Name
E3. Conducting an Information Security/Privacy Risk Assessment
Date & Time
Thursday, May 11, 2017, 10:10 AM - 11:10 AM
Wade Staab
Description
Session Description:
 
Information security and privacy risk assessment.  While there are several tools and techniques, including FFIEC, NIST, and COSO, what you need is to understand the reasons for and value of conducting an information security and privacy risk assessment.  A specific application or software is not required. Learn the concepts, review some of the tools available, and understand the value for management in this session.
 
 
Location Name
Room 708/710
Full Address
Colorado Convention Center
700 14th Street
Denver, CO 80202
United States
Category
Audit, Risk & Compliance
Learner Objectives
After completing this session, the learner will understand:
  • ​What is a information security and privacy risk assessment
  • What is the value the risk assessment gives you, IT, and management
  • What tools are available to assist in conducting the risk assessment
 
Speaker Bio(s)
Dana P. Pearce is the Director Enterprise Risk, which encompass several areas including Information Security and Privacy.  Ms. Pearce is a Certified Internal Auditor, Certified Fraud Examiner, Certified Information Systems Auditor, and certified in Risk Management Assurance.  Ms. Pearce has over fifteen years of risk experience in both the public and private sectors.
Sorting Order
6