The Using IT Frameworks for Security Workshop
Overview
This half-day workshop provides you with an overview of how to use IT best practice frameworks to achieve your IT governance, compliance, security, and risk management objectives. The workshop is led by a certified information security professional and is divided into three segments.
The initial segment of this half-day workshop is focused on education covering:
- ISO 27002 (formerly ISO 17799) framework for information security management
- ISO 27001 auditing standard for information security management
- ISO 20000 best practices framework & standard for IT Services Management (ITSM)
- ITIL (Information Technology Infrastructure Library) best practices framework
- COBIT (Control Objectives for Information and related Technology) framework
- COSO framework for enterprise risk management (Committee of Sponsoring Organizations of the Treadway Commission)
In the second segment of the workshop, we will focus on how the frameworks align and support each other via documents that illustrate the mappings between them.
The final segment of the workshop is focused on how best to use the frameworks to govern information security.
Who Should Attend?
This workshop is designed to advance the knowledge and skills of:
- Information Security Managers and Executives
- Chief Security Officers (CSOs)
- Chief Information Security Officers (CISOs)
- Auditors
- And other professionals involved in the governance of information security
Prerequisites
Attendees should be fairly knowledgeable about the security practices of their organization to properly benefit from this workshop.
Class Requirements
Attendees are encouraged, although not required, to bring a laptop with Microsoft Office so they can follow along with the presentation materials and mapping documents that are provided on a CD.
The Instructor
Gary Sheehan, CISSP, HISP, is a managing consultant with Wolcott Group. Gary’s practice at Wolcott is focused on information security and risk management and using the best practice frameworks and standards to help clients achieve effective holistic security and good IT governance. He is a subject matter expert in the area of information security governance with 20 years of experience in security policy, awareness, process implementation, vulnerability management and security project management.
Throughout his career, Gary has worked for a number of large companies in the banking, insurance, diversified industrial, manufacturing, and chemical industries. He has successfully executed large, global security projects and implemented enterprise-wide security policies at a number of companies. Gary is currently the President of the Northern Ohio Members Alliance of InfraGard and founder of the Information Security Summit.
As a recognized security expert, Gary has presented topics at Computer Security Institute's annual conference, InfoSec World, OKIT and at many regional conferences and seminars. In 2003 Gary received the Northern Ohio Chapter of InfraGard’s Linda Franklin award for his dedication and outstanding service to the chapter. Under his direction, the Information Security Summit has raised and distributed over $90,000 to area organizations such as ISACA, InfraGard, ISSA, BEPA, Cuyahoga County Police Chiefs Association, Cleveland HoneyNet Project, NEO InfoSec Forum and ASIS.
Gary has a Bachelors degree in Business Administration from Baldwin-Wallace College and is a 2006 graduate from the FBI Citizens Academy.
The Investment
The investment for this half-day workshop, which includes documentation on how IT frameworks map to security, and provides 3.0 hours of CPE credits, is $1,995 for groups of up to 50 personnel.
For more information or to inquire about scheduling this workshop for a group at your offices, send us an email at training@wolcottgroup.com.