Program and Workshops
Program and Registration Brochure [pdf]
Final Program
Sunday 6th September
|
5.00pm
|
Registrations Open
|
|
5:30pm
7:00pm
|
Welcome Reception
|
Monday 7th September Governance Challenges
|
08:45am
09:00am
|
Welcome and Conference Opening
Scott Waters, President, ISACA Canberra Chapter
|
|
09:00am
10:00am
|
Is world class IT governance in the public sector an impossible dream?
Sir Peter Gershon (by video conference)
|
|
10:00am
11:00am
|
Governance frameworks and methods in practice – implementation at the ICT battlefront
John Howarth
Tanner James
|
|
11.00
11:30am
|
MORNING TEA
|
|
11:30am
-
12:30pm
|
Securing an e-driven business
Alistair MacGibbon
eBay/PayPal
|
|
12:30pm
-
1:30pm
|
LUNCH
|
|
1:30pm
3:30pm
|
M1
|
M2
|
M3
|
|
ValIT workshop: update and practical aspects of implementation and
overview of case studies
Peter Harrison (IBM)
|
Event monitoring and correlation of business data and log files
Kevin Manderson (Hydro Tasmania)
|
Ken Day
(Independent Security Consultant)
|
|
IEC/ISO 38500: How to effectively implement top level agency
governance of IT so that AS8015 is satisfied
Mark Toomey (Infonomics Pty Ltd)
|
Developing an eagle eye view – continuous assurance in complex environments
Mario Bojilov, Brisbane City Council
|
Information protection beyond controlled boundaries
Paul Conroy (Microsoft)
|
|
3:30pm
4:00pm
|
AFTERNOON TEA
|
|
4:00pm
5.30pm
|
M4
|
M5
|
M6
|
|
Organisational COBIT maturity assessments – 3 case studies
Mark Hopkins (LucidIT)
|
Case study - achieving effective web application input validation
Drew Ames (CQR Consulting)
|
IBM Tivoli compliance insight manager
Matthew Prince (IBM)
|
|
IT governance vs IT management: how can this be differentiated
Governance Panel Discussion
|
The audit committee view of IT audit
Michael Harris
|
A weather forecast from the Internet Storm Centre
Mark Hofman (SANS)
|
Tuesday 8th September
|
08:55am
09:00am
|
Precise of Day 1 and Welcome to Day 2
Salam Saffarini, Vice President, ISACA Canberra Chapter
|
|
09:00am
10:00am
|
The 2009 Verizon Data Breach Investigations Report
Marcus Sachs
Director SANS Incident Storm Centre & Executive Director of Government Affairs for National Security Policy, Verizon Business, Washington, USA
|
|
10:00am
11:00am
|
ISACA’s strategy going forward
Tony Hayes
Deputy Chief Executive, Queensland Public Service Commission, Chair ISACA IT governance committee
|
|
11.00
11:30am
|
MORNING TEA
|
|
11:30am
-
12:30pm
|
From IT governance to enterprise governance of IT: a journey for creating business value out of IT
Prof. Dr. Wim van Grembergen
Information Systems Management, University of Antwerp Management School (UAMS), IT Alignment and Governance Research Institute (ITAG) Belgium
|
|
12:30pm
-
1:30pm
|
LUNCH
|
|
1:30pm
3:30pm
|
T1
|
T2
|
T3
|
|
ISACAs business model for information security
Jo Stewart-Rattray (RSM Bird Cameron)
|
What is the future of IT audit?
Assurance Panel Discussion
|
Containing the monster – Manageable virtualisation from the desktop through to the cloud
Stephen MacDonald (Checkpoint)
|
|
Learning to improve- the essential ingredients
Alec Dorling (SPICE)
|
Training IT auditors
Michael Matthew (Matthew and Matthew)
|
Fireproofing the ICT shop: The guide to the viability of ICT shops in the South Australian Government
Rob Hanson (SA Office of the Chief Information Officer)
|
|
3:30pm
4:00pm
|
AFTERNOON TEA
|
|
4:00pm
5.30pm
|
T4
|
T5
|
T6
|
|
Applying VALIT and COBIT in the public health arena
Andrew Little (Capstone CTS Asia Pacific)
|
Enterprise risk management and the auditor
Michelle Narracott (CPA Australia)
|
Implications of Federal Government requirements and I-RAP for 2010 and beyond
David Jarvis (Saltbush)
|
|
IT governance vs IT management: how can this be differentiated
Governance Panel Discussion
|
IT governance roles – lawmaker, enforcer or counsel
John Sanders
|
Securing a web business enabled organisation
Trevor Iverach (CA)
|
|
7:00pm
|
Conference Dinner Museum of Australian Democracy at Old Parliament House |
Wednesday 9th September
|
08:55am
09:00am
|
Precise of Day 2 and Welcome to Day 3
Scott Waters, President ISACA Canberra Chapter
|
|
09:00am
10:00am
|
Ensuring audit capability in IT
Bruce Turner
Chief Internal Auditor, Australian Taxation Office
|
|
10:00am
11:00am
|
Standing out from the crowd
Alec Dorling
ISO/IEC 15504 Convener (Process Assessment), SPICE Project, Sweden
|
|
11.00
11:30am
|
MORNING TEA
|
|
11:30am
-
12:30pm
|
Live Malware Attack!
Paul Ducklin
Head of Technology AsiaPAC, SOPHOS
|
|
12:30pm
-
1:30pm
|
LUNCH
|
|
1:30pm
2:30pm
|
W1
|
W2
|
W3
|
|
Performance measurement for control and improvement
Tom McBride (University of Technology Sydney)
|
Agile development methods and governance
Ian Hirst (Birchgrove Technology Management Consulting)
|
Portable computing – challenges for security control
Security Panel Discussion
|
|
2:30pm
3:15pm
|
AFTERNOON TEA
|
|
4:00pm
5.30pm
|
W4
|
W5
|
W6
|
|
Benefits Management – making value governance work
Rashi Sehgal
|
IT audit – traps for new players
Yvette Polonyi (Department of Resources, Environment and Tourism)
|
Security Incident and Event Monitoring: Where to start?
Mark Beaumont (RSA)
|
|
4.00pm
4.15pm
|
CONFERENCE CLOSE
Max Shanahan, Chair, Conference Organising Committee / Diana Adams, Co-Chair, Conference Organising Committee
|
Program Disclaimer:
Topics and times are correct at the time of publishing, however are
subject to change.
Masterclass Information
COBIT 4.1 as IT governance mechanism
Day: Thursday 10 September 2009
Time: 9.00am - 5.00pm
Masterclass Fee: $595.00
Masterclass Presenter: Prof Dr Wim Van Grembergen
Maximum attendance: 20 delegates
This masterclass discusses the COBIT framework and explains how it can
be leveraged as an instrument for IT governance. Focus will be on the
fundamental concepts of the framework and how it can be adapted to the
specific needs of an organisation and issues related to the
implementation of COBIT as governance mechanism. The ideal participant
would be an managers or advisory wishing to understand how COBIT can be
used to support governance implementation.
Risk based audit process using COBIT and other
frameworks
Day: Thursday 10 September 2009
Time: 9.00am - 5.00pm
Masterclass Fee: $595.00
Masterclass Presenter: Max Shanahan, FCPA, CGEIT, CISA, MIIA(Aust),
MACS.
Maximum attendance: 20 delegates
This masterclass aims to ensure participants understand how to use COBIT
and other appropriate frameworks to support risk based planning and
execution of an audit program that is compliance with ISACA and IIA
audit standards. The ideal participant would be an IT audit or audit
manager who wishes to apply COBIT more effectively in the audit process.
SANS Workshop
Thursday 10 September - Friday 11 September 2009 : 9am - 5pm
The SANS Workshop will be conducted independently of the conference.
Workshop Fee: $1,700USD
Workshop Presenter: Marcus Sachs
Minimum attendance: 9 delegates
SANS MGT405: Critical Infrastructure Protection is authored and
presented by Marcus Sachs, one of the nation's leading experts on
critical infrastructure protection and cyber warfare.
Marc will give detailed explanations of specific pervasive Internet
technical problems and conduct in-depth examinations of the types of
attacks that might do the most harm to your organization and your
infrastructure sector.
Taking a comprehensive look at the current Internet governance model,
students will learn how to develop business continuity and disaster
recovery plans to counter current cyber threats and threat actors that
take advantage of this model. Students will also gain knowledge about
the new directions being taken by criminals, terrorists, spies, and
nation states and what the US is planning to do for the defence of our
critical infrastructure against these new threats.
For more information regarding registration, day and time of workshop,
please go to http://www.sans.org/canberra09_2/
Sans Conference Brochure [pdf]
Note: Due to the sensitivity of the course subject and the focus on protecting national critical infrastructures, this course is only available to citizens of the United States, Canada, Australia, New Zealand, and the United Kingdom currently living and working in those countries. Proof of eligibility will be required when checking in at the training event as well as when entering the classroom.
|
