TOPIC:
Corporations spend millions of dollars every year to ensure against external security threats, but what about internal threats?  Statistics show that companies lose more assets to internal fraud than intrusion hacking.  A good deal of those losses have resulted from a single employee with too much application access, where that employee is performing several high risk processes in an uncontrolled environment.  This session will describe the methods used to detect, mitigate and control segregation of duty issues.

WHEN:
Friday, February 26th 2010
11:30 – 12:00 Networking
12:00 – 1:00 Speaker

WHERE:
The Council on Developmental Disabilities
1151 S. 4th Street (map)
Louisville, KY 40203
http://www.councilonmr.org/
(502) 582-1995

Parking is available across the street in the old Winn-Dixie lot.

COST: FREE – 1 Hour of CPE (Pizza provided for lunch)
Please RSVP to meetings@isacaky.org before February 24, 2010 at 5pm.

BIO:
Nancy Burns, CISA, has worked in Information Technology for 39 years, the past 21 years at Brown-Forman Corporation.  Over her career, she has held several management positions in IT including technical support, network management, telecommunications, operations and IT auditing.  Her experience with segregation of duty issues began with the Sarbanes-Oxley Act where she managed a large project to mitigate over 15,000 SoDs.  Today, Ms. Burns is Brown-Forman’s IT Compliance Analyst, which includes the monitoring and resolution of SoDs, as well as control compliance and testing.