Chapter Overview
The Central Virginia Chapter of ISSA was founded in 2006 and is part of the national Information Systems Security Association (ISSA) (http://www.issa.org). The ISSA has more than 13,000 individual members and more than 100 chapters around the world. ISSA is the largest international, not-for-profit association for information security professionals. It provides educational forums, information resources and peer interaction opportunities to enhance the knowledge, skill and professional growth of its members. ISSA works closely with other industry organizations such as (ISC)2, ASIS, and ISACA. We welcome new members to the Greater Richmond/Central Virginia ISSA Chapter.
|
Meeting Date* |
Topic |
| Jan 11 | Transforming Security from an Operational to a Strategic Role |
| Feb 8 | Malware Threats |
| Mar 14 | GE’s Information Security Technology Center (ISTC) in Glen Allen |
| April 11 | Practical Android Security |
| May 9 | Mobile Device Risk Assessment |
| June 13 | TBD |
| July 11 | TBD |
| Aug 8 | TBD |
| Sept 12 | Developing a Software Security Assurance Program |
| Oct 10 | Secure Processors & Hardware Security Modules |
| Nov 14 | TBD |
| Dec | SOCIAL EVENT, Date TBD |
May Meeting
Click here to register for this month’s meeting.
Date: May 9th, 1130-1PM
Location: Maggiano’s
Title: Mobile Device Risk Assessment
Speaker: David Frei, Digital and Information Security Specialist
With the consumerization of IT, organizations everywhere are feeling the pressure to incorporate a broader spectrum of mobile devices into the corporate environment. Meanwhile, the threat environment for mobile devices is unique and changing, and security capabilities are lagging behind mobile functionality. In order to successfully incorporate a broader variety of mobile devices into the corporate environment, organizations must thoroughly assess the risks and develop a risk mitigation plan.
This session will review available risk assessment models, unique considerations when conducting a risk assessment for mobile devices, as well as a case study of a recent mobile device risk assessment.
David Frei is a member of the Capital One IS Audit team, serving as Digital and Information Security Specialist. David brings 10 years of experience from KPMG providing security advisory, IT attestation, and external audit services to various clients in Financial Services, Insurance, Consumer Products, Healthcare, Energy/Mining, Telecommunications, Federal, and Local Governments. His certifications include: Certified Information Systems Security Professional (CISSP) and Certified Information Privacy Professional (CIPP).
David has strong information security/digital experiences that include assessing mobile devices and applications, consulting on information governance frameworks, performing sensitive data flow analyses, assessing security and privacy controls to prevent and detect data loss across the information lifecycle, developing and evaluating Information Security Management Systems and third-party vendor risk assessment programs, performing vulnerability assessments, and managing IT and business process components of internal controls readiness and attestation projects.
