NJ ISACA - The Connection between Data Governance, Privacy and Information Security


Please join our speaker Shawna M Hill for our two day seminar:
The Connection between Data Governance, Privacy and Information Security


Each year in the United States and around the world regulations are enhanced to further protect citizens and nations from those wanting to gain from others. This course will focus on three highly relevant topics concerning corporations and individuals today: Data Governance and Data Privacy and what is needed to build a robust data management program.

The program is designed to heighten an auditor’s knowledge of Data Privacy and Data Governance and what is a part of Data Management, using common business language. During the course we will discuss some current and pending regulations and explore some of the known vulnerabilities, threats and risks facing today's enterprise or agency, and some of the more common controls used to safeguard data, regardless of its form.

Topics will include:

1. The Connection between Data Governance, Privacy and Information Security 

2. The Difference Between IT, Data and Information Governance

3. Data Privacy, Data Governance and Information Governance Fundamentals

4. Fundamentals of Data Management
• Data dictionary
• Data classification
• Data ownership
• Data custodianship
• Data controls 

5. Common Privacy Frameworks and Principles

6. Data Privacy Regulations – US and International

7. Critical Components and Success Factors when building or assessing Data Management and Privacy Programs

8. Policy Considerations Related to Data/Information 

9. Data Privacy and Data Management Assessments

10. Data Related Contract Language (SLA, MOU, SOW)

11. Common privacy and data management related vulnerabilities, threats and possible risks facing enterprises who use the Internet to:
• Interact with Consumers, Customers, Suppliers and other Third Parties through computers and mobile devices
• Process, Transmit or Store Cardholder or other Personally Identifiable Data

• Use Social Media
• Use email, chat and Voice Over IP 

12. Basic Control Suite 

13. Audit Programs and Procedures
• Auditing Privacy and Data Governance
• Auditing the Data Management Program

Who Should Attend

  • General Auditors and other Audit Management

  • IT Auditors • Operational Auditors

  • Information Security Managers, Analysts, and Architects

  • IT Management

  • IT Architects

  • Compliance Officers

  • Consultants

  • Anyone needing an insightful overview of CyberSecurity risks, controls, and assessments

CPEs: 14*(Type: Auditing)

* Continuing Professional Education Credits are estimated and based on the Continuing Professional Education requirements of the New Jersey Board of Accountancy (NJ BoA.) Actual CPEs (1 CPE credit for 50 minutes) are calculated based on actual instruction time and attendance.

Please note that NJ BoA now requires a more stringent monitoring of meeting attendance. Attendees who arrive late, leave early or are absent from the seminar room for extended periods, will have their CPE certificate adjusted accordingly.

  • When

  • Tuesday, September 11, 2018 - Wednesday, September 12, 2018
    8:00 AM - 5:00 PM

  • Where

  • Ravello
    138 Eagle Rock Ave
    East Hanover, New Jersey 07936

  • Capacity

  • 55 (7 remaining)

Outlook Outlook
iCal iCal
Google Google
Yahoo! Yahoo!