| Tuesday, May 19 |
|---|
| 10:15 am–11:15 am |
Conference Sessions
 Key Considerations in Business ResiliencyBusiness Resiliency is the maturation and amalgamation of the individual processes of crisis management, incident response, business continuance and disaster recovery into one succinct set of processes and capabilities that work collectively instead of independently. This combination allows organizations to have minimal disruption in the event of a business-impacting incident that affects the entire organization instead of one that involves specific information infrastructure areas. When evaluating these capabilities, it is important to understand that they only are as effective as the proactive planning and considerations that go into their development. Too often, planning accounts for only the most obvious considerations and does not incorporate crucial and essential considerations that have the most impact. This session will discuss the key elements of business resiliency and the considerations which should be made when developing or maturing this capability. Speaker - John Pironti, Chief Information Risk Strategist, CompuCom John P. Pironti is the Chief Information Risk Strategist for CompuCom. He has designed and implemented enterprise wide electronic business solutions, information security programs, and threat and vulnerability management solutions for key customers in a range of industries, including financial services, government, hospitality, aerospace and information technology on a global scale. Mr. Pironti has a number of industry certifications including Certified in the Governance of Enterprise IT (CGEIT), Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), Certified Information Systems Security Professional (CISSP), Information Systems Security Architecture Professional and (ISSAP) and a Information Systems Security Management Professional (ISSMP). He is also a published author and writer, and a frequent speaker on electronic business and security topics at domestic and international industry conferences. Before joining CompuCom, Mr. Pironti was a Principal Enterprise Solutions Architect and Principal Security Consultant for Unisys, Inc. Prior to that he has held technical and management positions at AT&T and Genuity Inc. Mr. Pironti has a B.S. degree in imaging systems management from the Rochester Institute of Technology.
|
| 2:45 pm–3:45 pm |
Conference Sessions
Security By Compliance, Information Risk Management's Greatest ChallengeWhen most organizations think about information protection, compliance is the top issue today. This new level of consciousness has become a great benefit to information security professionals, as well as their greatest nightmare. The leadership of many organizations are now falling into the trap of "security by compliance"—which has created a false sense of security for them. They believe that if they meet their legal and regulatory compliance requirements, they have fulfilled their requirements for information risk management and protection. This panel will discuss the challenge of taking advantage of the benefits created by new compliance requirements, while also overcoming the challenge of this new operating procedure.
Moderator - John Pironti, Chief Information Risk Strategist, CompuCom John P. Pironti is the Chief Information Risk Strategist for CompuCom. He has designed and implemented enterprise wide electronic business solutions, information security programs, and threat and vulnerability management solutions for key customers in a range of industries, including financial services, government, hospitality, aerospace and information technology on a global scale. Mr. Pironti has a number of industry certifications including Certified in the Governance of Enterprise IT (CGEIT), Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), Certified Information Systems Security Professional (CISSP), Information Systems Security Architecture Professional and (ISSAP) and a Information Systems Security Management Professional (ISSMP). He is also a published author and writer, and a frequent speaker on electronic business and security topics at domestic and international industry conferences. Before joining CompuCom, Mr. Pironti was a Principal Enterprise Solutions Architect and Principal Security Consultant for Unisys, Inc. Prior to that he has held technical and management positions at AT&T and Genuity Inc. Mr. Pironti has a B.S. degree in imaging systems management from the Rochester Institute of Technology.
|
| 4:00 pm–5:00 pm |
Conference Sessions
Navigating Unchartered Waters: Best Practices for Managing a Governance, Risk and Compliance Architecture Across the EnterpriseOrganizations are challenged with governance, risk and compliance (GRC) hurdles that require a new strategy. Beyond Sarbanes-Oxley, organizations are weary of increased regulatory actions, corporate litigation, demands of corporate social responsibility, as well as stakeholder pressure. Ensuring compliance is a daunting task. In today's fiercely competitive and risky business climate, Fortune 1000 companies can no longer tackle GRC challenges as single entities. A sustainable GRC architecture facilitates the mega-processes of enterprise governance, risk and compliance. Attendees will be empowered to manage the lifecycle of corporate and IT policies; consolidate business intelligence across divisions; and achieve effective governance throughout the organization.
Speaker - Jon Darbyshire, Founder, President and CEO, Archer Technologies Jon Darbyshire founded Archer Technologies in 2000 with a vision to create enterprise-wide IT risk and compliance management solutions that would replace traditional manual processes and disparate point solutions. Jon's vision has evolved into Archer's award-winning enterprise governance, risk and compliance solutions built on the Archer SmartSuite Framework, which allows business users to create and tailor applications to meet their unique needs. Prior to founding Archer, Jon held senior executive positions within the Security and Risk Management practices of Ernst & Young and Price Waterhouse. Jon has more than 20 years of experience in the security, risk and compliance management space.
| | Thursday, May 21 |
|---|
|
| 9:00 am–10:00 am |
MBX Conference Sessions
Governance, Risk, Compliance - and MobilityNever before has IT been so close to the center—and success—of organizations. Never before have corporate governance policies and procedures, risk management and regulatory compliance seen the emphasis—or had the impact—that they do today. Mobility can compound the challenges of address this requirements; therefore, solid strategies and tools are essential. Find out what the experts recommend—and what successful companies are doing—in this vital session.
|
| 11:30 am–12:30 pm |
Conference Sessions
The GRC Easy Button - Best Practices to Achieve Results with Governance Risk and ComplianceIn this session we will explore the evolution of governance, risk and compliance (GRC) management and discuss how it is being shaped by key stakeholders including consultants, regulators and end-users. We will discuss various approaches to GRC and highlight the strengths and weaknesses of each approach to cut through the hype and identify areas where true value can be derived today. Attendees will also learn tips and tricks to help streamline risk, compliance and audit processes.
Speaker - Chris Boswell, Director Risk and Compliance Services , CA Chris Boswell, CIS [A,M,SP], specializes in the design and delivery of governance, security, risk management, and compliance solutions at CA. He has experience building GRC solutions across a wide variety of industries, and has worked with numerous regulations, standards and best practices over the past decade. Chris joined CA from Ernst & Young in 2004 to form a Global Security Assessment Practice within CA Technology Services. From there, he went on to design CA Governance Risk & Compliance Manager.
|
|
