ISACA North Texas Chapter

Upcoming Event
________________________________________
Conducting Your First Social Media Audit

When: Friday, December 11, 2020
12:00 PM - 1:00 PM Central
Where: https://zoom.us/webinar/register/WN_sq4Gsr2xRcCAlDuCm-Trbg

Learning Objectives:
• Recognize the risks that are associated with use of social media platforms
• Familiarize relevant configuration settings to review on specific social media platforms

Register today for our free webinar; registration is first come, first served. Hope you can join us!

The ISACA North Texas chapter is offering its members a free remote learning opportunity and the ability to earn 1 CPE.

Members will be able to register for the free webinar using the included Zoom link and hear from Ali Subhani, Director of Internal Audit at Collin College.

Bio:
Ali Subhani serves as the Director for Internal Audit at Collin College. He is a Certified Internal Auditor, Certified Information Systems Auditor and a GIAC Systems and Network Auditor. Prior to joining Collin College, Ali served as the Executive Director of Audit Services at Texas Woman’s University. His prior experience has also included managing the IT Audit function at UT- Dallas.

Conducting Your First Social Media Audit:
With the increased integration of social media into our daily lives, we are far better connected than the generations from the past. However, this interconnectivity allows ‘news’ to spread around the world in seconds. What does this mean for you and your organization?

Learn how you can evaluate whether risks associated with the use of these evolving forms of communication are being adequately managed at your organization and in your personal life.
We will be offering 1 CPE for attending the entirety of this free webinar, so please sign up at the earliest.

Welcome! You are invited to join a webinar: Conducting Your First Social Media Audit. After registering, you will receive a confirmation email about joining the webinar. With the increased integration of social media into our daily lives we are far better connected than the generations from the past. However, this interconnectivity allows ‘news’ to spread around the world in seconds. What does this mean for you and your organization? Learn how you can evaluate w...

Upcoming Event
________________________________________
The Clutter That’s Choking AppSec
When: Friday, October 16, 2020
12:00 Noon - 1:00 PM Central
Where: https://zoom.us/webinar/register/WN_VLKSOBAVS9ih_YEgYUnCfQ

Learning Objectives:
• Learn how software product teams can manage application vulnerabilities better
• Learn how application security teams become more productive keeping in mind the current constraints of limited bandwidth and increasing tasks
• Learn how product engineering teams maintain the balance of finding bugs early and fixing bugs early

-------------------------------------------------------------------------
Dear Member,

Register today for our free webinar; registration is first come, first served. Hope you can join us!

The ISACA North Texas chapter is offering its members a free remote learning opportunity and the ability to earn 1 CPE.

Members will be able to register for the free webinar using the included Zoom link and hear from Rahul Raghavan.

Bio:
Having worked on both the building and breaking sides of product engineering, Rahul appreciates both the constraints and the opportunities of imbibing security within the software lifecycle. This understanding created a natural segue for we45’s custom security solution engineering and enhanced AppSec service delivery models for its global customers.
As an active DevSecOps Marketer, Rahul works closely with the offices of CTOs and CIOs in the setting up of cross functional skill building and collaboration models between engineering, QA and security teams to build and manage software security maturity frameworks. Rahul is Certified Information Systems Auditor (CISA) and is a regular speaker at global conferences, seminars and meetup groups.

Abstract:
Increasingly shorter agile development sprints and mandatory security assessments are putting pressure on product teams to deliver secure applications faster than ever. Further, inorganic adoption of security tooling sometimes creates information overload that does more harm than good.
What’s going wrong:
• Results from SAST, DAST and SCA tools create large vulnerabilities data sets that are difficult to act upon.
• Automated scan results from security tools are replete with false positives and duplicate entries that make remediation troublesome.
• Manual methods of triaging vulnerability data sets are inefficient and lower productivity.
• Improper vulnerability management increases friction between security and engineering teams.
What you will glean from this talk:
• How automated methods of vulnerability correlation and de-duplication can significantly reduce your AppSec testing time.
• How to effectively integrate vulnerability remediation with the engineering workflow.
• Understand the basic anatomy of a vulnerability to effectively prioritize and fix security bugs faster and better!

What you should care about:
Without a change in approach, application security professionals and engineering teams will continue to delay development schedules and product release dates, or risk releasing a product that is not entirely secure.

Who should attend:
• Security professionals who face problems managing vulnerabilities.
• Engineering teams who find the current vulnerability remediation workflow problematic.
• CISOs who want to lay down a mature and efficient AppSec Program.

We will be offering 1 CPE for attending the entirety of this free webinar, so please sign up at the earliest.

Sincerely,
ISACA North Texas

Welcome! You are invited to join a webinar: The Clutter That’s Choking AppSec. After registering, you will receive a confirmation email about joining the webinar. Increasingly shorter agile development sprints and mandatory security assessments are putting pressure on product teams to deliver secure applications faster than ever. Further, inorganic adoption of security tooling sometimes creates information overload that does more harm than good. What’s goin...