ISSA Central Plains Chapter
August 1st,  2003

 

 

Central Plains Chapter Meeting:

 

"COBiT from an IT Auditor's point of view.", Scott McClouds

“COBIT has been developed as a generally applicable and accepted standard for good Information Technology (IT) security and control practices that provides a reference framework for management, users, and IS audit, control and security practitioners.”
                                                                       
                                                                                                   - The Information Systems Audit and Control Association & Foundation

Scott McCloud, Technology Auditor for Koch Industries, Inc.  has been working with and learning about information security since the early days of Wichita internet dial-up services and early web-hosting ventures in the middle & late 1990's. Prior to Koch Industries Inc., he worked for Brite Voice Systems for a number of years as well.

 “Conducting a Vulnerability Assessment of your IT Systems”, Ron Shuck & Damon Martin

 

There are many different facets to an IT security audit.  In this presentation we will discuss some of the following issues that relate to IT audits:

 

·          Selecting an Auditor

·          Commercial vs. Open Source assessment tools

·          Performing internal audits

·          Separation of auditing and administration duties

·          Structuring and presenting your findings to management

·          Knowing what to look for and what is important

 

Ron Shuck, CISSP has many years of IT security experience providing design, implementation and auditing services for enterprise and small organizations.  Ron is currently a Managing Consultant for Buchanan Associates and the Senior Information Security Assessment Specialist. 

Damon Martin, CISSP works as the Practice Manager for Buchanan Associates Information Security services division.  He has several years of experience in the design and oversight of IT systems and their management.

 

 



    

    

  

The Information Systems Security Association (ISSA)® is a not-for-profit international organization of information security professionals and practitioners.  It provides education forums, publications and peer interaction opportunities that enhance the knowledge, skill and professional growth of its members. We hope the ISSA will provide a chance to interface with other IT professionals and further your awareness of security practices and technologies.

 

This meeting is open to the general public with no expectations of membership.


Date:        Friday, August 1st, 2003
Location: Rockwell Public Library

                5939 E 9th ST N, Wichita, Ks 67208
Time:       1:00 pm until 3:00 pm

·           Welcome from Chapter President

·          "COBiT from an IT Auditor's point of view.", Scott McClouds

·         “Conducting a Vulnerability Assessment of your IT Systems”, Ron Shuck & Damon Martin

·         Upcoming Events, Ron Shuck