HomeNews & Events

Wellington Events

August's Joint ISACA/IIA Lunchtime event features Cyber Security and Privacy Audits

26/08/2011 - 12:00

 

 
ISACA Session (12.00 – 12.50)
 

Topic: Cyber Security Plan for Government Information and Assets

 
The presentation will describe the Cyber Security Plan for Government Information and
Assets (the Plan), covering the broader context in which the Plan sits, and an overview
of the whole-of-government approach being taken to cyber security in New Zealand.
Length of presentation: 30 mins + question time
 
Presenter: Jonathon Berry - Information Assurance and Cyber Security, Government
Communications Security Bureau. Retired Army Officer with 16 years experience in armoured, signals and electronic warfare disciplines. Four operational tours; Angola, Iraq, Lebanon and Afghanistan. Jonathon is presently at the GCSB in an Information Assurance liaison role. In this capacity Jonathon is performing the out reach function to government agencies for the Cyber Security Plan for Government Information and Assets.
 
IIANZ Lunchtime Session (13.10 – 14.00)
 

Topic: Privacy Audits

Presenters : Katrine Evans, Assistant Privacy Commissioner and
Neil Sanson, Data Matching Compliance Adviser, Office of the Privacy Commissioner.
 
Katrine will discuss the implications from the Law Commission's report for internal
auditors - particularly the possibility of privacy audits. Neil will briefly outline the current
audit requirements around information matching, and will explain the guidance available for how ISACA and IIA members can manage those risks.
 
Katrine lectured at Victoria University of Wellington Law Faculty from 1995-2004,
specialising in privacy, tort and media law. In August 2004 she joined the Office of
the Privacy Commissioner as Assistant Commissioner (Legal). She is the Privacy
Commissioner's chief legal counsel, and also manages the litigation,policy, technology
and communications functions of the Office. Neil has a background in IT audit in the government and private sectors. His current role is to monitor authorised data matching activities between government agencies, review proposals for new data matching arrangements, and consider the potential impacts of new applications of technology.

 

The Wellington ISACA & IIA lunchtime education sessions for 2011 are being held jointly on the last Friday of each month.
 

Registrations

For catering purposes please register your interest, also any special dietary requirements
with admin@iianz.org.nz by Tuesday 23rd August
For catering purposes please ensure you register on time.

 

 

Format

12.00 – 12.50ISACA Session
12.50 – 13.10Networking Lunch
13.10 – 14.00IIA Session
 

Cost

There is a charge of $17 for a member or $22 for a non member to attend one or both of
the sessions. This includes the networking lunch
 

Venue

Level 16, Deloitte House, 10 Brandon St, Wellington
 

 

Joint IIA/ISACA Lunchtime - Covert CCTV as an Investigation Tool

29/07/2011 - 12:00

 

Topic - Covert CCTV as an Investigation Tool
 

 

The presentation will demonstrate the types of success that covert CCTV can achieve, and the rules that need to be followed in this type of investigation, including Privacy Act requirements, Employment Law implications, the impact of the new Private Security Personnel and Private Investigators Act 2010 and the effects of regulations governing the use of surveillance techniques by private investigators.

Length of presentation: 50 mins, including question time working with leading public and private sector entities in a range of roles

 

 

About the Presenter

 

David Horsburgh, CPP PSP PCI, Licensed Security Consultant, Security Risk Management (NZ) Limited.

David has had an extensive career with the NZ Police, NZSIS from 1969-2000, before setting up his company Security Risk Management (NZ) Limited.  He has worked with the Criminal Investigations Bureau and as a detective in the Special Investigations Unit, involved in covert investigations of various NZ criminals.

 

David has undertaken courses in New Zealand and internationally in the fields of drug investigations, building security analysis, covert entry to premises, counter-terrorism, criminal investigations and both video and still photography.

In 1999 he achieved the qualification CPP from the Professional Certification Board of the American Society for Industrial Security, covering security management, protection of sensitive information, personnel security, physical security, investigations and emergency planning.  In 2006 David achieved the qualification of PSP by the Professional Certification Board of ASIS, covering Physical Security Assessment and the Selection & Implementation of Integrated Physical Security Measures. In 2007 he achieved the qualification PCI, covering Case Management, Evidence Collection and Case Presentation.

He was the first person to achieve all three certifications in the Asia Pacific Region and remains the only person in NZ to hold all three qualifications. David is currently studying for a MSc in Security Management from Loughborough University in the United Kingdom.

 

Event Format & Cost

12.00 – 12.50 ISACA Session
12.50 – 13.15 Networking Lunch
(No IIA session this month)

Event Cost - The Wellington ISACA & IIA lunchtime education sessions for 2011 are on the last Friday of each month. There is a charge of $17 for members or $22 for non-members. This includes the networking lunch.

Venue

 

Level 16, Deloitte House, 10 Brandon St, Wellington

 

Registrations

 

For catering purposes please register your interest, also any special dietary requirements with jeni.ww@hotmail.com<mailto:jeni.ww@hotmail.com> by Tuesday 26 July 2011.   It is appreciated if you register on time for catering purposes.

ISACA/IIA June Lunchtime Education

24/06/2011 - 12:00
24/06/2011 - 14:00
 
VENUE

Level 16, Deloitte House, 10 Brandon St, Wellington

Format

12.00 – 12.50 ISACA Session
12.50 – 13.10 Networking Lunch
13.10 – 14.00 IIA Session

12.00 – 12.50 ISACA Session

 
Topic: Data Governance: From Theory to Practice 
 
Presenter:Zeeman van der Merwe, Manager, Information Strategy and Planning, ACC
 

12.50 - 13.10 Lunch & Networking

 

13.10 - 13.20 IIA Session

We are very fortunate to have visiting from Australia Michael Parkinson, who is a Director in the government services practice of KPMG Canberra. Michael currently serves on the Standards Australia OB-007 Risk Management Committee and holds the position of Vice Chair (Professional Services) of IIA Inc. Michael will address our members during the first ten minutes of the IIANZ session. Chris’s presentation will therefore be a little shorter to accommodate Michael.
 
Topic: An outline of the structure of the international organisation and a discussion of the current major initiatives in The IIA.  Opportunities for involvement in international activities.
 

13.20-14.00 Value-Add Auditing

 
Topic: Value-Add Auditing – delivering value for money through internal audit.
 
Presenter : Chris de Wit, Advisory Practice Leader, Ernst & Young, Wellington
 

RSVP

 
For catering purposes please register your interest to attend sessions with Anne at anne@iianz.org.nz by Tuesday 21 June.
 

Cost

$17.00 Members; $22 Non-Members

 Attached Presentation

Zeeman's presentation is available here (attached) due to the number of requests from the audience. Our thanks to Zeeman for his talk today.

 

Free ISACA Lunchtime Event 7 June

07/06/2011 - 12:00
07/06/2011 - 13:00
We are fortunate enough to have been approached by Ian Glover (President of the Council of Registered Ethical Security Testers) who is visiting New Zealand from the UK in June as guest of the New Zealand Government.  Ian has agreed to take some time out of his busy schedule and volunteer to present to the ISACA Wellington membership.  The ISACA Wellington Board felt this opportunity was too good to pass and accordingly have arranged a free ISACA lunchtime session in addition to the session scheduled in late June (please note lunch will not be served as per our month-end lunchtime sessions):
 
Date: Tuesday, 7 June 2011
Time: 12:00pm to 1:00pm
Location: Ernst & Young, Level 24 Majestic Centre, 100 Willis Street
 
Please feel free to bring along as many of your friends as you would like regardless of whether they are ISACA members or not.
 
In order to ensure we have enough space, please RSVP to vaughan.harrison@nz.ey.com by Friday, 3 June.
 
CREST Presentation Synopsis
CREST is the Council of Registered Ethical Security Testers. It is a not for profit organisation funded by its member organisations who have to meet minimum standards of ethics, methodologies, and technical capability. 
 
This presentation will describe the background to why CREST was established and the close collaboration between CREST and the UK Government CHECK Scheme.
 
It will describe the process that organisations have to undertake to become CREST registered and the valuable contribution the member companies make to the ongoing development of CREST and the direction of the testing industry.
 
It will describe the approach that CREST has adopted to assess the skill and competence of professional ethical penetration testers. It will describe the difference between CREST certified and registered, penetration testers and how this relates to their career development. It will also describe recent work to establish a set of examinations to assess the skill and competence of individuals involved in network forensics.
 
Although established in the UK there has been a great deal of international interest in CREST. The presentation will provide up to date information regarding progress in this important area together with suggestions on the actions required by both the buying and supplier communities to establish a CREST Chapter.
 
In a very short period of time the contributors to CREST have achieved significant progress with direct competitors working together to meet a demand and contribute to the wider common good. 
 
Ian Glover Bio
Ian Glover has thirty five years experience in information technology and has specialised in professional services for the last twenty eight years.
 
Ian is the President of the Council of Registered Ethical Security Testers (CREST). CREST is a not for profit organisation. It was established to help develop professionalism within the information technology security testing community and provide a development path for individual testers. The Register is used by private sector organisations to gain a level of assurance that the security testers are competent and that the organisations they work for have appropriate processes and controls in place. The CREST qualifications have been assessed and are recognised by the UK government. The qualifications are a mandatory requirement for individuals carry out penetration testing work on government system. Ian is currently running a project to develop a set of professional network forensics qualifications with the support of the UK Centre for the Protection of National Infrastructure Industry. All the CREST qualifications have been evaluated by NBISE (National Bureau of Information Security Examiners) in the USA and a strategy for their implementation is being planned.
 
Ian is the elected Chairman of the CLAS Forum. CLAS is a partnership linking the Information Assurance knowledge of the UK Government with the expertise and resources of the private sector. It provides a pool of more than 800 high quality consultants approved by CESG to provide Information Assurance advice to UK Government departments. The Forum was established to promote the interests of the CLAS community.
 
Ian is a Fellow of the Business Continuity Planning Institute (BCI) and was voted Business Continuity Consultant of the year in 2001 and 2003.
 
He is also part of the UK project team building the next land speed record car, Bloodhound SSC. The project has been designed to break the existing record and exceed 1,000 mph and provide and inspirational project to encourage youth into science maths and engineering. The project is in competition with Rosco McGlashan Aussie Invader project.
 
Prior to this Ian was one of the founding Partners of Insight Consulting and was Managing Director of Siemens Insight Consulting. 

IIANZ / ISACA Lunchtime Education

27/05/2011 - 12:00

 

The Wellington ISACA & IIA lunchtime education sessions for 2011 are being held jointly on the last Friday of each month.  Please RSVP to admin@iianz.org.nz by Tuesday 24th May.

ISACA Session (12.00 – 12.50)

Topic: Social Engineering - An Overview

Social Engineering threats are becoming more widespread and often make up a portion of successful malicious hacking attempts. This presentation will give an overview of what social engineering is and how an attack may be
planned and executed.

Length of presentation: 30 mins + question time

Presenter: Adrian Hayes, Security-Assessment.Com

Adrian Hayes is a security consultant for Security-Assessment.com in Wellington.
Adrian comes from a web app development background before focusing solely on information security. Adrian has recently moved his focus to researching Social Engineering techniques as a way of testing people, policy and processes as well as the more traditional technological targets.

IIANZ Lunchtime Session (13.10 – 14.00)

Topic: Auditing for Outcomes – the value proposition of IA in government agencies

This presentation takes a fresh look at the role of IA in helping public organisations deliver on Government outcomes. Through a range of audit interventions, internal auditors can make a pivotal difference to mission critical business and initiatives. It’s all about focusing on the right things at the right time and creating momentum for change.

Presenter : James Jong, Chief Internal Auditor, Ministry of Education

James started his IA career in the ANZ Banking Group in the early 1990s shortly after graduating from Otago University with an Honours degree in accounting. In 1998, he joined the New Zealand Dairy Board to lead the development of a global IT audit capability. When Fonterra was formed, James led one of five teams in a sales & marketing best practice programme, which included the development and implementation of CRM and key account management systems. James continued a programme director role at NZQA in 2004, where he oversaw and delivered a portfolio of projects that lifted the capability of the Quality Assurance Division and engagement with its tertiary stakeholders. James returned to IA when he joined Deloitte as Senior Manager in 2006. In 2010, James joined the Ministry of Education, where he draws on a broad palette of skills and experiences to transform the IA function.

Cost

There is a charge of $17 for a member or $22 for a non member to attend one or both ofthe sessions. This includes the networking lunch

Venue

Level 16, Deloitte House, 10 Brandon St, Wellington

Format

12.00 – 12.50 ISACA Session
12.50 – 13.10 Networking Lunch
13.10 – 14.00 IIA Session

123next ›last »
Syndicate content

© Copyright 2007-2009 ISACA Wellington Chapter, All Rights Reserved

Powered by Drupal - Theme design by artinet