Whe

re G

over

nanc

e an

d Ri

sk M

anag

emen

tAl

ign

for I

mpa

ct

EARN

UP

TO 1

8 CP

E CR

EDIT

S

SAVE

US$

200

WHE

N Y

OU

REGI

STER

BY

JUN

E 18

, 201

8!

ww

w.is

aca.

org/

GRC2

018D

M

GRC

CONF

EREN

CE 2

018

AU

G.

13-1

5, 2

018

|

N

AS

HVI

LLE,

TN

, U

SA

2018 Governance, Risk, and Control ConferenceMany of the best and brightest minds in business, IT, and information systems governance, risk and control gather at GRC each year. Advance your knowledge and join these leaders at the 2018 conference. The innovative event is presented by two of the most respected and globally recognized associations in the information systems and technology field—The IIA and ISACA®.

Advance Your Knowledge and Gain New Insights 2018 GRC offers many opportunities for you to learn proven solutions for aligning governance and risk management, which you can take back and implement at your enterprise. This conference, which reached full capacity in the previous years, takes place Aug. 13–15 at The Omni Nashville, in Nashville, Tennessee, USA.

Highlights of 2018 GRC include:

• Thought-provoking speakers who share real-world experiences and solutions.

• Innovative ideas to move your enterprise and your career forward.

• Customized learning to meet your needs.

• Networking with global professionals.

• Earn up to 18 CPE hours, plus 7.5 more for a pre-conference workshop.

Find the Solutions You Need Customize your experience. Choose from more than 40 sessions and workshops led by recognized experts. Select the learning that is best for you from four dynamic tracks:

• Cyber (Security, Resilience, Mitigation)

• Governance, Risk and Compliance

• Leadership, Career and Communication Development

• Deep Dive Learning Labs

Stay at the Heart of the Conference Action!

The Omni Nashville250 5th Avenue SouthNashville, TN 37203, USAHotel Reservations: 615-782-5300

Enjoy the authentic feel with exceptional service as you participate in 2018 GRC sessions and activities. Located in downtown, The Omni Nashville property blends seamlessly into the local culture while featuring four-diamond services, signature restaurants and unique wellness options.

Your 2018 GRC conference registration includes: • All general and concurrent sessions.

• Complimentary continental breakfast daily.

• Complimentary lunches Monday and Tuesday.

• Welcome networking reception on Monday.

• Conference app with presentations uploaded (when available from speaker).

Bring your coworkers! Organizations that send 4 or more employees to 2018 GRC receive a group discount. For details contact +1.847.660.5505 or https://support.isaca.org.

Special Discounted Room Rates for Conference Attendees! Special hotel rates of US$253 per night plus tax are available if booked by July 12. To obtain the preferred rate, mention that you are attending the 2018 GRC Conference.

Some restrictions apply.

See details at www.isaca.org/GRC.

Conference Members and Registration Fees Nonmembers CPE

Early Bird – register by June 18 US$1,350 18

Regular – through July 30 US$1,550 18

Late – after July 30 US$1,650 18

Pre-conference Workshops (each) US $550 7.5

Save US$200 if you register by June 18, 2018!

The IIA and ISACA are registered with the National Association of State Boards of Accountancy (NABSA) as sponsors of continuing professional education on the National Registry of CPE Sponsors. State boards of accountancy have final authority on the acceptance of individual courses for CPE credit. Complaints regarding registered sponsors may be submitted to the National Registry of CPE Sponsors through its website: www.learningmarket.org. IIA and ISACA certification holders are required to earn a minimum number of CPE credit hours in order to maintain their designations.

Attendees can earn up to 18 CPE hours by attending this conference and an additional 7.5 credits for attending optional pre-conference workshops. This conference is Group Live and does not require advanced preparation.

GRC Reached Full Capacity in Previous Years.Space is limited — please reserve your spot soon!

Register today!

www.isaca.org/GRC2018DM

1700

E. G

olf R

oad,

Sui

te 4

00S

chau

mbu

rg, I

llinoi

s 60

173,

US

A

370

Join Us in Nashville, TN, USA

GRCCONFERENCE 2018

Where Governance and Risk ManagementAlign for Impact

EARN UP TO 18 CPE CREDITSSAVE US$200

WHEN YOU REGISTER BY JUNE 18, 2018!

www.isaca.org/GRC2018DM

AUG. 13-15, 2018 | NASHVILLE, TN, USA

EDUCATIONAL SESSIONS

Monday, Aug. 13EDUCATIONAL SESSIONS

Tuesday, Aug. 14PRE-CONFERENCE WORKSHOPS

Sunday, Aug. 12EDUCATIONAL SESSIONS

Wednesday, Aug. 15

Track 1: Cyber (Security, Resilience, Mitigation)

Auditing Identity Access Management

Auditing Mobile Device Management

Preventing the Next Digital Black Swan: The Auditor, The CISO and The C-Suite

For Whom The Web Trolls: Social Media Risk in Your Organization

Cybersecurity is Not an IT Problem—Creating a Resilient Security Culture Through Human Interaction

Track 2: Governance, Risk and Compliance

How to Design and Implement an Adaptive IT Compliance Function

Does Auditing Governance Mean Auditing Culture?

Auditing 3rd Party Business Partners for Fraud and Corruption Across the Globe

Digital Transformation—Is Internal Audit Ready?

Using Data to Perform Corporate Risk Assessments

Track 3: Leadership, Career and Communication Development

Building Your Brand and Exceeding Stakeholder Expectations

Leading with Emotional Intelligence

The War on Talent—Attracting, Developing and Retaining Top Talent

Using Diversity as a Strategic Advantage

Unlocking Team Collaboration

Track 4: Deep Dive Learning Labs

Building and Maintaining a Sustainable ERM Framework (Part 1 & Part 2)

Enterprise Content Management: The Created Risk (Part 1 & Part 2)

Auditing the Cloud: A Practical Approach (Part 1)

Track 1: Cyber (Security, Resilience, Mitigation)

No Silver Bullets: Cybersecurity in the Cognitive Era

Increase the Trust in Internet of Things (IoT) through Auditing

Measuring and Improving Your Security Effectiveness

Advancing IT Audit’s Capabilities to Conduct Cybersecurity Audits

Shedding Light on the Dark Web

Track 2: Governance, Risk and Compliance

Breaking Down the Walls: ERM at the U.S. Marshals Service

Business Interruption Study Recommendations —Redundant Capacity vs. Resilience

Meet Multiple Regulatory Requirements and Utilize Best Practices More Effectively and Efficiently with a Common Control Framework

GDPR: The Deadline Has Passed—How Did You Do?

Agile and Compliance

Track 3: Leadership, Career and Communication Development

Evaluating the Ethical Risks of AI Implementation for Your Organization

The Psychology of Successful Internal Auditing—Navigating Stakeholder Relationships for Optimal Business and Career Results

Storytelling: Improving the Audit Process to Communicate Better

Why Don’t They Listen? You Aren’t Persuading!

The Bridge of Integrity: Am I All In?

Track 4: Deep Dive Learning Labs

Auditing the Cloud: A Practical Approach (Part 2)

The Keys to the Kingdom—Access Controls and Ways to Improve (Part 1 & Part 2)

Improving Your ERM Program Using Six Sigma (Part 1 & Part 2)

2018 Governance, Risk, and Control Conference

OPENING KEYNOTE: 8:30 – 9:45 a.m.

Disruptive Thinking: How to Prepare for What’s Coming NextChange your thinking and you can change everything in your field. See the world through the eyes of opening keynote speaker and authority on disruptive innovation Luke Williams.

The future we face will not be predictable. The scale of the challenges we confront and the quickening speed of technological innovation demands a new way of opening minds to new strategies. Winning organizations in the next decade will need to rethink the habits that have made them successful in the past and incorporate a steady stream of unconventional ideas to stay ahead of their competitors.

GENERAL SESSION: 8:30 – 9:45 a.m.

COSO ERM: Integrating with Strategy and PerformanceIn this session, participants will:

• Hear about the components and principles that comprise the updated Framework.

• Discover how the Framework impacts internal audit’s assurance and advisory activities.

• Understand their role in managing risk in uncertain times.

• Learn how to use the Framework to identify, assess, and manage specific groups of risks.

• Explore ways to advance risk management in their organization.

8:30 a.m. – 5:00 p.m.

COBIT® NIST Cybersecurity Framework Limited capacity: only 50 seats available!Prerequisites: Basic knowledge of COBIT and security concepts

As part of the knowledge, tools, and guidance provided through ISACA’s Cybersecurity Nexus™ (CSX), ISACA has developed a guide and course: Implementing NIST Cybersecurity Framework Using COBIT® 5. This workshop is a synopsis of that course, focusing on the Cybersecurity Framework (CSF), its goals, the implementation steps, and the ability to apply learnings.

After completing this workshop, you will be able to:

• Understand the goals of the NIST CSF.

• Learn and discuss the content of the CSF and what it means to align to it.

• Understand each of the seven CSF implementation steps.

• Be able to apply and evaluate the implementation steps using COBIT 5.

8:30 a.m. – 5:00 p.m.

Auditing Technology Disruptors Limited capacity: only 50 seats available!

New and emerging technologies are revolutionizing the way work gets done. This will require internal auditors to rapidly transform what we audit, how we audit, and the skills we need. Audit leaders must be able to sort through multiple technology initiatives, identify accelerating innovation, and reshape internal audit. This collaborative workshop will share one department’s lessons learned and its ongoing journey in this endeavor.

In this workshop, participants will:

• Discuss emerging technologies and the potential impact they can have on organizations, including governance, risk, and controls.

• Review how to prepare their organizations and teams for the audits of the future.

• Exchange strategies and tools for leveraging these same disruptors as audit tools to foster positive outcomes.

Facilitator Mark Thomas, CGEIT, CRISCPresidentEscoute Consulting

Facilitator Thomas Sanglier, CIA, CPA, CRMA Senior Director of Internal AuditRaytheon Company

Facilitator Jennifer Allen, CIA, CISA, CFE, GRCPManager II of Internal AuditRaytheon Company

Facilitator Rob Clyde, CISMManaging Director Clyde Consulting, LLC

Keynote Speaker Luke WilliamsProfessor of Marketing at NYU Stern School of Business; Founder and Executive Director of the W.R. Berkley Innovation Labs

Keynote Speaker Paul Sobel, CIA, QIAL, CRMAVice President, CAE Georgia-Pacific, LLC

10:15 – 11:30 a.m.

Governance in the Age of CyberEvery day, we hear news reports of another organization being breached. We find ourselves asking, “Who’s next?” The stakes are too high for the board, the C-suite, and internal audit to wait until after a breach occurs to conduct a post-mortem of the attack. To provide value—and potentially protect our organizations from failure—governance bodies need to be proactive.

In this session, participants will:

• Learn about cyber trends and classic breach tactics.

• Gain an understanding of effective security and controls.

• Discuss the evolving roles of the board, the C-suite, and internal audit in the age of cyber.

8:30 – 9:45 a.m.

The Role of Governance in Shifting Digital Times In this session, participants will:

• Understand the relationship between strong governance and future innovation and agility.

• Identify technologies that are leading the digital transformation and changing how we do business.

• Learn about the COBIT governance framework’s past and current contributions to enterprise strategy, as well as its path forward.

• Discuss what innovations and opportunities we may see in the future of governance.

Keynote Speaker Terry Grafenstine, CISA, CGEIT, CRISC, CPA, CISSP, CIA, CGMA, CGAPManaging DirectorRisk and Financial AdvisoryDeloitte & Touche LLP

10:15 a.m. – 5:30 p.m.10:15 a.m. – 5:30 p.m.

REGISTER BY JUNE 18 AND SAVE US$200!

Learn the latest and register at

www.isaca.org/GRC2018DM

Speakers and sessions are subject to change without notice.