Upload File

peter t. davis principal peter davis+associates

20
Is IT Compliance A Profession? A Workshop on Refining Our Common Body of Knowledge, Skills and Ethics Peter T. Davis Principal Peter Davis+Associates

Upload: eilis

Post on 20-Mar-2016

51 views

Category:

Documents


2 download

Report

Tags:

DESCRIPTION

Is IT Compliance A Profession? A Workshop on Refining Our Common Body of Knowledge, Skills and Ethics. Peter T. Davis Principal Peter Davis+Associates. The Need. Is compliance a profession or a job? Is there a need for a certification? Should the ITCi offer the certification? - PowerPoint PPT Presentation

TRANSCRIPT

Page 1: Peter T. Davis Principal Peter Davis+Associates

Is IT Compliance A Profession? A Workshop on Refining Our Common Body of Knowledge, Skills and Ethics

Peter T. Davis PrincipalPeter Davis+Associates

Page 2: Peter T. Davis Principal Peter Davis+Associates

IT COMPLIANCE CONFERENCE 2007 | Your Presentation Title Goes Here—To edit, go to View>Header and Footer P. 2

The Need Is compliance a profession or a job? Is there a need for a certification? Should the ITCi offer the certification? Or should they partner with someone else?

Page 3: Peter T. Davis Principal Peter Davis+Associates

IT COMPLIANCE CONFERENCE 2007 | Your Presentation Title Goes Here—To edit, go to View>Header and Footer P. 3

Professional Requirements Professions require

1. Code of Ethics2. Body of Knowledge3. Testing on the body of knowledge4. Regulation

Page 4: Peter T. Davis Principal Peter Davis+Associates

IT COMPLIANCE CONFERENCE 2007 | Your Presentation Title Goes Here—To edit, go to View>Header and Footer P. 4

Qualifications Experience

— Years— Disciplines

Exam Code of Ethics Sponsor Grandfathering?

Page 5: Peter T. Davis Principal Peter Davis+Associates

IT COMPLIANCE CONFERENCE 2007 | Your Presentation Title Goes Here—To edit, go to View>Header and Footer P. 5

COMPBOK What is included in the Body of Knowledge? What will we call it? Do you think people would respond to a survey on job

specifications? Should ITCi go for ANSI certification?

Page 6: Peter T. Davis Principal Peter Davis+Associates

IT COMPLIANCE CONFERENCE 2007 | Your Presentation Title Goes Here—To edit, go to View>Header and Footer P. 6

Suggested Table of Contents Management principles IT Governance Laws and regulations Records management Ethics Security Privacy Risk management Control self-assessment Investigations Performance management

Page 7: Peter T. Davis Principal Peter Davis+Associates

IT COMPLIANCE CONFERENCE 2007 | Your Presentation Title Goes Here—To edit, go to View>Header and Footer P. 7

Management Principles Processes and Business process mapping Controls and testing PlanOrganizeStaffDirectControl and PDCA/PDSA and

DMAIC/DMADV Organizational and committee structure Marketing; influence without authority Budgeting Awareness and training Policy framework

Page 8: Peter T. Davis Principal Peter Davis+Associates

IT COMPLIANCE CONFERENCE 2007 | Your Presentation Title Goes Here—To edit, go to View>Header and Footer P. 8

IT Governance COBIT ITIL ISO 27000 M_o_R CRAMM MSP PMBOK PRINCE2 CMMI Six Sigma

Page 9: Peter T. Davis Principal Peter Davis+Associates

IT COMPLIANCE CONFERENCE 2007 | Your Presentation Title Goes Here—To edit, go to View>Header and Footer P. 9

Laws and Regulations Legal concepts, e.g., evidence, eDiscovery Which ones?

— SOX/Bill 198— HIPAA— GLBA— PCI DSS— Privacy— Electronic evidence; e.g., FRCP

Page 10: Peter T. Davis Principal Peter Davis+Associates

IT COMPLIANCE CONFERENCE 2007 | Your Presentation Title Goes Here—To edit, go to View>Header and Footer P. 10

Records Management Legal requirements Guidelines Record retention policy Retention schedules Enabling technologies

Page 11: Peter T. Davis Principal Peter Davis+Associates

IT COMPLIANCE CONFERENCE 2007 | Your Presentation Title Goes Here—To edit, go to View>Header and Footer P. 11

Ethics “Tone at the Top” Legal and regulatory requirements Ethics topics Ethical fallacies and dilemmas Code of Conduct Ethics plan

Page 12: Peter T. Davis Principal Peter Davis+Associates

IT COMPLIANCE CONFERENCE 2007 | Your Presentation Title Goes Here—To edit, go to View>Header and Footer P. 12

Security CIA Compliance tools

Page 13: Peter T. Davis Principal Peter Davis+Associates

IT COMPLIANCE CONFERENCE 2007 | Your Presentation Title Goes Here—To edit, go to View>Header and Footer P. 13

Privacy Concepts Privacy enhancing technologies, i.e., PET

Page 14: Peter T. Davis Principal Peter Davis+Associates

IT COMPLIANCE CONFERENCE 2007 | Your Presentation Title Goes Here—To edit, go to View>Header and Footer P. 14

Risk Management Concepts Definitions Process Quantitative vs. qualitative

Page 15: Peter T. Davis Principal Peter Davis+Associates

IT COMPLIANCE CONFERENCE 2007 | Your Presentation Title Goes Here—To edit, go to View>Header and Footer P. 15

Control Self-Assessment Concepts Techniques Surveys

Page 16: Peter T. Davis Principal Peter Davis+Associates

IT COMPLIANCE CONFERENCE 2007 | Your Presentation Title Goes Here—To edit, go to View>Header and Footer P. 16

Investigations Organization Incident handling Forensics Reporting

Page 17: Peter T. Davis Principal Peter Davis+Associates

IT COMPLIANCE CONFERENCE 2007 | Your Presentation Title Goes Here—To edit, go to View>Header and Footer P. 17

Performance Management Process Definitions Metrics Reporting Maturity model?

Page 18: Peter T. Davis Principal Peter Davis+Associates

IT COMPLIANCE CONFERENCE 2007 | Your Presentation Title Goes Here—To edit, go to View>Header and Footer P. 18

Solicitation Would you like to help?

Page 19: Peter T. Davis Principal Peter Davis+Associates

IT COMPLIANCE CONFERENCE 2007 | Your Presentation Title Goes Here—To edit, go to View>Header and Footer P. 19

Questions and Answers

Page 20: Peter T. Davis Principal Peter Davis+Associates

Contact Information

Peter T. Davis, PrincipalPeter [email protected] 416-907-4041

Please Complete Your Session Evaluation

mailto:[email protected]

PETER O’BRYAN & Associates · 2017-02-13 · PETER O’BRYAN & Associates Consultants in mining geomechanics 11 Southport Street LEEDERVILLE WA 6007 PO Box 1157 WEST LEEDERVILLE

Peter Basso Associates Inc. Better design with AutoCAD MEP

Jennifer L Davis, EA, ATA, ATP Davis & Associates, Accountants, Inc

Strunk and Associates Sam Davis President … · Strunk and Associates Sam Davis President [email protected] Page 1 of 5 June 18, 2008 Jennifer J. Johnson Secretary Agencies of

Macgill Davis Brazil & Argentina Seminar Professor Peter ...macgill4444.github.io/Docs/Final_Brazil_Research_Paper_Macgill... · Macgill Davis Brazil & Argentina Seminar Professor

Peter Brett Associates - Cambridge City Council · ii Office Address: Project Ref 35389 Peter Brett Associates LLP disclaims any responsibility to the client and others in respect

Strategic Technology Planning Process And Leading Practices...Carol Davis-Smith, CCE, FACCE, AAMIF, is President of Carol Davis-Smith & Associates, LLC. A privately-owned consulting

Using Redis as Distributed Cache for ASP.NET apps - Peter Kellner, 73rd Street Associates

142 Davis-Baulch copy2 - ETH Z Davis-Baulch.pdf · Parallel realities: exploring poverty dynamics using mixed methods in rural Bangladesh Peter Davis Bob Baulch Department of Economics

PETER O’BRYAN & Associates - EPA WA · PETER O’BRYAN & Associates Consultants in mining geomechanics 11 Southport Street LEEDERVILLE WA 6007 PO Box 1157 WEST LEEDERVILLE WA 6901

From: Mark Davis, Peter Edberg Live Doc: … ·  · 2014-08-05From: Mark Davis, Peter Edberg Live Doc: ... X70D OWL common bird; ... Notes X800 SCOOTER high frequency on web X801

STATE OF NORTH CAROLINA · Web viewVolume Number Witness Affiliation Pages Volume I – August 30 Stephen E. Davis Stephen Davis 104-199 & Associates, Inc. Eugenia Tew Respondent

Russell S. Davis and Peter F. Flynn - chem.test.utah.edu

Presented by: Peter S. Browne Principal Manager Peter Browne & Associates, LLC ABA WEBCAST BRIEFING Foundations of Information Security

UC Davis Peter Moyle wise · Peter Moyle College of AgriCulturAl And environmentAl SCienCeS • uC dAviS • fAll/Winter 2009 ... ATER R ESOURCES UC Davis experts share new approaches

Peter Davis Builders, Inc. Building with Care, Integrity & Expertise since 1981

UNIVERSITY OF CALIFORNIA, DAVIS · UNIVERSITY OF CALIFORNIA, DAVIS Water Supply and Prospects in Baja California THESIS ... Jeffrey Peter Malinowski Approved:

Peter Brett Associates - Cambridge City Council...Cambridge and South Cambridgeshire Local Plan Examination Objectively Assessed Housing Need: Further Evidence Peter Brett Associates

EI Associates Progress · 2 Peter Ortiz, Vice President for EI Associates, hands Superintendent, Ron Grevera the symbolic groundbreaking shovel. 3 4 EI Associates and the Bensalem

Davis Polk & Wardwell LLP Key Regulatory Swaps Requirements Under Dodd-Frank Presented by: Julie Kourie Paul Means Davis Polk Associates June 13, 2013

XXX JSBO NBWBE DPN - dl.iran-mavad.comdl.iran-mavad.com/pdf95/Corrosion-of-Weldments_iran-mavad.com.pdf · Corrosion of Weldments Edited by J. R. Davis Davis & Associates ASM International®

Missouri algorithm: Design & objectives Peter Scharf University of Missouri Peter Scharf Newell Kitchen, Ken Sudduth, Glenn Davis, John Lory, Vicky Hubbard,

From: Mark Davis, Peter Edberg Live Doc: - Unicode … Mark Davis, Peter Edberg Live Doc: ... (eg, “shark” for ... white rim. May contain

Peter Clifton & Associates - EPA WA

Barry Milne, Peter Davis, Roy Lay-Yee, Jessica Thomas, Janet Pearson, Oliver Mannion

Russell S. Davis and Peter F. Flynn - nmrc.utah.edu · 1H and 13C NMR Assignments for Acetylsalicylic Acid (Aspirin) Russell S. Davis and Peter F. Flynn Acetylsalicylic Acid (Aspirin)

RED ROVER Team CPNE Crossen Davis Peter Ramer Nancy Robinson Eric Rodriguez

CJPAE C.J. PETER ASSOCIATES ENGINEERING (A52155) · cjpae c.j. peter associates engineering mechanical building services consulting engineers 201 - 2113 south ogilvie street, prince

Peter Chesson - Univerzita Karlovaweb.natur.cuni.cz/~botanika/herben/succisa/ChessonARES.pdf · Peter Chesson Section of Evolution and Ecology University of California, Davis, California,

Peter C. Fusaro Chairman, Global Change Associates New York

High flow nasal cannulae: Evidence base in preterm infants Peter Davis Melbourne Australia

Presented by: Peter S. Browne Principal Manager Peter Browne & Associates, LLC

McParlin Davis, Howard - Fantasy and Irony in Peter Bruegel's Prints

CJPAE C.J. PETER ASSOCIATES ENGINEERING

Commercial Investment in London · law firm Charles Russell Speechly ... Commercial Investment in London 7 ... Peter Brett Associates | Peter Dann Ltd | Peter Taylor Associates