Building a risk-based Information Security Management System (ISMS): Combined IITPSA/ISACA event 3 March 2016

Please diarise the date and time for the first joint IITPSA and ISACA SA Chapter Meeting in the Western Cape:

Date: Thursday, 3rd March 2016
Time: 17h00 for 17h30
Venue: Santam Head Office, 1 Sportica Crescent, Tygervalley, 7530 (Map to Santam Head Office)

Agenda:

1. 17h30 – 17h35: Introduction and welcome

2. 17h35 – 17h40: Moira de Roche (Director – IITPSA): IITPSA News and updates

3. 17h40 – 17h45: Arlene Volmink (Western Cape Regional Coordinator – ISACA SA): ISACA SA News and updates

4. 17h45 – 18h30: Patrick Ryan (MD, Mobius Consulting): Building a risk-based Information Security Management System (ISMS)

An Information Security Management System (ISMS) is a way to protect and manage information within an organisation based on a risk based approach. The ISO 27001: 2013 standard provides the requirements for establishing, implementing, maintaining and continually improving an ISMS. The ISO 27001 standard can often be misunderstood and may not always be interpreted in the correct manner.

Based on this, Mobius have developed a practical approach to implementing an ISMS. The objective of this presentation will be to provide:

• An overview of the ISO27001 standard;
• A practical approach as well as guidelines to consider when implementing an ISMS; and
• An overview of key artefacts to consider when developing an ISMS.

Patrick Ryan (CISM, CISA, CRISC, ITIL) has 18 years of IT management consulting experience which has provided insight into a multitude of industries, business practices and technologies.

Prior to starting Mobius Consulting Patrick headed KPMG’s global methodology development for IT governance and sourcing and was the partner in charge of the KPMG Cape Town IT Advisory practice.

Patrick’s practical approach helps clients resolve their IT risk and compliance problems and “actualise change”. Patrick key focus areas are information security and IT governance.

5. 18h30 – 18h35: Closing remarks

6. 18h35 – 19h30: Networking and refreshments

We encourage you to extend this invitation to a colleague who is not currently a member of the IITPSA or ISACA.

Please note:

• Remember that attendance at chapter meetings counts towards CPE / CPD hours.
• These meetings are free of charge to all members and their guests; there is no charge to attend.
• Book your seat by no later than 12:00hrs on Monday, 29th February 2016: Online Registration.

Please remember that attendance at these events have cost implications for the chapter. We respectfully ask members not to arrive at events unless you have confirmed your attendance by the due date. Likewise, if you have confirmed your attendance, please endeavour to attend the event.

NOTE: By attending this event, the registrant grants permission to be photographed/audio-taped/video-recorded during the event. The resulting photographs/audios/videos may be used by ISACA SA and IITPSA for future promotion of ISACA SA and IITPSA’s educational events on ISACA SA and IITPSA’s website, social media pages and/or in printed promotional materials. By attending this event, the registrant consents to any such use. The registrant understands any use of the photographs/audios/videos will be without remuneration. The registrant also waives any right to inspect or approve the aforementioned use of any photographs/audios/videos now or in the future.