \n Share on Linkedin\n \n \n \n \n \n \n \n \n \n \n \n Share on Facebook\n \n \n \n \n \n \n \n \n \n \n \n Share on Print\n \n \n \n \n \n \n \n \n \n \n Share on Email\n \n \n \n \n \n \n\n \n\n\nThe ISACA Greater Washington\, D.C. Chapter (GWDC) is hosting an intensive 5-day virtual review course for the Certified Information Systems Auditor® (CISA®) Exam. This course is designed to provide practical guidance on preparing for the CISA exam and will cover the essential job practice areas as defined by ISACA® Global. Importantly\, this course maps directly to the latest version of the CISA exam\, released in 2024. The course will run from November 18-22\, 2024\, from 8:30 AM to 5:00 PM Eastern. \nThis event is ideal for professionals planning to sit for the CISA exam. Attendees are encouraged to prepare in advance to maximize the benefits of the course. \n \nRegistration closes on November 17\, 2024 @ 3pm.  \nRegister Today! \n  \n\nRe-Take Discount \nStudents who take this GWDC review class and do not pass the corresponding Exam are eligible for a one-time 50% discount on the next review class offered by the GWDC for the exam. Please read the chapter event policy for discount details. \n\n  \nAgenda \nPlease note\, these are estimates as some domains (especially Domains 4 and 5) may span multiple days. \n\n Day 1: 18% Domain 1 – Information Systems Auditing Process\n Day 2: 18% Domain 2 – Governance & Management of IT\n Day 3: 12% Domain 3 – Information Systems Acquisition\, Development & Implementation\n Day 4: 26% Domain 4 – Information Systems Operations & Business Resilience\n Day 5: 26% Domain 5 – Protection of Information Assets\n\n  \nCourse Materials and Exam Resources \nMaterials Provided During the Course \nParticipants will receive a Student Workbook\, including the presentations\, case study\, and quiz questions for each domain. Additional resources\, such as exam tips\, vocabulary lists\, and recommended readings\, will also be provided. \n  \nStudy Recommendations \nThe instructor highly recommends that students purchase the CISA Review Manual and the CISA Review Questions\, Answers\, and Explanations Database – 12 Month ahead of the course date. Below are the study materials available for purchase from the ISACA Bookstore: \n\n CISA Review Manual\n CISA Review Questions\, Answers & Explanations Manual\n CISA Review Questions\, Answers & Explanation Database – 12 month subscription\n\n**It is highly recommended to order these at the earliest opportunity to avoid any possible delays in their availability for the start of the program. \n  \nAdditional Study Resources \nCandidates should review the Exam Candidate Guide and other resources on the ISACA CISA page as part of their study program.  \n  \nInstructors \n\n \n\n\nJim Wiggins\nCISSP\, ISSEP\, CISM\, CISA\, CRISC\, CDPSE\, CGRC\, CySA+\, SCNA\, SCNP\, IAM\, IEM\, SSCP\, CEH\, ECSA\, CHFI\, LPT\, TICSA\, CIWSA\, Security+\, and MCSE: Security and FITSP-M \nJim has over 28 years of direct experience in the design\, operation\, management\, and auditing of information technology systems\, with the past 23 years focused on information systems security. He has an extensive background in technical education and specializes in security certification courses aimed at federal and government contracting clients. \nToday\, Jim is the Founder and Principal of Securible\, LLC. Securible is an information security service provider offering cyber training programs to organizations of all sizes. At Securible\, Jim has taught IT security certification courses such as CISSP\, CISM\, CISA\, Ethical Hacking\, RMF\, Security+\, and other courses requested by Securible’s clients. Currently\, he provides education and training support for the National Risk Management Center (NRMC) at the Cybersecurity and Infrastructure Security Agency (CISA) within the Department of Homeland Security (DHS). More information on Securible can be found at: http://www.securible.com. \nJim is also the Founder and Chief Executive Officer (CEO) of the Federal IT Security Institute (FITSI). FITSI is a 501(c)(6) non-profit certification body accredited by the ANSI National Accreditation Board (ANAB) under ISO 17024:2012. FITSI offers a role-based IT security certification program targeted at the federal workforce. More information on FITSI can be found at: http://www.fitsi.org. \nAdditionally\, Jim is the Founder and Executive Director of the FITSI Foundation. The FITSI Foundation is a 501(c)(3) public charity that focuses on cyber education and serves as the philanthropic sister organization of the Federal IT Security Institute. The FITSI Foundation operates the Wounded Warrior Cyber Combat Academy (W2CCA). More information on the FITSI Foundation can be found at: https://www.fitsifoundation.org. \nIn 2020\, Jim launched a TV show on cybersecurity called “Cybersecurity Today\,” which can be viewed in the Washington\, DC area. Episodes can also be streamed online at the following website: http://www.cybersecuritytoday.org. \nIn 2019\, FCW named Jim to the “Federal 100” for his tireless efforts to promote cybersecurity education across all branches of the federal government. \nIn 2011\, the Federal Information Systems Security Educators’ Association (FISSEA) named him “Educator of the Year” for the impact he continues to make on the federal workforce. \nJim holds the following IA/IT security certifications: CISSP\, ISSEP\, CISM\, CISA\, CRISC\, CDPSE\, CGRC\, CySA+\, SCNA\, SCNP\, IAM\, IEM\, SSCP\, CEH\, ECSA\, CHFI\, LPT\, TICSA\, CIWSA\, Security+\, and MCSE: Security and FITSP-M. \n\n\n \n\n\nTyler Harding\nCPA\, CISA\, CISM\, CISSP\, CAP\, GGEIT\, FITSP:A\, FITSP:M \nTyler Harding is an Information Security and Compliance professional with over 25 years of experience. Currently\, Mr. Harding is a Sr. Technical Advisor on cybersecurity and cloud policy with the Department of Defense\, Office of the CIO. Prior to his role at DoD\, he has led security and privacy teams to achieve ISO 27001 certifications and clean SOC 2 attestation reports at Amazon.com. While with Amazon Web Services\, Tyler was the DoD Security and Compliance Manager and led efforts to accredit AWS cloud services to Impact Levels 4 and 5 under DoD’s Cloud Computing Security Requirements Guide (CC SRG). Before joining Amazon in 2019\, Tyler spent over 20+ years in public accounting firms such as PWC\, KPMG\, and Kearney & Company in their respective IT audit practices and led engagement teams through many SOC 1\, FISMA\, and financial statement audits. Tyler holds numerous certifications including his CPA\, CISA\, CISM\, CGEIT\, CISSP\, CGRC\, FITSP:A\, and FITSP:M. \nAs a recovering IT auditor\, Tyler now enjoys his summers and falls swimming\, cycling\, and playing an occasional round of golf! Tyler has also supported the ISACA Greater Washington D.C. Chapter for over 20 years by teaching CISA\, CISM\, and CGEIT review courses. \n\n  \nMore Information on CISA \n \nRegistration for the CISA exam is administered by ISACA®\, not the GWDC. Registering for this review course does not register you for the exam. \n» Details on CISA and Exam Registration \n  \nVirtual Meeting Information \n\n This event will be presented online through Microsoft Teams.  \n The instructor will email students prior to the event with instructions and additional information. \n\n  \nEvent Questions and Policies \nRegistration Questions \nIf you have any registration questions about this event\, please contact the chapter using the Registration Contact Form. \nIf you have CPE questions after the event has concluded\, please contact the chapter using the CPE Contact Form. \n  \nCancellation and Refund Policy \nCancellation and refund for advance registrations is allowed if cancellations are submitted through the registration system. Refunds vary depending on the date of cancellation. See ISACA GWDC Event Policies for details. \nIf ISACA GWDC cancels the event\, all registrants will be notified as soon as possible through email at the email address provided during registration. Full refunds will be provided. \n  \nComplaint Policy \nThe GWDC welcomes your comments\, complaints\, suggestions\, questions\, and other feedback concerning our website information and services. All complaints should be submitted through the Registration Contact Form. \n  \nCPE Information \nEarn up to 40 Continuing Professional Education (CPE) credit in the area of Information Technology. The ISACA® Greater Washington\, D.C. Chapter is registered with the National Association of State Boards of Accountancy (NASBA) as a sponsor of continuing professional education on the National Registry of CPE Sponsors. State boards of accountancy have final authority on the acceptance of individual courses for CPE credit. Complaints regarding registered sponsors may be submitted to the National Registry of CPE Sponsors through its website: www.NASBARegistry.org \n  \nCPE Distribution and Evaluation Survey \nCPEs will be distributed via e-mail along with the event evaluation survey after the completion of the event. Attendees must be present for the full event to receive full CPE credit. \n  \nCPE-Related Details \n\n Learning Objective: After completing the course\, students will be prepared to sit for the CISA exam.\n Prerequisites and Advance Preparation: Students are expected to have prepared for the exam prior to attending the course.\n Program Knowledge Level: Basic\n Delivery Method:  Group Internet Based\n Field of Study:  Information Technology – Technical URL:https://isaca-gwdc.org/event/cisa-review-course-fall-2024/ LOCATION:Virtual Event CATEGORIES:Review Courses ATTACH;FMTTYPE=image/png:https://isaca-gwdc.org/wp-content/uploads/2024/08/review_course_CISA.png ORGANIZER;CN="Clifton Persaud (Certifications Program and Special Assistance Requests)":MAILTO:certifications@isaca-gwdc.org END:VEVENT BEGIN:VEVENT DTSTART;TZID=America/New_York:20241101T083000 DTEND;TZID=America/New_York:20241101T140000 DTSTAMP:20241014T144156Z CREATED:20240831T135744Z LAST-MODIFIED:20241014T144156Z UID:32786-1730449800-1730469600@isaca-gwdc.org SUMMARY:PowerShell® Workshop: Auditing and Monitoring Windows Logs DESCRIPTION:Share on X\n \n \n \n \n \n \n \n \n \n \n \n Share on Linkedin\n \n \n \n \n \n \n \n \n \n \n \n Share on Facebook\n \n \n \n \n \n \n \n \n \n \n \n Share on Print\n \n \n \n \n \n \n \n \n \n \n Share on Email\n \n \n \n \n \n \n\n \n\n\nAudit logs are an invaluable resource to identify activities that have occurred on a system. Logs are analyzed for a wide variety of reasons\, from researching system performance issues to responding to a cyberattack. While there are a variety of software applications designed to ingest and analyze logs\, they can often be expensive. \nPowerShell provides an alternative for viewing and analyzing Windows logs. PowerShell contains built-in commands to view and search logs on local systems. In addition\, its data analysis capabilities provide the ability to import and analyze Windows log files (e.g.\, evtx files). Since PowerShell is installed on all Microsoft systems\, it is a free platform to build log analysis scripts for specific use cases. \nThis one-day hands-on workshop will cover the PowerShell commands and steps needed to build scripts for auditing and monitoring windows logs. The course will also provide examples of use cases for auditing and monitoring Windows log files. This course builds on the concepts presented in the PowerShell Workshop: Basics. \nThis workshop is an excellent opportunity for those who are new to using PowerShell to work with Windows log files. It is also a great opportunity for those familiar with PowerShell’s Windows log commands to refresh and practice their skills. \n \nRegistration closes on October 31\, 2024 @ 8pm. \nRegister Today! \n  \nAgenda \n\n Course Introduction\n Basics of PowerShell’s Windows log commands.\n Commands and hands-on exercises to query Windows log data using PowerShell commands.\n Commands and hands-on exercises to import data from Windows log files (.evtx files).\n Commands and hands-on exercises for log uses cases.\n Commands and hands-on exercises for export data into CSV files.\n PowerShell resources and recap\n\n  \nAdditional Course Details \nHands-on Lab Exercises \nEach student will be provided access to a Windows Server to use during the course. The server will be hosted on the Azure Lab Services platform. \nThe server will be accessed using Windows Remote Desktop. Therefore\, on the course dates\, students will need to use a Windows-based computer that permits use of the Remote Desktop protocol. \nAn email will be sent to each student this evening with instructions on accessing the virtual server. Students are encouraged to register and follow the instructions to access the virtual server prior to the start of the seminar. \nEach lesson in the course has practice commands to use during the lesson and practice exercise to reinforce lesson concepts.  All lesson materials will be pre-loaded onto each student’s virtual server. \n  \nMaterials Provided During the Seminar \nEach student attending the seminar will be provided: \n\n Presentation materials\n PowerShell scripts for each lesson\n Access to the virtual server for up to 10 hours after the course ends for additional practice\n Link to the seminar recording\, good for 30 days after the seminar\n\n  \nInstructor \n\n \n\n\nMike Howard\nCISA\, MBA \nMike Howard is an experienced IT auditor with over 29 years of IT auditing experience in the Federal Government. Mike is a technical auditor who has audited numerous technologies\, including mainframes\, Unix environments\, Active Directory\, databases\, Cisco devices\, and Windows computers. Mike embraces innovative technologies to accomplish his audits\, most notably using PowerShell to write custom scripts. Over the 10+ years that he has been using PowerShell\, he’s written over 300 PowerShell scripts. \nMike is also a member of the ISACA Greater Washington D.C. chapter and has served on the board for 17+ years\, most of the time as Internet/Communications Director. Mike is currently the Associate Director for Web Development\, where he manages the chapter’s website. Mike has also used PowerShell to accomplish tasks related to his Chapter duties\, including creating web pages\, calculating CPE credits\, and updating membership rosters. \nMike has a B.S. in Accounting from Old Dominion University and a Masters in Business Administration from George Mason University. \n\n  \nVirtual Meeting Information \n\n This event will be presented through Zoom.  The instructor will send an email with the zoom link prior to the event.\n Prior to the event\, participants must install the Zoom app on their respective devices. Participants using the web-based Zoom or calling via the phone may not be entitled to CPE credits.\n Participants must respond to all the poll questions via the Zoom polling feature or chat log in order to receive NASBA CPE credits.\n The ISACA Greater Washington\, D.C. Chapter will not be responsible for the participant’s inability to respond to the polls.\n\n  \nEvent Questions and Policies \nRegistration Questions \nIf you have any registration questions about this event\, please contact the chapter using the Registration Contact Form. \nIf you have CPE questions after the event has concluded\, please contact the chapter using the CPE Contact Form. \n  \nCancellation and Refund Policy \nCancellation and refund for advance registrations is allowed if cancellations are submitted through the registration system. Refunds vary depending on the date of cancellation. See ISACA GWDC Event Policies for details. \nIf ISACA GWDC cancels the event\, all registrants will be notified as soon as possible through email at the email address provided during registration. Full refunds will be provided. \n  \nComplaint Policy \nThe GWDC welcomes your comments\, complaints\, suggestions\, questions\, and other feedback concerning our website information and services. All complaints should be submitted through the Registration Contact Form. \n  \nCPE Information \nEarn up to 6 Continuing Professional Education (CPE) credit in the area of Information Technology. The ISACA® Greater Washington\, D.C. Chapter is registered with the National Association of State Boards of Accountancy (NASBA) as a sponsor of continuing professional education on the National Registry of CPE Sponsors. State boards of accountancy have final authority on the acceptance of individual courses for CPE credit. Complaints regarding registered sponsors may be submitted to the National Registry of CPE Sponsors through its website: www.NASBARegistry.org \n  \nCPE Distribution and Evaluation Survey \nCPEs will be distributed via e-mail along with the event evaluation survey after the completion of the event. Attendees must be present for the full event to receive full CPE credit. \n  \nLearning Objectives \nAfter completing this course\, students will have skills to use PowerShell to obtain data from Windows logs and perform basic use cases. Specifically\, students will be able to: \n\n Query Windows log data from a Windows operating system.\n Import Windows log .evtx files.\n Analyze\, reformat\, and export Windows log data.\n\n  \nCPE-Related Details \n\n Prerequisites: Students should have a general understanding of PowerShell commands and be familiar with Windows Logs.\n Advance Preparation: The instructor will provide materials in advance of the course. The instructor will also provide credentials to access a virtual server several days in advance of the course. Students should log onto the server and share any issues with the instructor in advance of the course.\n Program Knowledge Level: Intermediate\n Delivery Method:  Group Internet Based\n Field of Study:  Information Technology – Technical URL:https://isaca-gwdc.org/event/powershell-workshop-windows-logs-2024/ LOCATION:Virtual Event CATEGORIES:Special Seminars ATTACH;FMTTYPE=image/png:https://isaca-gwdc.org/wp-content/uploads/2024/08/seminar-ps-workshop-windows-logs.png ORGANIZER;CN="Clifton Persaud (Certifications Program and Special Assistance Requests)":MAILTO:certifications@isaca-gwdc.org END:VEVENT BEGIN:VEVENT DTSTART;TZID=America/New_York:20241024T083000 DTEND;TZID=America/New_York:20241024T123000 DTSTAMP:20240918T195947Z CREATED:20240817T190739Z LAST-MODIFIED:20240918T195947Z UID:32655-1729758600-1729773000@isaca-gwdc.org SUMMARY:Cybersecurity Conference DESCRIPTION:Share on X\n \n \n \n \n \n \n \n \n \n \n \n Share on Linkedin\n \n \n \n \n \n \n \n \n \n \n \n Share on Facebook\n \n \n \n \n \n \n \n \n \n \n \n Share on Print\n \n \n \n \n \n \n \n \n \n \n Share on Email\n \n \n \n \n \n \n\n \n\n\nThe GWDC is proud to host its annual cybersecurity conference. This virtual conference is part of our monthly conference series. \nBusiness leaders and managers\, executives\, technologists\, professionals\, and students\, interested in staying current in the field of cybersecurity should attend this conference. \n \nRegistration closes on October 23\, 2024 @ 2pm. \nRegister Today! \n  \nAgenda \n\n\n08:30 AM – 09:30 AM \n\n\nSecuring the Road Ahead: NIST Cybersecurity Framework 2.0 \nPresenter: Cherilyn Pascoe (NIST) \nBack in February\, the National Institute of Standards and Technology (NIST) published the Cybersecurity Framework (CSF) 2.0—the first major update to its landmark cybersecurity guidance since 2014. Join NIST’s National Cybersecurity Center of Excellence (NCCoE) Director and CSF Lead Cherilyn Pascoe for this presentation to learn about the key updates to CSF 2.0\, including a new suite of implementation tools and resources to address specific organizational needs\, and how you can engage with NIST. \n\n\n\n09:30 AM – 10:30 AM \n\n\nIgnore Cybersecurity in Your Third-Party Ecosystem at Your Own Peril \nPresenter: Jeffrey Wheatman (Black Kite) \nHistorically\, and even as recently as less than a decade ago\, third-party risk management was about this: if legal and finance said OK\, we were good to go. But no more! What would happen to your organization if a critical partner got slammed with the latest ransomware and were down for a week\, a month\, or forever. What would be the impact on your company? Real time\, continuous visibility into cybersecurity posture within your ecosystem is no longer a “nice to have”. In this presentation we will explore: \n\n Are questionnaires enough? (SPOILER ALERT: No)\n How can we shift focus to resilience in our full ecosystem\n Best practices in integrating cybersecurity risk into the process of managing your partners\n\n\n\n\n10:30 AM – 11:30 AM \n\n\nBack to Basics: The Indispensable Role of Cybersecurity Fundamentals in a Complex World \nPresenter: Rich Greene (SANS Institute) \nIn today’s fast-paced digital landscape\, it’s easy to be swept up in the allure of cutting-edge technologies and advanced security measures. However\, amidst the rush towards innovation\, the core principles of cybersecurity—the fundamentals—often get overlooked. In this engaging 45-minute talk\, Rich Greene\, will explore why these foundational elements are more critical than ever. Drawing on real-world examples and personal experiences\, Rich will illustrate how neglecting the basics can lead to significant vulnerabilities and how a solid grasp of these principles can fortify an organization’s defense strategy. Attendees will leave with a renewed appreciation for the essential building blocks of cybersecurity and practical insights on how to integrate these fundamentals into their security practices. \n\n\n\n11:30 AM – 12:30 AM \n\n\nNavigating the Cyber Frontier: 2025 Threats and Strategies Protect Your Workforce\, Assets & IP \nPresenter: Juman Doleh-Alomary (BorgWarner) \nIn an era where cyber threats are evolving at an unprecedented pace\, organizations must stay ahead of the curve to safeguard their workforce\, assets\, and intellectual property (IP). This presentation delves into the anticipated cyber threats of 2025\, offering a comprehensive overview of emerging risks and the strategies necessary to mitigate them. \nKey topics include: \n\n Emerging Cyber Threats: An analysis of the latest trends in cyber-attacks\, including advanced persistent threats (APTs)\, ransomware\, and insider threats.\n Protecting Your Workforce: Strategies to enhance employee awareness and training\, ensuring that your first line of defense is well-prepared.\n Safeguarding Assets and IP: Best practices for securing critical assets and intellectual property\, from robust encryption methods to advanced access controls.\n Innovative Defense Mechanisms: Exploration of cutting-edge technologies and methodologies\, such as AI-driven security solutions and zero-trust architectures.\n Case Studies and Lessons Learned: Real-world examples of cyber incidents and the lessons they offer for future preparedness.\n\nJoin us to gain valuable insights and actionable strategies to navigate the complex cyber landscape of 2025\, ensuring your organization remains resilient against the ever-evolving threats. \n\n  \nPresenters \n\n\n \n\n\nCherilyn Pascoe\nDirector\, National Cybersecurity Center of Excellence (NCCoE) @ NIST \nCherilyn Pascoe is the Director of the NIST National Cybersecurity Center of Excellence (NCCoE). She provides strategic direction and technical leadership for the NCCoE\, aligns the NCCoE’s work with the industry\, government\, and NIST priorities\, and builds relationships with key stakeholders. Prior to her role as Director of the NCCoE she served as the Senior Technology Policy Advisor\, advising NIST leadership on technology policy and strategy\, including cybersecurity\, privacy\, and artificial intelligence. She also led the NIST Cybersecurity Framework program and was a team member of the NIST AI Risk Management Framework. Prior to joining NIST in 2021\, she served more than a decade in staff leadership roles on the US Senate Committee on Commerce\, Science\, and Transportation. Most recently\, she served as Deputy Policy Director managing the Committee’s Space and Science Subcommittee\, which has jurisdiction over science\, technology\, standards\, and civil space policy. \n \n\n\n\n \n\n\nJeffrey Wheatman\nSVP\, Cyber Risk Strategist @ Black Kite \nA strategic thought leader with extensive expertise in security and cyber risk management\, Jeffrey Wheatman is regarded as a foremost expert in guiding public sector clients and Fortune 500 companies in connection with their cybersecurity and risk management programs. Jeffrey’s history of working with clients to plan\, grow\, and transform their cyber risk management programs has been instrumental in ensuring organizations’ continued viability and health as they define short- and long-term expansion plans. Under Jeffrey’s guidance\, board and C-level leaders are fortified with the best practice solutions to realize exceptional performance outcomes. \nIn his current capacity as SVP\, Cyber Risk Strategist at Black Kite\, Jeffrey has been tasked with raising awareness of the enterprise-wide risk impacts of third party Cyber risk\, both in the digital and traditional supply chain and supporting the strategic vision of the executive leadership team and investors. \nPrior to joining Black Kite\, Jeffrey acted as a VP\, Advisor with Gartner\, the global strategic advisory firm\, where he worked with clients to build and improve their security programs\, assess risk\, focus on reporting on program status\, metrics\, performance management\, stakeholder engagement\, executive communication\, and bridging the connection between technology and security risk. Jeffrey guided leaders in selecting frameworks to run cyber programs in compliance with regulatory requirements and expectations of auditors and partners. \n \n\n\n\n \n\n\nRich Greene\nSenior Solutions Engineer @ SANS Institute\nGFACT\, GISF\, GSEC\, GCIA\, GCIH\, GPYC\, GWAPT\, GMOB\, GPEN\, GSTRT\, SSAP\, GDSA\, GICSP\, GRID\, CISSP \nPresently\, Rich wears many hats\, serving as a Senior Solutions Engineer at the prestigious SANS Institute while also steering the ship at SITH2\, LLC\, where he is the owner and operator. At SANS\, he harnesses his extensive 20-year background in cybersecurity\, intelligence\, and special operations to craft tailored solutions and deliver comprehensive training to clients spanning diverse industries and sectors. Rich’s expertise is underscored by an impressive arsenal of certifications\, boasting 14 GIAC certifications alongside a CISSP credential. His proficiency spans a wide spectrum of cybersecurity domains\, including incident response\, mobile device security\, information security fundamentals\, and penetration testing. \nBeyond his professional endeavors\, Rich is a passionate advocate for mentorship and collaboration\, steadfastly committed to imparting his knowledge and skills through captivating presentations\, interactive workshops\, and insightful reports. His commitment to excellence is evident in his track record of consistently exceeding target goals and client expectations\, consistently delivering exceptional results. \nDriven by an unwavering dedication to staying ahead of the curve in the face of evolving cyber threats\, Rich is perpetually engaged in the pursuit of knowledge\, embracing new technologies\, tools\, and methodologies with fervor. His impressive array of certifications which include active GFACT\, GISF\, GSEC\, GCIA\, GCIH\, GPYC\, GWAPT\, GMOB\, GPEN\, GSTRT\, SSAP\, GDSA\, GICSP\, GRID and CISSP–further solidifies his standing as a preeminent cybersecurity expert\, revered within the field for his unparalleled expertise and unwavering commitment to excellence. \n \n\n\n\n \n\n\nJuman Doleh-Alomary\nChief Information Security Officer @ BorgWarner\nCISA\, CISM\, CRISC\, CDPSE\, ISO 27001 \nJuman Doleh-Alomary is BorgWarner’s Chief Information Security Officer and an active volunteer board member of the ISACA Detroit Chapter.  With over 15 years of experience in security\, audit\, investigation\, compliance\, and privacy policy/standards\, Juman most recently held the position of Director of Cybersecurity GRC at Little Caesar’s Enterprises serving the Ilitch holdings portfolio of companies. Her prior positions include Director of IT Audit at Wayne State University and a significant tenure in IT and Risk Management at Ford Motor Company. A leader within the ISACA community\, Juman has held various roles\, including past president and\, notably\, chair of the IIA/ISACA Spring Conference\, which achieved a record attendance. She is active volunteer with Michigan Council of Women in Technology (MCWT)\, Women Security Alliance (WomSA)\, and Women in Cyber (WiCys) Michigan.  An alumnus of the University of Michigan\, she holds both a bachelor’s and a master’s degree\, complemented by an impressive suite of certifications: CISA\, CISM\, CRISC\, CDPSE\, and ISO 27001. \n \n\n  \nVirtual Meeting Information \n\n This event will be presented through Zoom.\n Prior to the event\, participants must install the Zoom app on their respective devices or use the web-based Zoom. Calling via the phone may not be entitled to CPE credits.\n Participants must respond to all the poll questions via the Zoom polling feature or chat log in order to receive NASBA CPE credits.\n The ISACA Greater Washington\, D.C. Chapter will not be responsible for the participant’s inability to respond to the polls.\n\n  \nEvent Questions and Policies \nRegistration Questions \nIf you have any registration questions about this event\, please contact the chapter using the Registration Contact Form. \nIf you have CPE questions after the event has concluded\, please contact the chapter using the CPE Contact Form. \n  \nCancellation and Refund Policy \nCancellation and refund for advance registrations is allowed if cancellations are submitted through the registration system. Refunds vary depending on the date of cancellation. See ISACA GWDC Event Policies for details. \nIf ISACA GWDC cancels the event\, all registrants will be notified as soon as possible through email at the email address provided during registration. Full refunds will be provided. \n  \nComplaint Policy \nThe GWDC welcomes your comments\, complaints\, suggestions\, questions\, and other feedback concerning our website information and services. All complaints should be submitted through the Registration Contact Form. \n  \nCPE Information \nEarn up to 4 Continuing Professional Education (CPE) credit in the area of Information Technology. The ISACA® Greater Washington\, D.C. Chapter is registered with the National Association of State Boards of Accountancy (NASBA) as a sponsor of continuing professional education on the National Registry of CPE Sponsors. State boards of accountancy have final authority on the acceptance of individual courses for CPE credit. Complaints regarding registered sponsors may be submitted to the National Registry of CPE Sponsors through its website: www.NASBARegistry.org \n  \nCPE Distribution and Evaluation Survey \nCPEs will be distributed via e-mail along with the event evaluation survey after the completion of the event. Attendees must be present for the full event to receive full CPE credit. \n  \nLearning Objective \nAfter attending this event\, attendees will learn about recent topics in the cybersecurity space. \n  \nCPE-Related Details \n\n Prerequisites: None\n Advance Preparation: None\n Program Knowledge Level: Basic\n Delivery Method:  Group Internet Based\n Field of Study:  Information Technology – Technical URL:https://isaca-gwdc.org/event/cybersecurity-conference-2024/ LOCATION:Virtual Event CATEGORIES:Conferences ATTACH;FMTTYPE=image/png:https://isaca-gwdc.org/wp-content/uploads/2024/08/conference_cybersecurity.png ORGANIZER;CN="Avneet Sabharwal":MAILTO:programs@isaca-gwdc.org END:VEVENT BEGIN:VEVENT DTSTART;TZID=America/New_York:20241021T090000 DTEND;TZID=America/New_York:20241022T160000 DTSTAMP:20240918T195937Z CREATED:20240817T181602Z LAST-MODIFIED:20240918T195937Z UID:32648-1729501200-1729612800@isaca-gwdc.org SUMMARY:Artificial Intelligence and Machine Learning Seminar DESCRIPTION:Share on X\n \n \n \n \n \n \n \n \n \n \n \n Share on Linkedin\n \n \n \n \n \n \n \n \n \n \n \n Share on Facebook\n \n \n \n \n \n \n \n \n \n \n \n Share on Print\n \n \n \n \n \n \n \n \n \n \n Share on Email\n \n \n \n \n \n \n\n \n\n\nThis will be a two-day virtual classroom seminar designed for those who want to understand the core concepts of Artificial Intelligence\, Machine Learning\, and Generative AI\, and become familiar with popular Generative AI platforms like ChatGPT\, Bard\, DALLE-2\, and Midjourney.  In addition\, attendees will gain practical experience in leveraging these platforms for solving organizational challenges and the ethical considerations\, and potential misuse of Generative AI. \nIT professionals\, managers\, auditors\, consultants\, or anyone else interested in learning more about artificial intelligence and machine learning should attend this seminar. \n \nRegistration closes on October 20 @ 3 pm. \nRegister Today! \n  \nCourse Materials\, Format\, and Schedule \nCourse Format \nThis course blends expert lectures\, interactive discussions\, and practical sessions. It fosters a collaborative learning environment and provides access to online resources for self-paced study. \n  \nCourse Schedule  \nThe course spans two days\, 7 hours each day\, inclusive of breaks. Specific scheduling will be provided closer to the course date. \n  \nCourse Materials \nParticipants will gain access to a range of course materials including online resources\, a comprehensive slide deck\, and popular AI platforms like ChatGPT\, Bard\, DALLE-2\, and Midjourney. Additional recommended readings and supplementary materials will be provided during the course. \n  \nAgenda \nDay 1 \n\n Introduction and Course Overview (30 minutes)\n\n\n Presenter Introduction\n Course Objectives and Outcomes\n Course Materials and Format\n\n\n History of Artificial Intelligence and Generative AI (1 hour)\n\n\n Evolution of Artificial Intelligence\n Development of Machine Learning and Deep Learning\n The Emergence of Generative AI: A Historical Perspective\n\n\n Overview of Common Generative AI Platforms (2 hours)\n\n\n Introduction to ChatGPT\, Bard\, DALLE-2\, and Midjourney\n Features and Unique Capabilities of Each Platform\n Break (15 minutes)\n Comparative Analysis: Strengths\, Weaknesses\, and Appropriate Use Cases for Each Platform\n\n\n Gaining Access to Platforms (1 hour)\n\n\n Procedures for Accessing AI Platforms\n Subscriptions\, Costs\, and Managing Organizational Access\n Break (30 minutes – Lunch)\n\n\n Introduction to Prompting (1 hour)\n\n\n Understanding Prompts and Their Role in Generative AI\n Constructing Effective Prompts: Best Practices\n\n\n Prompt Engineering (1.5 hours)\n\n\n Techniques for Advanced Prompt Engineering\n Hands-on Exercise: Crafting and Testing Prompts on Different Platforms\n Break (15 minutes)\n Review and Feedback on Prompt Engineering Exercise\n\n  \nDay 2 \n\n Recap of Day 1 and Overview of Day 2 (30 minutes)\n Practical Applications of Generative AI (2 hours)\n\n\n The Impact and Potential of Generative AI across Various Domains\n Real-world Use Cases and Success Stories\n Break (15 minutes)\n Exercise: Brainstorming Possible Applications in Participants’ Context\n\n\n Ethical Considerations and Risks in Generative AI (1 hour)\n\n\n Understanding the Ethical Landscape of AI\n Identifying and Mitigating Risks in Using Generative AI\n Break (30 minutes – Lunch)\n\n\n Hands-on Session: Operationalizing Generative AI (2.5 hours)\n\n\n Accessing Platforms and Setting Up for a Task\n Crafting Prompts for a Given Task\n Review and Feedback on Hands-on Exercise\n Break (15 minutes)\n\n\n Future Trends in Generative AI and Closing Remarks (1 hour)\n\n\n The Road Ahead: What to Expect from the Future of Generative AI\n Opportunities for Further Learning and Specialization\n Course Review\, Q&A\, and Feedback Session\n\n  \nInstructor \n\n \n\n\nJim Wiggins\nCISSP\, ISSEP\, CISM\, CISA\, CRISC\, CDPSE\, CGRC\, CySA+\, SCNA\, SCNP\, IAM\, IEM\, SSCP\, CEH\, ECSA\, CHFI\, LPT\, TICSA\, CIWSA\, Security+\, and MCSE: Security and FITSP-M \nJim has over 28 years of direct experience in the design\, operation\, management\, and auditing of information technology systems\, with the past 23 years focused on information systems security. He has an extensive background in technical education and specializes in security certification courses aimed at federal and government contracting clients. \nToday\, Jim is the Founder and Principal of Securible\, LLC. Securible is an information security service provider offering cyber training programs to organizations of all sizes. At Securible\, Jim has taught IT security certification courses such as CISSP\, CISM\, CISA\, Ethical Hacking\, RMF\, Security+\, and other courses requested by Securible’s clients. Currently\, he provides education and training support for the National Risk Management Center (NRMC) at the Cybersecurity and Infrastructure Security Agency (CISA) within the Department of Homeland Security (DHS). More information on Securible can be found at: http://www.securible.com. \nJim is also the Founder and Chief Executive Officer (CEO) of the Federal IT Security Institute (FITSI). FITSI is a 501(c)(6) non-profit certification body accredited by the ANSI National Accreditation Board (ANAB) under ISO 17024:2012. FITSI offers a role-based IT security certification program targeted at the federal workforce. More information on FITSI can be found at: http://www.fitsi.org. \nAdditionally\, Jim is the Founder and Executive Director of the FITSI Foundation. The FITSI Foundation is a 501(c)(3) public charity that focuses on cyber education and serves as the philanthropic sister organization of the Federal IT Security Institute. The FITSI Foundation operates the Wounded Warrior Cyber Combat Academy (W2CCA). More information on the FITSI Foundation can be found at: https://www.fitsifoundation.org. \nIn 2020\, Jim launched a TV show on cybersecurity called “Cybersecurity Today\,” which can be viewed in the Washington\, DC area. Episodes can also be streamed online at the following website: http://www.cybersecuritytoday.org. \nIn 2019\, FCW named Jim to the “Federal 100” for his tireless efforts to promote cybersecurity education across all branches of the federal government. \nIn 2011\, the Federal Information Systems Security Educators’ Association (FISSEA) named him “Educator of the Year” for the impact he continues to make on the federal workforce. \nJim holds the following IA/IT security certifications: CISSP\, ISSEP\, CISM\, CISA\, CRISC\, CDPSE\, CGRC\, CySA+\, SCNA\, SCNP\, IAM\, IEM\, SSCP\, CEH\, ECSA\, CHFI\, LPT\, TICSA\, CIWSA\, Security+\, and MCSE: Security and FITSP-M. \n\n  \nVirtual Meeting Information \n\n This event will be presented online through Microsoft Teams.  \n The instructor will email students prior to the event with instructions and additional information. \n\n  \nEvent Questions and Policies \nRegistration Questions \nIf you have any registration questions about this event\, please contact the chapter using the Registration Contact Form. \nIf you have CPE questions after the event has concluded\, please contact the chapter using the CPE Contact Form. \n  \nCancellation and Refund Policy \nCancellation and refund for advance registrations is allowed if cancellations are submitted through the registration system. Refunds vary depending on the date of cancellation. See ISACA GWDC Event Policies for details. \nIf ISACA GWDC cancels the event\, all registrants will be notified as soon as possible through email at the email address provided during registration. Full refunds will be provided. \n  \nComplaint Policy \nThe GWDC welcomes your comments\, complaints\, suggestions\, questions\, and other feedback concerning our website information and services. All complaints should be submitted through the Registration Contact Form. \n  \nCPE Information \nEarn up to 14 Continuing Professional Education (CPE) credit in the area of Information Technology. The ISACA® Greater Washington\, D.C. Chapter is registered with the National Association of State Boards of Accountancy (NASBA) as a sponsor of continuing professional education on the National Registry of CPE Sponsors. State boards of accountancy have final authority on the acceptance of individual courses for CPE credit. Complaints regarding registered sponsors may be submitted to the National Registry of CPE Sponsors through its website: www.NASBARegistry.org \n  \nCPE Distribution and Evaluation Survey \nCPEs will be distributed via e-mail along with the event evaluation survey after the completion of the event. Attendees must be present for the full event and respond to polling questions to receive full CPE credit. \n  \nLearning Objectives \nBy the end of this course\, participants will: \n\n Understand the core concepts of Artificial Intelligence\, Machine Learning\, and Generative AI.\n Familiarize themselves with popular Generative AI platforms like ChatGPT\, Bard\, DALLE-2\, and Midjourney.\n Gain practical experience in leveraging these platforms for solving organizational challenges.\n Understand the potential challenges\, ethical considerations\, and potential misuse of Generative AI.\n Explore practical applications and future trends of Generative AI within an operational framework.\n\n  \nCourse Outcomes \nUpon completion of the course\, participants will be able to: \n\n Articulate the foundational principles of AI\, Machine Learning\, and Generative AI.\n Employ popular AI platforms to drive innovative problem-solving and operational excellence in their organizations.\n Navigate potential challenges and ethical considerations associated with the use of Generative AI.\n Apply their knowledge of Generative AI to foster innovation and future readiness in their organizational landscape.\n Stay updated on the latest advancements and future trends in Generative AI\, leveraging these for ongoing improvements and innovation.\n\n  \nCPE-Related Details \n\n Prerequisites and Advance Preparation:  None. A basic understanding of computers and technology is recommended.\n Program Knowledge Level: Basic\n Delivery Method:  Group Internet Based\n Field of Study:  Information Technology – Technical URL:https://isaca-gwdc.org/event/artificial-intelligence-and-machine-learning-seminar-fall2024/ LOCATION:Virtual Event CATEGORIES:Special Seminars ATTACH;FMTTYPE=image/png:https://isaca-gwdc.org/wp-content/uploads/2024/08/seminar_ai_machine_learning.png ORGANIZER;CN="Clifton Persaud (Certifications Program and Special Assistance Requests)":MAILTO:certifications@isaca-gwdc.org END:VEVENT BEGIN:VEVENT DTSTART;TZID=America/New_York:20241018T180000 DTEND;TZID=America/New_York:20241018T200000 DTSTAMP:20240923T170717Z CREATED:20240901T140325Z LAST-MODIFIED:20240923T170717Z UID:32810-1729274400-1729281600@isaca-gwdc.org SUMMARY:Cybersecurity Awareness Month Social DESCRIPTION:Share on X\n \n \n \n \n \n \n \n \n \n \n \n Share on Linkedin\n \n \n \n \n \n \n \n \n \n \n \n Share on Facebook\n \n \n \n \n \n \n \n \n \n \n \n Share on Print\n \n \n \n \n \n \n \n \n \n \n Share on Email\n \n \n \n \n \n \n\n \n\n\nPlease come and join ISACA GWDC as we celebrate Cybersecurity Awareness Month. Regardless of whether you are a long time practitioner\, new to cyber\, or just interested in the dynamic world of cybersecurity\, we would love to see you at Bronson Bierhall. We will provide appetizers\, and each attendee will receive a ticket for 1 free drink. No CPEs\, simply an opportunity to unwind and meet fellow members. \nThere is no charge to attend this social. However\, since space is limited in the facility\, we ask that you RSVP only if you will attend. \n \nRegistration has closed for this event\, as we have reached the capacity for this venue. \n  \nVenue Information \nBronson Bierhall (Ballston)\n4100 Fairfax Drive\nArlington\, VA 22203 \nParking Information\nThere are a number of parking garages in the area\, including the Ballston Public Parking Garage ($1 for first 3 hours). Metered street parking is also available. \nNearest Metro\nBronson Bierhall is located near the Ballston MU Metro Station serving the Orange and Silver lines. \n  \nEvent Questions and Policies \nRegistration Questions \nIf you have any registration questions about this event\, please contact the chapter using the Registration Contact Form. \nIf you have CPE questions after the event has concluded\, please contact the chapter using the CPE Contact Form. \n  \nCancellation and Refund Policy \nCancellation and refund for advance registrations is allowed if cancellations are submitted through the registration system. Refunds vary depending on the date of cancellation. See ISACA GWDC Event Policies for details. \nIf ISACA GWDC cancels the event\, all registrants will be notified as soon as possible through email at the email address provided during registration. Full refunds will be provided. \n  \nComplaint Policy \nThe GWDC welcomes your comments\, complaints\, suggestions\, questions\, and other feedback concerning our website information and services. All complaints should be submitted through the Registration Contact Form. \n  URL:https://isaca-gwdc.org/event/cybersecurity-awareness-month-social-2024/ LOCATION:Bronson Bierhall\, 4100 Fairfax Drive\, Arlington\, 22203\, United States CATEGORIES:Social Events ATTACH;FMTTYPE=image/png:https://isaca-gwdc.org/wp-content/uploads/2024/09/social-cybersecurity-awareness.png ORGANIZER;CN="Mike Howard":MAILTO:itadmin2@isaca-gwdc.org END:VEVENT BEGIN:VEVENT DTSTART;TZID=America/New_York:20241009T083000 DTEND;TZID=America/New_York:20241011T163000 DTSTAMP:20240918T195921Z CREATED:20240817T180801Z LAST-MODIFIED:20240918T195921Z UID:32639-1728462600-1728664200@isaca-gwdc.org SUMMARY:Certified Information Security Manager® (CISM®) Review Course DESCRIPTION:Share on X\n \n \n \n \n \n \n \n \n \n \n \n Share on Linkedin\n \n \n \n \n \n \n \n \n \n \n \n Share on Facebook\n \n \n \n \n \n \n \n \n \n \n \n Share on Print\n \n \n \n \n \n \n \n \n \n \n Share on Email\n \n \n \n \n \n \n\n \n\n\nThe GWDC is sponsoring an intensive 3-day virtual review course for the Certified Information Security Manager® (CISM) Exam. The CISM® review course will provide practical advice on preparing for the CISM exam and specific instruction regarding the job practice areas addressed by CISM as defined by ISACA® Global. The dates of this course are October 9 – 11\, 2024 from 8:30 am to 4:30pm Eastern. \nThis event is ideal for professionals planning to sit for the CISM exam. Attendees are encouraged to prepare in advance to maximize the benefits of the course. \n \nRegistration closes on October 8 @ 3 pm. \nRegister Today! \n  \n\nRe-Take Discount \nStudents who take this GWDC review class and do not pass the corresponding Exam are eligible for a one-time 50% discount on the next review class offered by the GWDC for the exam. Please read the chapter event policy for discount details. \n\n  \nAgenda \n\nDay 1 \n\n\nModule 1 – Information Security Governance \nModule 2 – Information Security Risk Management \n\n\nDay 2 \n\n\nModule 3 – Information Security Program \nModule 4 – Incident Management \n\n\nDay 3 \n\n\nModule 5 – Exam Preparation Strategies \n\n  \nCourse Materials and Exam Resources \nMaterials Provided During the Course \nParticipants receive a Study Guide to help them prepare for the CISM exam. The Study Guide contains a presentation\, a case study\, and 20 quiz questions for each domain in the official CISM Review Manual. The Study Guide contains additional material such as suggested study approach\, exam taking tips\, list of “must know” vocabulary terms\, and other suggested readings to aid participants in their exam preparation. \n  \nStudy Materials \nThe instructor highly recommends that students purchase the CISM Review Manual and the CISM Review Questions\, Answers\, and Explanations Database – 12 Month. Below are the study materials available for purchase from the ISACA Bookstore: \n\n CISM Review Manual\n CISM Review Questions\, Answers & Explanations Manual\n CISM Review Questions\, Answers & Explanation Database – 12 month subscription\n\n**It is highly recommended to order these at the earliest opportunity to avoid any possible delays in their availability for the start of the program. \n  \nAdditional Study Resources \nCandidates should review the Exam Candidate Guide and other resources on the ISACA CISM page as part of their study program.  \n  \nInstructor \n\n \n\n\nJim Wiggins\nCISSP\, ISSEP\, CISM\, CISA\, CRISC\, CDPSE\, CGRC\, CySA+\, SCNA\, SCNP\, IAM\, IEM\, SSCP\, CEH\, ECSA\, CHFI\, LPT\, TICSA\, CIWSA\, Security+\, and MCSE: Security and FITSP-M \nJim has over 28 years of direct experience in the design\, operation\, management\, and auditing of information technology systems\, with the past 23 years focused on information systems security. He has an extensive background in technical education and specializes in security certification courses aimed at federal and government contracting clients. \nToday\, Jim is the Founder and Principal of Securible\, LLC. Securible is an information security service provider offering cyber training programs to organizations of all sizes. At Securible\, Jim has taught IT security certification courses such as CISSP\, CISM\, CISA\, Ethical Hacking\, RMF\, Security+\, and other courses requested by Securible’s clients. Currently\, he provides education and training support for the National Risk Management Center (NRMC) at the Cybersecurity and Infrastructure Security Agency (CISA) within the Department of Homeland Security (DHS). More information on Securible can be found at: http://www.securible.com. \nJim is also the Founder and Chief Executive Officer (CEO) of the Federal IT Security Institute (FITSI). FITSI is a 501(c)(6) non-profit certification body accredited by the ANSI National Accreditation Board (ANAB) under ISO 17024:2012. FITSI offers a role-based IT security certification program targeted at the federal workforce. More information on FITSI can be found at: http://www.fitsi.org. \nAdditionally\, Jim is the Founder and Executive Director of the FITSI Foundation. The FITSI Foundation is a 501(c)(3) public charity that focuses on cyber education and serves as the philanthropic sister organization of the Federal IT Security Institute. The FITSI Foundation operates the Wounded Warrior Cyber Combat Academy (W2CCA). More information on the FITSI Foundation can be found at: https://www.fitsifoundation.org. \nIn 2020\, Jim launched a TV show on cybersecurity called “Cybersecurity Today\,” which can be viewed in the Washington\, DC area. Episodes can also be streamed online at the following website: http://www.cybersecuritytoday.org. \nIn 2019\, FCW named Jim to the “Federal 100” for his tireless efforts to promote cybersecurity education across all branches of the federal government. \nIn 2011\, the Federal Information Systems Security Educators’ Association (FISSEA) named him “Educator of the Year” for the impact he continues to make on the federal workforce. \nJim holds the following IA/IT security certifications: CISSP\, ISSEP\, CISM\, CISA\, CRISC\, CDPSE\, CGRC\, CySA+\, SCNA\, SCNP\, IAM\, IEM\, SSCP\, CEH\, ECSA\, CHFI\, LPT\, TICSA\, CIWSA\, Security+\, and MCSE: Security and FITSP-M. \n\n  \nMore Information on CISM \n \nRegistration for the CISM exam is administered by ISACA®\, not the GWDC. Registering for this review course does not register you for the exam. \n» Details on CISM and Exam Registration \n  \nVirtual Meeting Information \n\n This event will be presented online through Microsoft Teams.  \n The instructor will email students prior to the event with instructions and additional information. \n\n  \nEvent Questions and Policies \nRegistration Questions \nIf you have any registration questions about this event\, please contact the chapter using the Registration Contact Form. \nIf you have CPE questions after the event has concluded\, please contact the chapter using the CPE Contact Form. \n  \nCancellation and Refund Policy \nCancellation and refund for advance registrations is allowed if cancellations are submitted through the registration system. Refunds vary depending on the date of cancellation. See ISACA GWDC Event Policies for details. \nIf ISACA GWDC cancels the event\, all registrants will be notified as soon as possible through email at the email address provided during registration. Full refunds will be provided. \n  \nComplaint Policy \nThe GWDC welcomes your comments\, complaints\, suggestions\, questions\, and other feedback concerning our website information and services. All complaints should be submitted through the Registration Contact Form. \n  \nCPE Information \nEarn up to 21 Continuing Professional Education (CPE) credit in the area of Information Technology. The ISACA® Greater Washington\, D.C. Chapter is registered with the National Association of State Boards of Accountancy (NASBA) as a sponsor of continuing professional education on the National Registry of CPE Sponsors. State boards of accountancy have final authority on the acceptance of individual courses for CPE credit. Complaints regarding registered sponsors may be submitted to the National Registry of CPE Sponsors through its website: www.NASBARegistry.org \n  \nCPE Distribution and Evaluation Survey \nCPEs will be distributed via e-mail along with the event evaluation survey after the completion of the event. Attendees must be present for the full event and respond to polling questions to receive full CPE credit. \n  \nCPE-Related Details \n\n Learning Objective: After completing the course\, students will be prepared to sit for the CISM exam.\n Prerequisites and Advance Preparation: Students are expected to have prepared for the exam prior to attending the course.\n Program Knowledge Level: Basic\n Delivery Method:  Group Internet Based\n Field of Study:  Information Technology – Technical URL:https://isaca-gwdc.org/event/cism-review-course-fall2024/ LOCATION:Virtual Event CATEGORIES:Review Courses ATTACH;FMTTYPE=image/png:https://isaca-gwdc.org/wp-content/uploads/2024/08/review_course_cism-1.png ORGANIZER;CN="Clifton Persaud (Certifications Program and Special Assistance Requests)":MAILTO:certifications@isaca-gwdc.org END:VEVENT BEGIN:VEVENT DTSTART;TZID=America/New_York:20241004T083000 DTEND;TZID=America/New_York:20241004T140000 DTSTAMP:20240918T195912Z CREATED:20240831T132741Z LAST-MODIFIED:20240918T195912Z UID:32756-1728030600-1728050400@isaca-gwdc.org SUMMARY:PowerShell® Workshop: Basics DESCRIPTION:Share on X\n \n \n \n \n \n \n \n \n \n \n \n Share on Linkedin\n \n \n \n \n \n \n \n \n \n \n \n Share on Facebook\n \n \n \n \n \n \n \n \n \n \n \n Share on Print\n \n \n \n \n \n \n \n \n \n \n Share on Email\n \n \n \n \n \n \n\n \n\n\nAuditors and IT professionals work with large amounts of data\, requiring the need for a variety of tools to help them obtain\, review\, analyze\, and/or export this data. One of the most versatile (and free) tools for working with data is PowerShell®\, which is included with the Windows OS. While designed as a systems administration tool\, it also has powerful capabilities that auditors and IT professionals can use to greatly improve project outcomes and efficiency.  \nThis one-day hands-on virtual workshop is designed for students who want to learn how to use PowerShell in performing audits or data analysis projects. The core skills in working with PowerShell to analyze data are learning how to load data into PowerShell\, reformat/analyze it\, and export it to one or more files. This workshop covers these core skills through lessons and hands-on exercises. PowerShell\, while designed for systems administrators to automate their administration duties\, has data handling and analysis capabilities that auditors and IT professionals can use in accomplishing their projects. \nThis workshop is an excellent opportunity for those who are new to PowerShell to learn about this powerful tool. It’s also a great opportunity for those familiar with PowerShell to refresh and practice their skills. \n \nRegistration closes on October 3\, 2024 @ 8pm. \nRegister Today! \n  \nAgenda \n\n Course Introduction\n Basics of using PowerShell commands\n Commands to import data from various sources\, including:\n\n\n CSV Files\n Text Files\n XML Files\n Windows Logs\n Active Directory\n Websites\n\n\n Hands-on exercises to practice importing data.\n Commands to reformat and analyze data\, including:\n\n\n Preparing tables to export data in different layouts (e.g.\, reordering fields from a dataset)\n Changing the presentation of dates (e.g.\, changing date formats\, number formats)\n Comparing two datasets\n Summarizing data\n\n\n Hands-on exercises to practice reformatting and analyzing data.\n Commands to export data into:\n\n\n CSV Files\n Text Files\n\n\n Hands-on exercises to practice exporting data.\n PowerShell resources and recap\n\n  \nAdditional Course Details \nHands-on Lab Exercises \nEach student will be provided access to a Windows Server to use during the course. The server will be hosted on the Azure Lab Services platform. \nThe server will be accessed using Windows Remote Desktop. Therefore\, on the course dates\, students will need to use a Windows-based computer that permits use of the Remote Desktop protocol. \nAn email will be sent to each student this evening with instructions on accessing the virtual server. Students are encouraged to register and follow the instructions to access the virtual server prior to the start of the seminar. \nEach lesson in the course has practice commands to use during the lesson and practice exercise to reinforce lesson concepts.  All lesson materials will be pre-loaded onto each student’s virtual server. \n  \nMaterials Provided During the Seminar \nEach student attending the seminar will be provided: \n\n Presentation materials\n PowerShell scripts for each lesson\n Access to the virtual server for up to 10 hours after the course ends for additional practice\n Link to the seminar recording\, good for 30 days after the seminar\n\n  \nInstructor \n\n \n\n\nMike Howard\nCISA\, MBA \nMike Howard is an experienced IT auditor with over 29 years of IT auditing experience in the Federal Government. Mike is a technical auditor who has audited numerous technologies\, including mainframes\, Unix environments\, Active Directory\, databases\, Cisco devices\, and Windows computers. Mike embraces innovative technologies to accomplish his audits\, most notably using PowerShell to write custom scripts. Over the 10+ years that he has been using PowerShell\, he’s written over 300 PowerShell scripts. \nMike is also a member of the ISACA Greater Washington D.C. chapter and has served on the board for 17+ years\, most of the time as Internet/Communications Director. Mike is currently the Associate Director for Web Development\, where he manages the chapter’s website. Mike has also used PowerShell to accomplish tasks related to his Chapter duties\, including creating web pages\, calculating CPE credits\, and updating membership rosters. \nMike has a B.S. in Accounting from Old Dominion University and a Masters in Business Administration from George Mason University. \n\n  \nVirtual Meeting Information \n\n This event will be presented through Zoom.  The instructor will send an email with the zoom link prior to the event.\n Prior to the event\, participants must install the Zoom app on their respective devices. Participants using the web-based Zoom or calling via the phone may not be entitled to CPE credits.\n Participants must respond to all the poll questions via the Zoom polling feature or chat log in order to receive NASBA CPE credits.\n The ISACA Greater Washington\, D.C. Chapter will not be responsible for the participant’s inability to respond to the polls.\n\n  \nEvent Questions and Policies \nRegistration Questions \nIf you have any registration questions about this event\, please contact the chapter using the Registration Contact Form. \nIf you have CPE questions after the event has concluded\, please contact the chapter using the CPE Contact Form. \n  \nCancellation and Refund Policy \nCancellation and refund for advance registrations is allowed if cancellations are submitted through the registration system. Refunds vary depending on the date of cancellation. See ISACA GWDC Event Policies for details. \nIf ISACA GWDC cancels the event\, all registrants will be notified as soon as possible through email at the email address provided during registration. Full refunds will be provided. \n  \nComplaint Policy \nThe GWDC welcomes your comments\, complaints\, suggestions\, questions\, and other feedback concerning our website information and services. All complaints should be submitted through the Registration Contact Form. \n  \nCPE Information \nEarn up to 6 Continuing Professional Education (CPE) credit in the area of Information Technology. The ISACA® Greater Washington\, D.C. Chapter is registered with the National Association of State Boards of Accountancy (NASBA) as a sponsor of continuing professional education on the National Registry of CPE Sponsors. State boards of accountancy have final authority on the acceptance of individual courses for CPE credit. Complaints regarding registered sponsors may be submitted to the National Registry of CPE Sponsors through its website: www.NASBARegistry.org \n  \nCPE Distribution and Evaluation Survey \nCPEs will be distributed via e-mail along with the event evaluation survey after the completion of the event. Attendees must be present for the full event to receive full CPE credit. \n  \nLearning Objectives \nAfter completing this course\, students will have skills to use PowerShell in the performance of their audits and projects. Specifically\, students will be able to: \n\n Import data from several types of data sources into PowerShell.\n Analyze data in PowerShell through comparing data and summarizing it.\n Reorder data and change its format.\n Export data into CSV and Text files.\n Create a basic PowerShell script to import\, analyze\, and export data.\n\n  \nCPE-Related Details \n\n Prerequisites: Students should be familiar with using Windows and using CSV files. Basic familiarity with PowerShell or other programming languages is beneficial.\n Advance Preparation:The instructor will provide materials in advance of the course. The instructor will also provide credentials to access a virtual server several days in advance of the course. Students should log onto the server and share any issues with the instructor in advance of the course.\n Program Knowledge Level: Basic\n Delivery Method:  Group Internet Based\n Field of Study:  Information Technology – Technical URL:https://isaca-gwdc.org/event/powershell-workshop-basics-fall-2024/ LOCATION:Virtual Event CATEGORIES:Special Seminars ATTACH;FMTTYPE=image/png:https://isaca-gwdc.org/wp-content/uploads/2024/08/seminar-ps-workshop-basics.png ORGANIZER;CN="Clifton Persaud (Certifications Program and Special Assistance Requests)":MAILTO:certifications@isaca-gwdc.org END:VEVENT BEGIN:VEVENT DTSTART;TZID=America/New_York:20241001T083000 DTEND;TZID=America/New_York:20241003T170000 DTSTAMP:20240918T195902Z CREATED:20240817T155639Z LAST-MODIFIED:20240918T195902Z UID:32630-1727771400-1727974800@isaca-gwdc.org SUMMARY:Certificate of Cloud Auditing Knowledge (CCAK™) Review Course DESCRIPTION:Share on X\n \n \n \n \n \n \n \n \n \n \n \n Share on Linkedin\n \n \n \n \n \n \n \n \n \n \n \n Share on Facebook\n \n \n \n \n \n \n \n \n \n \n \n Share on Print\n \n \n \n \n \n \n \n \n \n \n Share on Email\n \n \n \n \n \n \n\n \n\n \nThe GWDC will be hosting three-day virtual course for the Certificate of Cloud Auditing Knowledge (CCAK™) on October 1 – 3 from 8:30 am to 5:00 PM. \nThe CCAK course is designed to cover the following five core areas of focus: Cloud governance\, Cloud compliance\, Cloud auditing\, Cloud assurance\, and CSA tools. The course will provide knowledge on cloud security assessment methods and techniques\, and will assist students in updating their expertise in cloud and hybrid security auditing. CCAK is a joint project by Cloud Security Alliance® and ISACA®. The CCAK is the first credential available for industry professionals to demonstrate their expertise in the essential principles of auditing cloud computing systems. The CCAK credential and training program fills the gap in the market for technical education for cloud IT auditing. \nThis event is intended for anyone sitting for the CCAK Exam. Students are expected to have prepared for the exam prior to attending the course. \n \nRegistration closes on September 30 @ 3pm. \nRegister Today! \n  \n\nRe-Take Discount \nStudents who take this GWDC review class and do not pass the corresponding Exam are eligible for a one-time 50% discount on the next review class offered by the GWDC for the exam. Please read the chapter event policy for discount details. \n\n  \nCourse Modules \n\nModule 1 \n\n\nCloud Governance \n\nOverview of governance\nCloud assurance\nCloud governance frameworks\nCloud risk management\nCloud governance tools\n\n\n\nModule 2 \n\n\nCloud Compliance Program \n\nDesigning a cloud compliance program\nBuilding a cloud compliance program\nLegal and regulatory requirements\nStandards and security frameworks\nIdentifying controls and measuring effectiveness\nCSA certification\, attestation and validation\n\n\n\nModule 3 \n\n\nCCM and CAIQ Goals\, Objectives and Structure \n\nCCM\nCAIQ\nRelationship to standards: mappings and gap analysis\nTransition from CCM V3.0.1 to CCM V4\n\n\n\nModule 4 \n\n\nA Threat Analysis Methodology for Cloud Using CCM \n\nDefinitions and purpose\nAttack details and impacts\nMitigating controls and metrics\nUse case\n\n\n\nModule 5 \n\n\nEvaluating a Cloud Compliance Program \n\nEvaluation approach\nA governance perspective\nLegal\, regulatory and standards perspectives\nRisk perspectives\nServices changes implications\nThe need for continuous assurance/continuous compliance\n\n\n\nModule 6 \n\n\nCloud Auditing \n\nAudit characteristics\, criteria & principles\nAuditing standards for cloud computing\nAuditing an on-premises environment vs. cloud\nDifferences in assessing cloud services and cloud delivery models\nCloud audit building\, planning and execution\n\n\n\nModule 7 \n\n\nCCM: Auditing Controls \n\nCCM audit scoping guidance\nCCM risk evaluation guide\nCCM audit workbook\nCCM an auditing example\n\n\n\nModule 8 \n\n\nContinuous Assurance and Compliance \n\nDevOps and DevSecOps\nAuditing CI/CD pipelines\nDevSecOps automation and maturity\n\n\n\nModule 9 \n\n\nSTAR Program \n\nStandard for security and privacy\nOpen Certification Framework\nSTAR Registry\nSTAR Level 1\nSTAR Level 2\nSTAR Level 3\n\n\n  \nInstructor \n\n \n\n\nSushila Nair\nCISSP\, GIAC GSTRT\, GSNA GDSA\, CISA\, CISM\, CRISC\, CDPSE\, CCSK\, CCAK \nSushila Nair is the CEO of Cybernetic LLC and former Vice President of Capgemini’s North American Cybersecurity practice\, where she played a crucial role in driving secure digital transformation on a global scale. With over 30 years of experience in computing infrastructure\, business\, and security risk analysis\, Sushila has established herself as a leading authority in the cybersecurity domain. Her career highlights include serving as Vice President responsible for global security offers at NTT DATA Services\, a decade of leading her own IT and cybersecurity company across major UK cities\, and serving as a Chief Information Security Officer (CISO) and trusted advisor to boards\, where she honed her expertise in protecting organizations from evolving digital threats. Recognized through the top cybersecurity leader award by Security Magazine\, Sushila’s influence in the industry is undeniable. \nAn esteemed thought leader\, Sushila has shared her insights on prestigious platforms such as RSA Conference and ISACA’s global events. Her active participation in ISACA’s global emerging trends working group and her leadership as President of ISACA’s Greater Washington\, D.C. Chapter underscore her dedication to advancing the field of cybersecurity. In 2024\, her commitment to nurturing the next generation of cybersecurity professionals and promoting diversity in the industry was honored with the prestigious ISACA Technology for Humanity Award. \n \n\n  \nCCAK Information and Resources \n  \n \nThe CCAK exam will be offered via Computer-Based Testing (CBT). \nRegistration for the CCAK exam is administered by ISACA®\, not the GWDC. Registering for this review course does not register you for the exam. \n» Details on CCAK and Exam Registration \n  \nCCAK Exam Preparation \nStudents who wish to take the exam should purchase the exam study guide here. The Q&A database is purchased here and is helpful for the exam revision. \n  \nVirtual Meeting Information \n\nGroup Internet-Based. Zoom link delivered with registration.\nPrior to the event\, participants must install the Zoom app on their respective devices. Participants using the web-based Zoom or calling via the phone may not be entitled to CPE credits.\nParticipants must respond to all the poll questions via the Zoom polling feature or chat log in order to receive NASBA CPE credits.\nISACA Greater Washington\, D.C. will not be responsible for the participant’s inability to respond to the polls.\n\n  \nEvent Questions and Policies \nRegistration Questions \nIf you have any registration questions about this event\, please contact the chapter using the Registration Contact Form. \nIf you have CPE questions after the event has concluded\, please contact the chapter using the CPE Contact Form. \n  \nCancellation and Refund Policy \nCancellation and refund for advance registrations is allowed if cancellations are submitted through the registration system. Refunds vary depending on the date of cancellation. See ISACA GWDC Event Policies for details. \nIf ISACA GWDC cancels the event\, all registrants will be notified as soon as possible through email at the email address provided during registration. Full refunds will be provided. \n  \nComplaint Policy \nThe GWDC welcomes your comments\, complaints\, suggestions\, questions\, and other feedback concerning our website information and services. All complaints should be submitted through the Registration Contact Form. \n  \nCPE Information \nEarn up to 21 Continuing Professional Education (CPE) credit in the area of Information Technology. The ISACA® Greater Washington\, D.C. Chapter is registered with the National Association of State Boards of Accountancy (NASBA) as a sponsor of continuing professional education on the National Registry of CPE Sponsors. State boards of accountancy have final authority on the acceptance of individual courses for CPE credit. Complaints regarding registered sponsors may be submitted to the National Registry of CPE Sponsors through its website: www.NASBARegistry.org \n  \nCPE Distribution and Evaluation Survey \nCPEs will be distributed via e-mail along with the event evaluation survey after the completion of the event. Attendees must be present for the full event to receive full CPE credit. \n  \nLearning Objectives \n\nDemonstrate key concepts of cloud governance and the role of assurance\, transparency and accountability in the cloud.\nExplain cloud risk management and the application of cloud governance tools.\nDevise the designing\, building and evaluating of a cloud compliance program based on laws\, regulations and regulatory standards.\nApply control objectives\, technical and process controls\, security metrics and relate them to cloud control frameworks\, certification\, attestation and authorisations.\nDefine and illustrate how to use the CSA Cloud Control Matrix and the CSA Top Threat Analysis Methodology.\nBuild and execute an audit plan that addresses cloud concerns by utilising the Cloud Control Matrix.\nDiscuss the impact of continuous assurance and auditing\, cloud automation\, native development and integration models on auditing and compliance .\nDescribe the role of the CSA STAR Program.\n\n  \nCPE-Related Details \n\nPrerequisites and Advance Preparation: Students are expected to have prepared for the exam prior to attending the course.\nProgram Knowledge Level: Basic\nDelivery Method:  Group Internet Based\nField of Study:  Information Technology – Technical URL:https://isaca-gwdc.org/event/ccak-review-course-2024/ LOCATION:Virtual Event CATEGORIES:Review Courses ATTACH;FMTTYPE=image/png:https://isaca-gwdc.org/wp-content/uploads/2024/08/review_course_ccak-1.png ORGANIZER;CN="Clifton Persaud (Certifications Program and Special Assistance Requests)":MAILTO:certifications@isaca-gwdc.org END:VEVENT BEGIN:VEVENT DTSTART;TZID=America/New_York:20240926T083000 DTEND;TZID=America/New_York:20240926T123000 DTSTAMP:20240918T194444Z CREATED:20240814T162056Z LAST-MODIFIED:20240918T194444Z UID:32598-1727339400-1727353800@isaca-gwdc.org SUMMARY:Cloud Security Conference DESCRIPTION:Share on X\n \n \n \n \n \n \n \n \n \n \n \n Share on Linkedin\n \n \n \n \n \n \n \n \n \n \n \n Share on Facebook\n \n \n \n \n \n \n \n \n \n \n \n Share on Print\n \n \n \n \n \n \n \n \n \n \n Share on Email\n \n \n \n \n \n \n\n \n\n\nIn a world where over 80% of organizational resources are now hosted in the cloud and more than 90% of internet traffic is API-based\, understanding and mitigating cybersecurity risks has never been more crucial. This virtual conference is tailored for cybersecurity professionals\, auditors\, and IT leaders who need to stay ahead of evolving threats and ensure robust security for their cloud environments. \nJoin us for an enlightening day of expert insights\, practical tips\, and actionable strategies that will empower you to enhance your cloud security posture. Our lineup of distinguished speakers will guide you through the complexities of continuous compliance\, API security\, and the latest cloud security trends. \nIT professionals\, IT advisory or audit professionals\, business executives\, students or professionals interested in learning more about cloud security should attend this event. \n \nRegistration closes on September 25\, 2024 @ 2 pm.  \nRegister Today! \n  \nAgenda \n\n\n08:30 AM – 09:30 AM \n\n\nFire Side Chat: Clear the Clouds: Threats and Risk Mitigation on Cloud Computing \nPresenters: Jose Torres (ACFE DC\, Guidehouse)\, Prem Mishra\, and David Hinchman (GAO) \nLearning Objectives for this session: \n\n Recognize challenges organizations face in implementing cloud security practices and recommendations to remediate their risks \n Understand leading practices and standards for effective and efficient cloud security. \n Learn the importance of people\, process\, and technology in having a secure cloud environment.\n\n\n\n\n09:30 AM – 10:30 AM \n\n\nContinuous Compliance (cATO) with ML and OSCAL \nPresenter: Valinder Mangat (DRTConfidence) \nAchieving continuous compliance (cATO) requires integration with development teams\, security teams\, security tools\, authorizing officials\, and DevOps platforms. A ‘common data fabric’ is necessary to enable standardized information exchange and automate analysis. OSCAL is the data fabric that allows for standardized data exchange across all security operations and sets the foundation for achieving a continuous compliance posture. Learn how security teams can transition to a robust cATO compliance framework. \n\n\n\n10:30 AM – 11:30 AM \n\n\nProtecting Your Apps: API Security from Development to Deployment \nPresenter: Dan Barahona (APIsec University) \nAPIs are critical in modern applications but are increasingly targeted by cyberattacks. We will explore the key vulnerabilities\, including authorization\, authentication\, data exposure and business logic flaws – providing practical techniques to mitigate these risks. Attendees will learn the importance and approaches to shift-left API security with continuous\, comprehensive and automated testing. \nThrough real-world case studies\, the session highlights the impact of API breaches and offers preventive measures. We will discuss secure deployment strategies\, continuous monitoring\, and ensuring compliance with regulations like GDPR and PCI DSS. This presentation delivers actionable insights for developers to fortify their APIs against evolving threats\, ensuring robust security from development to deployment. \n\n\n\n11:30 AM – 12:30 AM \n\n\nFive Key Cloud Security Trends and Tips \nPresenter: Frank Kim (SANS) \nLearn about the top five trends that are shaping cloud security adoption: identity\, architecture\, automation\, assessment\, and detection. Hear about high profile cloud security breaches and walk away with tips and techniques for responding to these trends including free and open source tools as well as cloud provider specific services you can use to build your security capabilities. \n\n  \nPresenters \n  \n\n\n  \n\n\nJose Torres\nPresident @ Washington Metro Association of Certified Fraud Examiners\nAssociate Director @ Guidehouse’s Financial Services practice \nJose Torres is the President of the Washington Metro Association of Certified Fraud Examiners and an Associate Director at Guidehouse’s Financial Services practice. He serves organizations in optimizing their governance\, information security strategy\, risk management\, internal control programs\, and financial reporting and compliance. Jose is a Certified Public Accountant\, Certified Fraud Examiner\, and Certified Information Systems Auditor. \n\n\n\n  \n\n\nPrem Mishra \nExperienced technology and security audit leader with more than 20 years of professional experience providing technology and security assurance services in the financial and telecom industries. Extensive experience in risk management and governance\, IT auditing\, cybersecurity\, emerging technology\, including cloud and AI governance\, and policy development. Possesses a proven track record of successfully leading large\, diverse teams that deliver high value-added audit results for senior management and the Board. \n\n\n\n \n\n\nDavid Hinchman\nDirector\, Information Technology and Cybersecurity @ GAO \nDave is a Director in GAO’s Information Technology and Cybersecurity team. He oversees audits on critical infrastructure protection\, the IT and cybersecurity workforce\, cloud computing\, and the IRS’s IT modernization efforts. \nDave joined GAO in July 2002. He has led numerous reviews of federal data center optimization and cloud computing\, and was responsible for GAO’s work on the High-Risk area of Improving the Management of IT Acquisitions and Operations. Prior to joining GAO\, Dave worked as a business consultant for several private sector firms (including PricewaterhouseCoopers)\, and served as a Surface Warfare Officer in the United States Navy. \nDave earned a master’s degree in business administration from the University of Arizona. Dave earned a bachelor’s degree in anthropology from Vassar College. \nDave works in GAO’s Dallas Field Office. \n \n\n\n\n \n\n\nValinder Mangat\nChief Innovation Officer @ DRTConfidence \nValinder Mangat is the Chief Innovation Officer (CIO) at DRTConfidence Inc.\, a contributor to the Open Security Controls Assessment Language (OSCAL) standard\, and an avid technologist. As a 30-year Information Technology veteran for various Government Agencies and Fortune 100 clients\, Valinder brings diverse experience in implementing complex enterprise systems and shares a unique perspective in preparing organizations for OSCAL adoption. \n \n\n\n\n \n\n\nDan Barahona\nCo-founder @ APIsec University \nDan is the co-founder of APIsec Universtiy\, a free API security training site that quickly gained over 50\,000 students. He’s also the Head of Growth at APIsec\, an API security testing company\, and was formerly CMO and EVP Sales at Qualys\, CMO at Anomali\, and VP Business Development at ArcSight/MicroFocus. Dan was born and raised in Washington\, DC started his career in the automotive industry as a Crashworthiness Engineer before pivoting to cybersecurity for the last 20 years. \n \n\n\n\n \n\n\nFrank Kim\nFellow @ SANS Institute \nFrank Kim is a SANS Fellow where he leads the Cloud Security and Cybersecurity Leadership curricula to help shape and develop the next generation of security leaders. Previously\, he served as the organization’s CISO where he led the information risk function for the most trusted source of cybersecurity training and certification in the world. \nHe was also the CISO-in-Residence at YL Ventures where he supported cybersecurity entrepreneurs with ideation and market research\, conducted due diligence for potential investments\, and engaged in go-to-market activities of the firm’s portfolio companies. \nFrank continues to serve as an advisor to numerous security startups and authors and teaches courses on CISO leadership\, strategic planning\, DevSecOps\, and cloud security. Frank is the author and instructor of LDR512: Security Leadership Essentials for Managers\, LDR514: Security Strategic Planning\, Policy\, and Leadership\, and co-author of SEC540: Cloud Security and DevSecOps Automation. \n \n\n  \nVirtual Meeting Information \n\n This event will be presented through Zoom.\n Prior to the event\, participants must install the Zoom app on their respective devices or use the web-based Zoom. Calling via the phone may not be entitled to CPE credits.\n Participants must respond to all the poll questions via the Zoom polling feature or chat log in order to receive NASBA CPE credits.\n The ISACA Greater Washington\, D.C. Chapter will not be responsible for the participant’s inability to respond to the polls.\n\n  \nEvent Questions and Policies \nRegistration Questions \nIf you have any registration questions about this event\, please contact the chapter using the Registration Contact Form. \nIf you have CPE questions after the event has concluded\, please contact the chapter using the CPE Contact Form. \n  \nCancellation and Refund Policy \nCancellation and refund for advance registrations is allowed if cancellations are submitted through the registration system. Refunds vary depending on the date of cancellation. See ISACA GWDC Event Policies for details. \nIf ISACA GWDC cancels the event\, all registrants will be notified as soon as possible through email at the email address provided during registration. Full refunds will be provided. \n  \nComplaint Policy \nThe GWDC welcomes your comments\, complaints\, suggestions\, questions\, and other feedback concerning our website information and services. All complaints should be submitted through the Registration Contact Form. \n  \nCPE Information \nEarn up to 4 Continuing Professional Education (CPE) credit in the area of Information Technology. The ISACA® Greater Washington\, D.C. Chapter is registered with the National Association of State Boards of Accountancy (NASBA) as a sponsor of continuing professional education on the National Registry of CPE Sponsors. State boards of accountancy have final authority on the acceptance of individual courses for CPE credit. Complaints regarding registered sponsors may be submitted to the National Registry of CPE Sponsors through its website: www.NASBARegistry.org \n  \nCPE Distribution and Evaluation Survey \nCPEs will be distributed via e-mail along with the event evaluation survey after the completion of the event. Attendees must be present for the full event to receive full CPE credit. \n  \nLearning Objective \nAfter attending this event\, attendees will learn about recent topics in the cloud security space. \n  \nCPE-Related Details \n\n Prerequisites: None\n Advance Preparation: None\n Program Knowledge Level: Basic\n Delivery Method:  Group Internet Based\n Field of Study:  Information Technology – Technical URL:https://isaca-gwdc.org/event/cloud-security-conference-2024/ LOCATION:Virtual Event CATEGORIES:Conferences ATTACH;FMTTYPE=image/png:https://isaca-gwdc.org/wp-content/uploads/2024/08/cloud_security_conference.png ORGANIZER;CN="Avneet Sabharwal":MAILTO:programs@isaca-gwdc.org END:VEVENT BEGIN:VEVENT DTSTART;TZID=America/New_York:20240815T083000 DTEND;TZID=America/New_York:20240815T123000 DTSTAMP:20240911T155507Z CREATED:20240805T221256Z LAST-MODIFIED:20240911T155507Z UID:32563-1723710600-1723725000@isaca-gwdc.org SUMMARY:Summer Seminar on Cryptocurrency\, Blockchain\, and Security DESCRIPTION:Join us for an exciting virtual summer seminar event hosted by Guidehouse and the ISACA GWDC chapter. This year’s topic focuses on one of the most relevant topics of the time\, Blockchain\, Cryptocurrency\, and Security. This event brings together a lawyer\, industry experts\, and academic researchers to deliver insightful presentations on various aspects of distributed ledgers\, including its benefits\, challenges\, risks\, and legal issues. \nAll are welcome to join this free information session and bring questions for the expert speakers. If you are interested in exploring the latest trends\, strategies\, and best practices in the fundamentals of Cryptocurrency and Blockchain\, this event is for you. \nRegistration closes on August 14 @ 5 pm.  Please note\, CPE credits will not be issued for this event. \nRegister Today! \n  \nEvent Sponsor \nThe GWDC is once again pleased to partner with our Gold Sponsor Guidehouse on this summer seminar. \n \n  \n  \nAgenda \n\n\n08:30 AM – 09:30 AM \n\n\nShifts in the Concept of Trustworthy Information Systems Induced by Permissionless Blockchain \nPresenter: Shin’ichiro Matsuo (Georgetown University\, CS Department) \nBlockchain technology\, invented by Satoshi Nakamoto in 2008 through a paper without peer review\, was designed with the aim of eliminating single points of failure in ledger systems based on cryptographic timestamping technology. The objective of removing single points of failure is a critically important concept in the context of information system security. However\, even after sixteen years\, numerous security incidents\, including private key leaks and vulnerabilities in smart contracts\, have occurred\, suggesting that the original technical goals have not yet been fully achieved. This presentation will revisit the fundamental technical objectives of blockchain technology and discuss how contemporary blockchain systems have altered the structure of trust points within systems. Additionally\, it will address the new requirements needed to ensure the security and auditing of systems utilizing blockchain in the future. \n\n\n\n09:30 AM – 10:30 AM \n\n\nDigital Assets: Central Bank Digital Currency and AML Risks \nPresenter: Alma Angotti (Guidehouse) \nIn the modern financial landscape\, understanding the Central Bank issued Digital Currency and the inherent and residual Anti-Money Laundering risks and control environment is a challenge all practitioners face. In this presentation\, learn how these standards are changing globally and why Digital Assets\, and the associated risks are of great importance to the United States. \n\n\n\n10:30 AM – 11:30 AM \n\n\nThe Changing Regulatory Environment for Blockchain\, Crypto and NFTs \nPresenter: James Gatto (Sheppard Mullin) \nThis presentation will address the recent changes in the regulatory environment for Blockchain\, Crypto and NFTs and why these changes may drive greater activity in this space. Specific topics to be covered: \n\n An overview of the Blockchain\, Crypto and NFT industry and technology\n An overview of the historical regulatory environment\n The power struggle between the CFTC and SEC and how that is likely to be resolved\n How the market has turned the tables on the SEC and overview of some of the significant legal battles\n The potential impact of the upcoming election on the regulatory environment\n\n\n\n\n11:30 AM – 12:30 PM \n\n\nA Collision Course: Classical Finance and Cryptocurrency \nPresenter: Jonathan Shiery (Guidehouse) \nAs financial technology continues to evolve the traditional banking and payment domains\, cryptocurrency and blockchains come to the forefront to replace classical financial methods. Cryptocurrency and blockchain continue to gain prominence with investors and financial institutions as a device for financial activities; cryptocurrencies promote anonymity and blockchains provide transparency. This presentation will dive into the benefits of crypto and blockchain in building faster payment systems and securing legitimate banking activities while analyzing the associated regulatory\, volatility\, and cyber risks. \n\n  \nPresenters \n\n\n \n\n\nShin’Ichiro Matsuo\nResearch Professor @ Georgetown \nDr. Shin’ichiro Matsuo is a research professor specializing in cryptography and information security at Virginia Tech and Georgetown University. At Georgetown University\, he co-directs CyberSMART research center\, a National Science Foundation (NSF) Industry-University Collaborative Research Center (IUCRC)\, and leads blockchain technology and ecosystem design. He is an acting co-chair of Blockchain Governance Initiative Network (BGIN). He also co-founded the BSafe.network\, a global and neutral research test network for Blockchain technology. Previously\, he served as the head of the Japanese national body of ISO/IEC JTC1 SC27/WG2. He’s led the security standardization project of Blockchain (ISO TC307). He was a member of OECD Blockchain Expert Policy Advisory Board (BEPAB). \n \n\n\n\n \n\n\nAlma Angotti\nPartner @ Guidehouse \nAlma Angotti is a Partner\, Financial Crime\, Fraud and Investigation Services practice at Guidehouse. Ms. Angotti is a recognized expert in financial crime and economic sanctions compliance. With over 25 years of experience in regulation and enforcement\, Ms. Angotti has held senior enforcement positions at the U.S. Securities and Exchange Commission (SEC)\, U.S. Department of the Treasury’s Financial Crimes Enforcement Network (FinCEN) and FINRA (Financial Industry Regulatory Authority). In these positions\, she was responsible for investigations and enforcement of the Bank Secrecy Act\, the federal securities laws\, and FINRA rules. \nShe leads the firm’s FinTech and digital assets compliance projects\, which includes risk assessments\, compliance program builds\, independent tests\, stable coin reviews\, and oversight of BAU compliance implementation\, and fiat and on-chain look-backs. Her clients include some of the largest cryptocurrency exchanges of all types and she is on the advisory board of the Global Digital Assets and Crypto Currency Association and the Digital Dollar Project. \n \n\n\n\n \n\n\nJames Gatto\nLawyer @ Sheppard Mullin \nJames Gatto has been a leading lawyer for 35 years providing business-focused\, legal advice on all aspects of intellectual property strategy\, technology transactions\, technology-related regulatory issues\, and litigation\, especially ones driven by new business models and/or disruptive technology. For over 20 years he has focused on Artificial intelligence legal issues (e.g.\, training\, policies\, IP\, regulatory issues). He is an Adjunct Professor at Ole Miss Law School where he teaches “Legal Issues with AI.” He is a frequent author and speaker on AI. Some of his recent talks include: \n\n Invited Speaker\, Korean Copyright Office “AI and Open Source” \n Speaker\, US Copyright Office Listening Session on AI Authorship \n Speaker\, USPTO Listening Session on AI Inventorship Issues \n\nHe is an industry leader\, with prominent roles in a number of top tier legal organizations\, including:  \n\n Appointed member\, ABA-IPL AI/Machine Learning Task Force \n Co-Chair\, AI Subcommittee\, AIPLA \n Member\, Artificial Intelligence Committee\, International Technology Law Association\n\n \n\n\n \n\n\nJonathan Shiery\nPartner @ Guidehouse \nJonathan Shiery is a Partner within the Financial Services segment at Guidehouse and leads Guidehouse’s Payment Services where he advises complex financial institutions on how to accelerate their payment modernization investment returns\, reduce costs through payment operations outsourcing\, and control and mitigate operational risk throughout the payments value chain. Jonathan is currently on the Board Advisory Group of the U.S. Faster Payments Council and held a leadership role in the Federal Reserve’s Faster Payments Taskforce and as the first Regulatory Workstream Chair for the U.S. Faster Payments Council. \nMr. Shiery has two decades of experience managing transformational engagements for some of the largest global financial institutions and corporations as well mid-market and regional institutions in response to shareholder\, board\, and C-level objectives. He has advised and led engagements on over $25 billion of M&A\, Operations and Technology Modernization\, Data Management and Analytics\, Payments\, and Governance\, Risk\, and Compliance investments. \n \n\n  \nVirtual Meeting Information \n\n This event will be presented online through Zoom.  \n The zoom link will be emailed to you when you register. \n\n  \nEvent Questions and Policies \nRegistration Questions \nIf you have any registration questions about this event\, please contact the chapter using the Registration Contact Form. \nIf you have CPE questions after the event has concluded\, please contact the chapter using the CPE Contact Form. \n  \nCancellation and Refund Policy \nCancellation and refund for advance registrations is allowed if cancellations are submitted through the registration system. Refunds vary depending on the date of cancellation. See ISACA GWDC Event Policies for details. \nIf ISACA GWDC cancels the event\, all registrants will be notified as soon as possible through email at the email address provided during registration. Full refunds will be provided. \n  \nComplaint Policy \nThe GWDC welcomes your comments\, complaints\, suggestions\, questions\, and other feedback concerning our website information and services. All complaints should be submitted through the Registration Contact Form. \n  \nCPE Information \nNo CPEs will be awarded for this event. \n  URL:https://isaca-gwdc.org/event/summer-seminar-on-crypto-blockchain-security/ LOCATION:Virtual Event CATEGORIES:Conferences ATTACH;FMTTYPE=image/png:https://isaca-gwdc.org/wp-content/uploads/2024/08/summer-seminar-crypto-2024.png ORGANIZER;CN="Avneet Sabharwal":MAILTO:programs@isaca-gwdc.org END:VEVENT BEGIN:VEVENT DTSTART;TZID=America/New_York:20240718T083000 DTEND;TZID=America/New_York:20240718T123000 DTSTAMP:20240911T155507Z CREATED:20240630T151003Z LAST-MODIFIED:20240911T155507Z UID:32429-1721291400-1721305800@isaca-gwdc.org SUMMARY:Summer Seminar on Artificial Intelligence (AI) and Generative AI DESCRIPTION:Join us for an exciting virtual summer seminar event hosted by Guidehouse and the ISACA GWDC chapter. This year’s topic focuses on one of the most relevant topics of the time\, Artificial Intelligence (AI) and Generative AI. This event brings together a lawyer\, industry experts\, and government speakers to deliver insightful presentations on various aspects of AI\, including its benefits\, challenges\, risks\, and legal issues. \nAll are welcome to join this free information session and bring questions for the expert speakers. If you are interested in exploring the latest trends\, strategies\, and best practices in implementing and managing AI this is the event to attend. \nIT professionals\, managers\, auditors\, consultants\, or anyone else interested in learning more about artificial intelligence and machine learning should attend this event. \nRegistration closes on July 17 @ 5 pm.  Note\, CPE credits will not be issued for this event. \nRegister Today! \n  \nEvent Sponsor \nThe GWDC is once again pleased to partner with our Gold Sponsor Guidehouse on this summer seminar. \n \n  \n  \nAgenda \n\n\n08:30 AM – 09:30 AM \n\n\nUnderstanding and Managing Legal Risks with AI \nPresenter: James Gatto (Sheppard Mullin) \nThe benefits of AI are clear\, but the legal risks are a bit murky and rapidly evolving. Employees are using AI without understanding the potential legal ramifications of certain uses. Join us for a timely discussion on the key legal issues with AI and what companies need to do to manage the legal risks while leveraging AI. \nIn this presentation\, Jim Gatto (who has 20+ years of legal experience with AI) will clarify the key legal issues with AI\, explain business risks if not properly managed\, provide insights on likely future legal developments and provide specific recommendations on what companies must do now to manage the legal risks with company use of AI. \n\n\n\n09:30 AM – 10:30 AM \n\n\nHarnessing the Power of Generative AI in Financial Auditing \nPresenter: Bob Dunmyer (Guidehouse) \nIn the rapidly evolving financial landscape\, organizations face increasing complexity in regulatory compliance\, financial reporting\, IT risk management\, predictive analytics\, and fraud detection. Join us to learn how Generative AI can significantly streamline these organizational audit processes. \nIn this presentation\, Bob Dunmyer\, the leader of Guidehouse’s Data and AI Division\, will break down the use case of GenAI in financial auditing processes\, describe the process of implementing this robust technology\, and provide insights on how GenAI can cause a paradigm shift for financial institutions. \n\n\n\n10:30 AM – 11:30 AM \n\n\nAI’s Impact on Cybersecurity – Today\, Tomorrow\, and Beyond \nPresenter: Geoff Grogan (Guidehouse) \nAI technology is quickly evolving and becoming more and more ubiquitous in our daily lives. With it comes many benefits\, but also many risks. Learn how AI is affecting today’s cybersecurity landscape and how organizations can tackle this challenge today\, while laying a robust foundation of cyber resilience in the future. \n\n\n\n11:30 AM – 12:30 AM \n\n\nAI\, Deep Fakes\, Natural Hazard Modeling \nPresenters: Brian Bothwell (GAO) and Kevin Walsh (GAO) \nI and associated technologies are changing how we interact with the world. In this seminar\, Brian and Kevin will discuss how AI is changing forecasting\, deep fakes\, and interactions between the government and citizens. Join us as we explore the peril and the potential of AI. \n\n  \nPresenters \n\n\n \n\n\nJames Gatto\nLawyer @ Sheppard Mullin \nJames Gatto has been a leading lawyer for 35 years providing business-focused\, legal advice on all aspects of intellectual property strategy\, technology transactions\, technology-related regulatory issues\, and litigation\, especially ones driven by new business models and/or disruptive technology. For over 20 years he has focused on Artificial intelligence legal issues (e.g.\, training\, policies\, IP\, regulatory issues). He is an Adjunct Professor at Ole Miss Law School where he teaches “Legal Issues with AI.” He is a frequent author and speaker on AI. Some of his recent talks include: \n\n Invited Speaker\, Korean Copyright Office “AI and Open Source” \n Speaker\, US Copyright Office Listening Session on AI Authorship \n Speaker\, USPTO Listening Session on AI Inventorship Issues \n\nHe is an industry leader\, with prominent roles in a number of top tier legal organizations\, including:  \n\n Appointed member\, ABA-IPL AI/Machine Learning Task Force \n Co-Chair\, AI Subcommittee\, AIPLA \n Member\, Artificial Intelligence Committee\, International Technology Law Association\n\n \n\n\n\n \n\n\nBob Dunmyer\nPartner @ Guidehouse \nBob Dunmyer serves as a Partner in the Digital Solutions sector at Guidehouse\, where he spearheads the Data & AI division. His leadership is pivotal in guiding clients through their Digital Transformation journey\, leveraging GenAI and Intelligent Automation. Bob’s rapidly expanding team\, comprising data management pros\, data scientists\, and bot developers\, is dedicated to harnessing artificial intelligence and automation to tackle intricate challenges. He navigates clients through the dynamic landscape of artificial intelligence\, making certain they stay at the forefront of digital innovation. Bob’s leadership ethos is centered around creating synergies between technology and strategy\, delivering tailored solutions that catalyze significant transformations in both the Commercial and Public Sectors. \n \n\n\n\n \n\n\nGeoff Grogan\nDirector @ Guidehouse \nExperienced cybersecurity business leader with more than 15 years of professional experience providing consulting\, program management\, and risk management expertise to Department of Defense and Federal Government clients. Extensive experience in cybersecurity strategy\, governance\, and policy development\, including expertise in supply chain risk management (SCRM)\, and non-traditional IT (i.e. weapons systems\, industrial control systems). Possesses a proven track record successfully leading large\, diverse teams that deliver at a high level to senior clients in a variety of high-paced\, dynamic environments. \n \n\n\n\n \n\n\nBrian Bothwell\nDirector of Science\, Technology Assessment\, and Analytics @ U.S. Government Accountability Office (GAO) \nBrian Bothwell is a Director in GAO’s Science\, Technology Assessment\, and Analytics (STAA) team. He oversees a team of engineers and scientists who analyze engineering and technology issues. He also directs a team whose work includes assessing federal efforts to acquire and operate weapons\, satellites\, and other major technological systems on time and on budget. \nBrian joined GAO in December 2013 as a member of the Applied Research and Methods team\, where he assessed cost estimates\, schedules\, cost management systems\, and technology readiness of several federal programs. Additionally\, Brian contributed to the development of several GAO best practice guides and led the update to the “Cost Estimating and Assessment Guide.” In 2021\, he became a Director in GAO’s STAA team. Prior to joining GAO\, Brian enjoyed a 20-year career in the United States Navy and worked as a cost estimator in the private sector. \nBrian earned a master’s degree in operations research from the Naval Postgraduate School and a bachelor’s degree in chemical engineering from the University of Notre Dame. \n \n\n\n\n \n\n\nKevin Walsh\nDirector of Information Technology and Cybersecurity @ U.S. Government Accountability Office (GAO) \nKevin Walsh is a Director in GAO’s Information Technology and Cybersecurity team. He oversees work related to AI\, Census\, CIO authorities\, legacy modernizations\, and satellite and space systems. He has led reviews covering topics related to the authorities of federal Chief Information Officers\, management of legacy IT systems\, coordination of IT contracts\, and assessments of IT-related risk. \nKevin joined GAO in June 2006\, and led projects related to FITARA and GAO’s High-Risk area on Improving the Management of IT Acquisitions and Operations. \nKevin earned a master’s degree in business administration from Virginia Tech. Kevin earned a bachelor’s degree in economics from the University of Maryland\, College Park. \n \n\n  \nVirtual Meeting Information \n\n This event will be presented online through Zoom.  \n The zoom link will be emailed to you when you register. \n\n  \nEvent Questions and Policies \nRegistration Questions \nIf you have any registration questions about this event\, please contact the chapter using the Registration Contact Form. \nIf you have CPE questions after the event has concluded\, please contact the chapter using the CPE Contact Form. \n  \nCancellation and Refund Policy \nCancellation and refund for advance registrations is allowed if cancellations are submitted through the registration system. Refunds vary depending on the date of cancellation. See ISACA GWDC Event Policies for details. \nIf ISACA GWDC cancels the event\, all registrants will be notified as soon as possible through email at the email address provided during registration. Full refunds will be provided. \n  \nComplaint Policy \nThe GWDC welcomes your comments\, complaints\, suggestions\, questions\, and other feedback concerning our website information and services. All complaints should be submitted through the Registration Contact Form. \n  \nCPE Information \nNo CPEs will be awarded for this event. \n  URL:https://isaca-gwdc.org/event/summer-seminar-ai-generative-ai/ LOCATION:Virtual Event CATEGORIES:Conferences ATTACH;FMTTYPE=image/png:https://isaca-gwdc.org/wp-content/uploads/2024/06/summer-seminar-ai-2024_v2.png ORGANIZER;CN="Avneet Sabharwal":MAILTO:programs@isaca-gwdc.org END:VEVENT BEGIN:VEVENT DTSTART;TZID=America/New_York:20240627T090000 DTEND;TZID=America/New_York:20240628T160000 DTSTAMP:20240519T131218Z CREATED:20240519T131218Z LAST-MODIFIED:20240519T131218Z UID:32263-1719478800-1719590400@isaca-gwdc.org SUMMARY:Artificial Intelligence and Machine Learning Seminar DESCRIPTION:This will be a two-day virtual classroom seminar designed for those who want to understand the core concepts of Artificial Intelligence\, Machine Learning\, and Generative AI\, and become familiar with popular Generative AI platforms like ChatGPT\, Bard\, DALLE-2\, and Midjourney.  In addition\, attendees will gain practical experience in leveraging these platforms for solving organizational challenges and the ethical considerations\, and potential misuse of Generative AI. \nIT professionals\, managers\, auditors\, consultants\, or anyone else interested in learning more about artificial intelligence and machine learning should attend this seminar. \nRegistration closes on June 26 @ 3 pm. \nRegister Today! \n  \nCourse Materials\, Format\, and Schedule \nCourse Format \nThis course blends expert lectures\, interactive discussions\, and practical sessions. It fosters a collaborative learning environment and provides access to online resources for self-paced study. \n  \nCourse Schedule  \nThe course spans two days\, 7 hours each day\, inclusive of breaks. Specific scheduling will be provided closer to the course date. \n  \nCourse Materials \nParticipants will gain access to a range of course materials including online resources\, a comprehensive slide deck\, and popular AI platforms like ChatGPT\, Bard\, DALLE-2\, and Midjourney. Additional recommended readings and supplementary materials will be provided during the course. \n  \nAgenda \nDay 1 \n\n Introduction and Course Overview (30 minutes)\n\n\n Presenter Introduction\n Course Objectives and Outcomes\n Course Materials and Format\n\n\n History of Artificial Intelligence and Generative AI (1 hour)\n\n\n Evolution of Artificial Intelligence\n Development of Machine Learning and Deep Learning\n The Emergence of Generative AI: A Historical Perspective\n\n\n Overview of Common Generative AI Platforms (2 hours)\n\n\n Introduction to ChatGPT\, Bard\, DALLE-2\, and Midjourney\n Features and Unique Capabilities of Each Platform\n Break (15 minutes)\n Comparative Analysis: Strengths\, Weaknesses\, and Appropriate Use Cases for Each Platform\n\n\n Gaining Access to Platforms (1 hour)\n\n\n Procedures for Accessing AI Platforms\n Subscriptions\, Costs\, and Managing Organizational Access\n Break (30 minutes – Lunch)\n\n\n Introduction to Prompting (1 hour)\n\n\n Understanding Prompts and Their Role in Generative AI\n Constructing Effective Prompts: Best Practices\n\n\n Prompt Engineering (1.5 hours)\n\n\n Techniques for Advanced Prompt Engineering\n Hands-on Exercise: Crafting and Testing Prompts on Different Platforms\n Break (15 minutes)\n Review and Feedback on Prompt Engineering Exercise\n\n  \nDay 2 \n\n Recap of Day 1 and Overview of Day 2 (30 minutes)\n Practical Applications of Generative AI (2 hours)\n\n\n The Impact and Potential of Generative AI across Various Domains\n Real-world Use Cases and Success Stories\n Break (15 minutes)\n Exercise: Brainstorming Possible Applications in Participants’ Context\n\n\n Ethical Considerations and Risks in Generative AI (1 hour)\n\n\n Understanding the Ethical Landscape of AI\n Identifying and Mitigating Risks in Using Generative AI\n Break (30 minutes – Lunch)\n\n\n Hands-on Session: Operationalizing Generative AI (2.5 hours)\n\n\n Accessing Platforms and Setting Up for a Task\n Crafting Prompts for a Given Task\n Review and Feedback on Hands-on Exercise\n Break (15 minutes)\n\n\n Future Trends in Generative AI and Closing Remarks (1 hour)\n\n\n The Road Ahead: What to Expect from the Future of Generative AI\n Opportunities for Further Learning and Specialization\n Course Review\, Q&A\, and Feedback Session\n\n  \nInstructor \n\n \n\n\nJim Wiggins\nFounder and Principal @ Securible\, LLC\nCISSP\, ISSEP\, CISM\, CISA\, CRISC\, CySA+\, SCNA\, SCNP\, CAP\, IAM\, IEM\, SSCP\, CEH\, ECSA\, CHFI\, LPT\, TICSA\, CIWSA\, Security+\, and MCSE: Security\, FITSP-M \nJim has over 26 years of direct experience in the design\, operation\, management\, and auditing of information technology systems\, with the past 21 years focused on information systems security. He has an extensive background in technical education and specializes in security certification courses aimed at federal and government contracting clients. \nToday\, Jim is the Founder and Principal of Securible\, LLC. Securible is an information security service provider offering cyber training programs to organizations of all sizes. At Securible\, Jim has taught IT security certification courses such as CISSP\, CISM\, CISA\, Ethical Hacking\, RMF\, Security+\, and other courses requested by Securible’s clients. Currently\, he provides education and training support for the National Risk Management Center (NRMC) at the Cybersecurity and Infrastructure Security Agency (CISA) within the Department of Homeland Security (DHS ). More information on Securible can be found at: http://www.securible.com. \nJim is also the Founder and Chief Executive Officer (CEO) of the Federal IT Security Institute (FITSI). FITSI is a 501(c)(6) non-profit certification body accredited by the ANSI National Accreditation Board (ANAB) under ISO 17024:2012. FITSI offers a role-based IT security certification program targeted at the federal workforce. More information on FITSI can be found at: http://www.fitsi.org. \nAdditionally\, Jim is the Founder and Executive Director of the FITSI Foundation. The FITSI Foundation is a 501(c)(3) public charity that focuses on cyber education and serves as the philanthropic sister organization of the Federal IT Security Institute. The FITSI Foundation operates the Wounded Warrior Cyber Combat Academy (W2CCA). More information on the FITSI Foundation can be found at: https://www.fitsifoundation.org. \nIn 2020\, Jim launched a TV show on cybersecurity called “Cybersecurity Today\,” which can be viewed in the Washington\, DC area. Episodes can also be streamed online at the following website: http://www.cybersecuritytoday.org. \nIn 2019\, FCW named Jim to the “Federal 100” for his tireless efforts to promote cybersecurity education across all branches of the federal government. \nIn 2011\, the Federal Information Systems Security Educators’ Association (FISSEA) named him “Educator of the Year” for the impact he continues to make on the federal workforce. \nJim holds the following IA/IT security certifications: CISSP\, ISSEP\, CISM\, CISA\, CRISC\, CySA+\, SCNA\, SCNP\, CAP\, IAM\, IEM\, SSCP\, CEH\, ECSA\, CHFI\, LPT\, TICSA\, CIWSA\, Security+\, and MCSE: Security and FITSP-M. \n\n  \nVirtual Meeting Information \n\n This event will be presented online through Microsoft Teams.  \n The instructor will email students prior to the event with instructions and additional information. \n\n  \nEvent Questions and Policies \nRegistration Questions \nIf you have any registration questions about this event\, please contact the chapter using the Registration Contact Form. \nIf you have CPE questions after the event has concluded\, please contact the chapter using the CPE Contact Form. \n  \nCancellation and Refund Policy \nCancellation and refund for advance registrations is allowed if cancellations are submitted through the registration system. Refunds vary depending on the date of cancellation. See ISACA GWDC Event Policies for details. \nIf ISACA GWDC cancels the event\, all registrants will be notified as soon as possible through email at the email address provided during registration. Full refunds will be provided. \n  \nComplaint Policy \nThe GWDC welcomes your comments\, complaints\, suggestions\, questions\, and other feedback concerning our website information and services. All complaints should be submitted through the Registration Contact Form. \n  \nCPE Information \nEarn up to 14 Continuing Professional Education (CPE) credit in the area of Information Technology. The ISACA® Greater Washington\, D.C. Chapter is registered with the National Association of State Boards of Accountancy (NASBA) as a sponsor of continuing professional education on the National Registry of CPE Sponsors. State boards of accountancy have final authority on the acceptance of individual courses for CPE credit. Complaints regarding registered sponsors may be submitted to the National Registry of CPE Sponsors through its website: www.NASBARegistry.org \n  \nCPE Distribution and Evaluation Survey \nCPEs will be distributed via e-mail along with the event evaluation survey after the completion of the event. Attendees must be present for the full event and respond to polling questions to receive full CPE credit. \n  \nLearning Objectives \nBy the end of this course\, participants will: \n\n Understand the core concepts of Artificial Intelligence\, Machine Learning\, and Generative AI.\n Familiarize themselves with popular Generative AI platforms like ChatGPT\, Bard\, DALLE-2\, and Midjourney.\n Gain practical experience in leveraging these platforms for solving organizational challenges.\n Understand the potential challenges\, ethical considerations\, and potential misuse of Generative AI.\n Explore practical applications and future trends of Generative AI within an operational framework.\n\n  \nCourse Outcomes \nUpon completion of the course\, participants will be able to: \n\n Articulate the foundational principles of AI\, Machine Learning\, and Generative AI.\n Employ popular AI platforms to drive innovative problem-solving and operational excellence in their organizations.\n Navigate potential challenges and ethical considerations associated with the use of Generative AI.\n Apply their knowledge of Generative AI to foster innovation and future readiness in their organizational landscape.\n Stay updated on the latest advancements and future trends in Generative AI\, leveraging these for ongoing improvements and innovation.\n\n  \nCPE-Related Details \n\n Prerequisites and Advance Preparation:  None. A basic understanding of computers and technology is recommended.\n Program Knowledge Level: Basic\n Delivery Method:  Group Internet Based\n Field of Study:  Information Technology – Technical URL:https://isaca-gwdc.org/event/artificial-intelligence-and-macine-learning-seminar/ LOCATION:Virtual Event CATEGORIES:Special Seminars ATTACH;FMTTYPE=image/png:https://isaca-gwdc.org/wp-content/uploads/2024/05/ai_ml_seminar.png ORGANIZER;CN="Clifton Persaud (Certifications Program and Special Assistance Requests)":MAILTO:certifications@isaca-gwdc.org END:VEVENT BEGIN:VEVENT DTSTART;TZID=America/New_York:20240622T183000 DTEND;TZID=America/New_York:20240622T233000 DTSTAMP:20240621T134054Z CREATED:20240521T010951Z LAST-MODIFIED:20240621T134054Z UID:32271-1719081000-1719099000@isaca-gwdc.org SUMMARY:50th Anniversary Celebration DESCRIPTION:  \nThe ISACA National Capital Area Chapter was founded as the 5th ISACA chapter on June 12\, 1974.  For 50 years\, the chapter\, its Board of Directors\, and volunteers have served the ISACA Members in the DC region\, hosting events and providing services of interest to our members and the DC IT community.  Renamed the Greater Washington\, D.C. Chapter in 2017\, the chapter currently has over 4\,500 members. \nTo celebrate this milestone anniversary\, the GWDC is hosting a social event\, with a 50-year twist. \n\nCelebrate the GWDC 50th Anniversary! \nEmbark on a journey from yesteryear to today and celebrate the fashion of the ages. Adorn yourself in the iconic styles of your most-loved decade! Enjoy a sumptuous buffet and variety of exquisite drinks as part of the experience. \nSway to the rhythm of timeless tunes from the last 50 years. \nExperience the evolution of high tech\, video gaming technology and old school games\, a true blast from the past! \nGet ready for an adventure packed with excitement at our event! Immerse yourself in fun as you snap vibrant memories in our decade-themed photo booth\, overflowing with funky props that’ll transport you through time. But that’s not all – test your skills and relive the thrill of classic games at our interactive gaming stations. Get ready to make memories\, challenge yourself\, and revel in the joy of nostalgia all in one unforgettable celebration! \nJoin us in a time-traveling adventure as we commemorate ISACA GWDC’s 50th anniversary with a vibrant celebration that spans the decades! \n\n  \nThe GWDC Board of Directors has made registration for this event complimentary for each registrant and a guest.  Please register only if you plan to attend.  Attendees must be 21 years or older. \nThis event has sold out and registration has closed.  We thank our members for their support. \n  \nItinerary \n6:30pm – Registration check-in begins. Cocktail Hour until 7:30 with passed hors d’oeuvres. \n7:30pm – Doors open to 50th Anniversary Celebration. Dinner is served buffet-style. All games and activities are open. \n8:00pm – Opening remarks from the Chapter President and Anniversary activities \n8:30pm – Dance floor opens \n10:00pm – Closing remarks \n11:00pm – Celebration ends \n  \nVenue Information \nFalls Church Marriott Fairview Park\n3111 Fairview Park Drive\nFalls Church\, VA 22042 \nDress Code\nDress to your favorite decade! Whether you are a child of the 70s\, 80s\, 90s\, 2000s\, 2010s\, or beyond! \nParking Information\nComplimentary hotel parking is available. \n  \nEvent Questions and Policies \nRegistration Questions \nIf you have any registration questions about this event\, please contact the chapter using the Registration Contact Form. \nIf you have CPE questions after the event has concluded\, please contact the chapter using the CPE Contact Form. \n  \nCancellation and Refund Policy \nCancellation and refund for advance registrations is allowed if cancellations are submitted through the registration system. Refunds vary depending on the date of cancellation. See ISACA GWDC Event Policies for details. \nIf ISACA GWDC cancels the event\, all registrants will be notified as soon as possible through email at the email address provided during registration. Full refunds will be provided. \n  \nComplaint Policy \nThe GWDC welcomes your comments\, complaints\, suggestions\, questions\, and other feedback concerning our website information and services. All complaints should be submitted through the Registration Contact Form. URL:https://isaca-gwdc.org/event/50th-anniversary-celebration/ LOCATION:Falls Church Marriott Fairview Park\, 3111 Fairview Park Drive\, Falls Church\, 22042\, United States CATEGORIES:Social Events ATTACH;FMTTYPE=image/png:https://isaca-gwdc.org/wp-content/uploads/2024/05/50th-Anniversary-Celebration-Graphic-DRAFT.png ORGANIZER;CN="Jermaine Stanley - ISACA GWDC":MAILTO:outreach@isaca-gwdc.org END:VEVENT BEGIN:VEVENT DTSTART;TZID=America/New_York:20240612T160000 DTEND;TZID=America/New_York:20240612T170000 DTSTAMP:20240523T102758Z CREATED:20240522T103252Z LAST-MODIFIED:20240523T102758Z UID:32339-1718208000-1718211600@isaca-gwdc.org SUMMARY:2024 Annual General Meeting of the Chapter Membership DESCRIPTION:The ISACA® GWDC Annual General Meeting (AGM) is the Board of Directors’ annual meeting with the GWDC membership. During this year’s AGM\, the Board will provide a year in review for the chapter\, install newly elected Officers for the next two-year term\, and present the annual Chapter Awards. \nThis virtual meeting will occur after the Annual Meeting Conference on a separate Zoom.  All current GWDC members are invited to attend.  Registration is required. \nRegistration closes on June 12\, 2024 @ 3pm.  \nRegister Today! \n  \nVirtual Meeting Information \n\nThis event will be presented through Zoom.\nPrior to the event\, participants must install the Zoom app on their respective devices or use the web-based Zoom. Calling via the phone may not be entitled to CPE credits.\n\n  \nEvent Questions and Policies \nRegistration Questions \nIf you have any registration questions about this event\, please contact the chapter using the Registration Contact Form. \nIf you have CPE questions after the event has concluded\, please contact the chapter using the CPE Contact Form. \n  \nComplaint Policy \nThe GWDC welcomes your comments\, complaints\, suggestions\, questions\, and other feedback concerning our website information and services. All complaints should be submitted through the Registration Contact Form. URL:https://isaca-gwdc.org/event/agm2024/ LOCATION:Virtual Event CATEGORIES:Annual Meeting ATTACH;FMTTYPE=image/png:https://isaca-gwdc.org/wp-content/uploads/2024/05/agm_2024_2.png ORGANIZER;CN="Yehuda Schmidt (Annual Meeting Questions)":MAILTO:programs@isaca-gwdc.org END:VEVENT END:VCALENDAR