NJ Central Jersey IIA –Privacy and Security Seminar Thursday, October 23, 2008, 8:00am-4:00pm   Seating limited to 50 people 8.0 CPE hours

PRIVACY TOPICS

Protecting Data Privacy: A Practical Guide to Managing Risk

Protecting valuable information assets, including personal data about employees, students, customers, and medical patients, is an enterprise wide responsibility. Like all components of good corporate governance, it begins with senior leadership establishing a culture of awareness about the importance of safeguarding these assets, and extends through coordinated actions among all business units, divisions, and departments. When creating data privacy programs, organizations should align them with their strategic enterprise risk management objectives and follow a top-down approach to achieve the greatest benefit. This presentation will focus on a practical approach to data privacy, which seeks to understand the business needs for data and align a data privacy protection program to those needs.  Effective programs prevent companies from ending up in the news, disclosing a data loss, by enabling its employees to stay vigilant for situations where data may be at risk.

Topics to be discussed include:

•     The Goals of an Effective Data Privacy Program
•     Current Data Privacy Landscape
•     Common Privacy Program Pitfalls
•     Key Components of a Successful Data Privacy Program
•     The Top Down Data Privacy Risk Assessment
•     Data Privacy Roles and Responsibilities
•     High Level Roadmap and Ideas to Consider for Future Strategy
•     Data Loss Protection Technology Landscape

Jill Frisby, CISSP, CISA

Manager, Crowe Horwath, Risk Consulting Practice with a specialty in the area of Information Security and Data Privacy

She has been the keynote presenter on Information Security for several regulatory agencies, banking associations, and industry roundtables.Jill has become an industry thought leader in the area of the Data Privacy, developing Crowe Horwath’s full suite of services to help ensure initial and continuing protection and compliance.  Jill is a member of the editorial board for the International Association of Privacy Professionals (IAPP) and has written articles on Privacy and Identity Theft for the Privacy Advisor and Privacy Tracker publications.  She designed a web-based tool for the facilitation of Information Systems Risk Assessments, and has helped major companies and government organizations remedy significant deficiencies in safeguarding consumer information.

In addition, Jill has been featured in 5 major newspapers and on three network evening television broadcasts related to her research in the area of Wireless LAN Security. These media publications were completed in conjunction with a Crowe Horwath research study, the goal of which was, upon investigation, to inform the public of the growing problems with Wireless LAN security and the ways to remedy these issues.

Jill currently performs assessments in the areas of:

Data Privacy and Protection

• Gramm Leach Bliley Act Compliance
• Information Security Policy and Standards Development
• Network Security Assessments
• Internal and External Penetration Assessments
• Information Systems General Controls Reviews

Jill is a Certified Information Privacy Professional, Certified Information Systems Auditor, Certified Information Systems Security Professional, Microsoft Certified Systems Administrator with a Specialization in Security, a Project Management Professional and a CompTia Certified Security Professional. She is a graduate of the University of Illinois, where she majored in General Engineering and minored in Technology Management.

SECURITY TOPICS

Identity Theft – Protecting Sensitive Information

Many privacy issues are becoming increasingly complex and more integral factors in a company’s ability to do business well. While privacy in earlier years may have been considered more of a marketing hook, focused on meeting customer preferences, privacy today is associated with the potential for abuse − inappropriate access to or exposure of information resulting in identity theft and fraud. The prevalence of such issues has attached a keen sense of urgency to privacy, thereby moving it up the list of business concerns on a global scale.  This talk will provide insight into how an organization can determine how vulnerable it may be to privacy breaches or issues of noncompliance and what actions it could take to meet these inevitable challenges.

Emerging Technologies and Risks

IT leaders must understand that ‘over the horizon’ technologies will have a significant impact on the organization, and should take action to address the implications that these key technology trends may have for enterprises.  This talk will bring attention to key considerations including value, cost, traditional risks, transitional/ disruptive process or technology and emergent risks of delivering the technologies in IT, business processes, data, applications, and infrastructure. 

2008 Ernst & Young Global Information Security Survey

The 11th Annual Global Information Security Survey will be reviewed.  Learn what 1,300 EY client executives in more than 50 countries had to say about what drives information security in their organizations.  Learn their view of how improved information security affects overall business performance and what happens when information security is not closely connected to executive management and the strategic decision-making process.

Incident Response & Forensics Investigations

As an IT Executive and staff member, do you understand your responsibilities and obligations under the new Federal Rules of Civil Procedure?  What typically was in the domain of the corporation's legal team now confers obligations on the technology team.  A number of high profile court levied sanctions against major corporations have been made public, yet there are many corporations that either do not fully understand their obligations or have failed to adapt their legal response and incident handling processes to comply with the new rules.  Through a mock deposition and discussion, this talk will highlight the major changes and provide tips and lessons learned to help corporations respond effectively.

Brian Kelly

Executive Director, Ernst & Young’s Information Technology Enablement Center

With over 25 years of experience in technology and security operations including information security, command & control, intelligence, investigations, electronic evidence collection, space systems reconnaissance and airborne sensors. Brian has led Ernst & Young’s New York Forensics Technology Services and the Advanced Security Center providing forensic technology and security services for global clients.  Brian has served in a number of senior leadership roles within the private and public sectors including Chief Executive Officer, Chief Operations Officer and Senior Staff Officer within the Department of Defense.  He was selected for and served in a prestigious Washington D.C Fellowship.  Brian provides an array of operational and practical perspectives on building and protecting an organization’s critical assets.

Gary Babick, CISSP

Manager, Ernst & Young Northeast Advisory Services Practice

Gary is responsible for development and delivery of a Global Information Security assessment methodology based on the ISO/IEC 27001 and 27002 security standards. His experience includes performing reviews of Fortune 50 Information Security programs in the context of leading practices and overall maturity level, identifying and reporting on overlapping roles and responsibilities, initiatives, management gaps, and identifying any security initiatives that could improve operational security processes and organizational security management relative to leading practices. 

Previously, Gary served as an Information Protection Manager at CIGNA, an employee benefits company providing health care and related benefits offered through the workplace.  He was responsible for assessing compliance to corporate information protection policies and technical standards to ensure the confidentiality, integrity and availability of Information assets while meeting the strategic, regulatory and customer requirements for several diverse business units.  

His experience includes 18 years in Information Technology and Information Security, covering health care, manufacturing, educational, government and legal sectors. His duties have included client, server, network and application support, business continuity planning, information security assessment and compliance activities, and technical leadership for large scale security product deployments.

He has a Bachelor of Science in Business Administration from the University of Connecticut and a Master of Science in Information Systems from Drexel University. 

Brian DePersiis, CISA

Senior, Ernst & Young Northeast Advisory Services Practice

Brian serves as a senior within Ernst & Young’s Advisory Services practice.  He has performed network and application information security reviews.  He has analyzed the security risks related to both the general network architecture environment as well as significant applications used for processing business and operational tasks.  These reviews typically consist of an evaluation of particular business assets, security policies, software import and virus protection procedures, processes for securing data integrity, risks related to social engineering as well as providing clients with a current and future state assessment of the their security staffing needs. Brian has executed several of these types of security programs in conjunction with building a solid security framework that can be utilized by clients according leading security standards (i.e. ISO).

Bachelor of Science, Business Administration – Management Information Systems, University at Albany, NY. Member of the Information Systems Audit and Control Association (ISACA)

Time and  Location 

Date:      Thursday, October 23, 2008                

Time:      8:00 AM – 4:00 PM 

Dress:    Business casual

Registration& Cancellations

REQUIRED!  Please reserve your spot now since seating is limited to 50 people.  Kindly let us know if you need to cancel.

Please register via the IIA Chapter website: http://www.theiia.org/chapters/index.cfm/view.events/cid/230

For any questions or cancellations, please contact our Event Manager, Celebrations Event & Meeting Management via email: IIACNJ@celebrationsevent.com.

Location:
New Jersey Hospital Association
760 Alexander Road P.O. Box 1
Princeton, N.J. 08543-0001
609-275-4000

Directions:

From North Jersey

Via Route 31:
Proceed on Route 31 heading south. After passing Walsh's Golf Farm (on left), proceed through blinking caution light (Sunoco Station on left). Continue on Route 31 to traffic circle (will enter at 6 o'clock). Exit traffic circle at 1 o'clock (2nd off shoot)-follow signs for Trenton. At next traffic light (Jct. I-95), take 2nd right (access ramp) to I-295 South/I-95 North. Proceed on 1-95 North, which merges with I-295 South. Take Exit 67 for Route 1 North. Bear left at exit ramp fork and follow signs to Route 1 North. Proceed on Route 1 North for approximately 3 miles. (Division of Motor Vehicles, Quakerbridge Shopping Mall, Carnegie Center, and Bank will be on your right). Take Alexander Road East (Princeton Junction) exit. Turn right onto Alexander Road. New Jersey Hospital Association is approximately one mile on right. Park in rear.

From the Somerville Area And Points To The North And West:
Take Route 206 South to Nassau Street (Route 27) at Princeton. Turn left onto Nassau Street (Route 27). Go to first traffic light and turn right onto University Place. Follow University Place to end and turn left onto Alexander Street; after approximately 1/2 mile this becomes Alexander Road. Cross over Route 1 and continue on Alexander Road approximately 1/2 mile. New Jersey Hospital Association is on right. Park in rear.

From New Brunswick Area:
U.S. Route 1 South (approximately 15 miles) to Alexander Road East/Princeton Junction exit. Take exit and turn right onto Alexander Road (Hyatt Regency Princeton is on your right). Go through 3 lights. New Jersey Hospital Association is on right. Park in rear.

Via New Jersey Turnpike
Proceed south on NJ Turnpike to Exit 8 (Hightstown/East Windsor) (note: Exit 8 is after 8A). Take Route 33 West into Hightstown. At second traffic light, make a left (Main Street). Make first right onto Stockton Street. Stay on Stockton Street (which turns into Route 571) for approximately 8 miles. Go straight through the traffic light at Clarksville Road. Turn left at the next traffic light (between the Mobil and Shell gas stations) onto Alexander Road. Proceed along Alexander Road which will curve to the left. After a very short distance make a right turn to continue onto Alexander Road (over the railroad bridge). The New Jersey Hospital Association is located less than one mile on the left. Park in rear.

Via Garden State Parkway
Proceed south on Parkway to Exit 129. Exit onto NJ Turnpike. Proceed south on NJ Turnpike to Exit 8 (Hightstown/East Windsor) (note: Exit 8 is after 8A). Take Route 33 West into Hightstown. At second traffic light, make a left (Main Street). Make first right onto Stockton Street. Stay on Stockton Street (which turns into Route 571) for approximately 8 miles. Go straight through the traffic light at Clarksville Road. Turn left at the next traffic light (between the Mobil and Shell gas stations) onto Alexander Road. Proceed along Alexander Road which will curve to the left. After a very short distance make a right turn to continue onto Alexander Road (over the railroad bridge). The New Jersey Hospital Association is located less than one mile on the left. Park in rear.

From Hightstown
Take Stockton Street (which turns into 571) for approximately 8 miles. Go straight through the traffic light at Clarksville Road. Turn left at the next traffic light (between the Mobil and Shell gas stations) onto Alexander Road. Proceed along Alexander Road which will curve to the left. After a very short distance make a right turn to continue onto Alexander Road (over the railroad bridge). The New Jersey Hospital Association is located less than one mile on the left. Park in rear.

From Points East
Take Route 33 West to Route 133. Take Route 133 and follow signs for Princeton 571 West. Stay on Route 571 for approximately 3 miles. Go straight through the traffic light at Clarksville Road. Turn left at the next traffic light (between the Mobil and Shell gas stations) onto Alexander Road. Proceed along Alexander Road which will curve to the left. After a very short distance make a right turn to continue onto Alexander Road (over the railroad bridge). The New Jersey Hospital Association is located less than one mile on the left. Park in rear.

From South Jersey & Philadelphia Area

From Philadelphia Area
Take I-95 north from Philadelphia; continue on I-95 across the Delaware River into New Jersey. That road becomes I-295 south approximately 5 miles into New Jersey. Continue on I-295 south to Exit 67 for Route 1 north. Proceed on Route 1 North approximately 3 miles. (Division of Motor Vehicles, Quakerbridge Shopping Mall, Carnegie Center, and Bank will be on your right.) Turn right onto Alexander Road East (Princeton Junction) exit . Turn right onto Alexander Road. New Jersey Hospital Association is approximately one mile on right. Park in rear.

Via Route 206
Proceed north on Route 206. At Bordentown, shortly after Chickie & Pete's (on right), get in left lane. Where Route 206 and Route 130 separate, bear to the left and continue on Route 206. (Follow signs for Trenton-Mastoris Diner will be on your right.) After approximately 3 miles, exit from right lane onto I-195 West/I-295 North (sign also says Princeton). Stay on I-295 North and take Exit 67A onto Route 1 North (sign says Trenton/New Brunswick). Proceed on Route 1 North approximately 3 miles. (Division of Motor Vehicles, Quakerbridge Shopping Mall, Carnegie Center and Bank will be on your right.) Turn right onto Alexander Road East (Princeton Junction) exit. Turn right onto Alexander Road. New Jersey Hospital Association is approximately one mile on right. Park in rear.

Via New Jersey Turnpike
Proceed north on Turnpike to Exit 8 (Hightstown/East Windsor). Take Route 33 West into Hightstown. At second traffic light, make a left (Main Street). Make first right onto Stockton Street. Stay on Stockton Street (which turns into Route 571) for approximately 8 miles. Go straight through the traffic light at Clarksville Road. Turn left at the next traffic light (between the Mobil and Shell gas stations) onto Alexander Road. Proceed along Alexander Road which will curve to the left. After a very short distance make a right turn to continue onto Alexander Road (over the railroad bridge). The New Jersey Hospital Association is located less than one mile on the left. Park in rear.


Via Garden State Parkway
Proceed north on Parkway to Exit 98. Take Exit 98 onto I-195 West, which becomes I-295 North. Stay on I-295 North and take Exit 67A onto Route 1 North (sign says Trenton/New Brunswick). Proceed on Route 1 for approximately 3 miles. (Division of Motor Vehicles, Quakerbridge Shopping Mall, Carnegie Center, and Bank will be on your right). Turn right onto Alexander Road East (Princeton Junction) exit. Turn right onto Alexander Road. New Jersey Hospital Association is approximately one mile on right. Park in rear.

Via I-295
Take Route I-295 North to exit 67A onto Route 1 North (sign says Trenton/New Brunswick). Proceed on Route 1 for approximately 3 miles. (Division of Motor Vehicles, Quakerbridge Shopping Mall, Carnegie Center, and Bank will be on your right). Turn right onto Alexander Road East (Princeton Junction) exit. Turn right onto Alexander Road. New Jersey Hospital Association is approximately one mile on right. Park in rear.

Train and Airport Travel

• Local Train Stations
  • Princeton Junction Train Station - The station is located at 2 Wallace Road. It is approximately 1.3 miles from NJHA. Taxi cabs are available for travel to NJHA.
  • Princeton Borough Train Station - Please note: The Princeton Borough station is a separate line from the Princeton Junction station. The Dinky Train Line connects the stations.
  • Trenton Train Station - Services available are: New Jersey Transit, Septa and Amtrak
• Local Airports
  • Newark Liberty International Airport (EWR)
  • Philadelphia International Airport (PHL)
  • Trenton Mercer Airport

Top of Page

IMPORTANT NOTE: Alexander Road Bridge 90-Day Road Closures, July 11 - Sept. 25, 2008
Please be advised that beginning Friday, July 11, 2008, the New Jersey Department of Transportation (NJ DOT) will begin a permanent detour around the Alexander Road Bridge effectively closing Alexander and North Post Roads in the area of the bridge (map). This detour is currently scheduled to continue until September 25, 2008 barring any delays. 

 

CPE/Seminar Information

 

Level of Knowledge:                                                                     Basic/Intermediate

Recommended CPE Credit(s):                                                   8

Prerequisite & Advance Preparation:                                      None

Method of Presentation:                                                              Group Live

Recommended Category Eligibility:                                         Auditing