The Missing Link – a Universal Security Capability Model

Event Date / Time: 11th June 2019 – 5:30pm to 8:00pm (AEDT)

 

Most organisations have a consistent need for adjusting to changing market conditions and new customer demands if they want to survive in the long run. As business objectives and priorities are being adjusted as in response to the market, organisations need to adapt and fine tune their business capabilities, including their security services. Security service gaps need to be identified and immature services need to be optimised, in order to survive the constant battle for supremacy.

From a security perspective, one of the challenges for organisations often appears to be that they have immature processes in place to quickly adjust their business, including their security services. While SABSA provides a mature methodology for the delivery of security architecture, organisations often struggle to implement a framework around it that optimises the delivery process itself. Further tools and processes need to be developed to address this issue and assist organisations in maturing and adjusting their security services faster and in a more efficient way. One of these tools could be security capability model that complements the idea of a security service catalogue by providing a pre-defined security service taxonomy through the definition of meaningful security capability domains.

In this session we will be looking at a an organisation independent security capability model that defines a well-structured set of security capability domains and associated security capabilities. This model, as part of an Enterprise Security Architecture Framework, can assist larger organisations in more systematically assessing, communicating and transforming their security services landscape. The presented security capability model is based on experience gained through the implementation of similar models at various organisations across different industries. It has also been analysed against various control frameworks and their grouping of controls, which we also touch on.

At the end of this session, participants should be able to understand the value of such a reference model and how it can be utilised within an organisation.

The key takeaway from this session will hopefully be a new viewpoint of looking at the importance of security governing structures when faced with the challenge of more systematically and efficiently maturing an organisations security architecture service landscape.

CPE Hours

1.5 hours, based on the assumption you have signed the attendance sheet when attending

 

Registration and Admittance

  • Due to our sponsoring partner’s facilities, access requirements and for catering purposes, we request that you register for this event to ensure you are able to attend.
  • Registration to this session is open and free of charge to all current and prospective ISACA members.
  • If you registering please do attend, this is very important for the Chapter and the Sponsors.
  • A registration door prize will be drawn from the list of duly registered attendees

 

Agenda

·         5.30pm – Registration and session sign-in – required to receive applicable CPE credits

·         6:00pm – START – Welcome, Introductions, Agenda

·         6:05pm – Monthly PD Session, Questions & Answers

·         6:50pm – The Soapbox – Chapter Updates, Announcements and Issues of interest to members

·         7:00pm – 15min Topic presentation

·         7:15pm – Networking opportunity – drinks and finger food to be served

·         8.00pm – Event Ends

 

About the Speaker

 

Andreas E. Dannert,

Enterprise Security Architect at nbn

 

Andreas is an Enterprise Security Architect for Australia’s national broadband network (nbn), which is a government owned enterprise. At nbn he is responsible for defining nbn’s Security Strategy and Roadmap across the organisation.

Prior to nbn, Andreas has worked for Deloitte and HSBC in the role of Enterprise Security Architect, developing Enterprise Security Architecture Frameworks and Enterprise Security Architecture solutions.

In addition to his work at nbn, Andreas is currently the Research Director on the ISACA Melbourne Chapter board and an industry advisor to various organisations, like the Victorian’s Government Box Hill Institute and the Security Architecture Working Group of the IoT Alliance Australia. He is also running monthly workshops for security architects in Melbourne that allow attendees to explore ideas and challenges they face when developing and implementing security architecture solutions.

Before working for nbn and Deloitte, Andreas has worked eleven years for Accenture, with clients in Europe, Asia and Australia, delivering and providing training in Technical Architecture to various clients across different industries.

Andreas holds a Master of Computer Science degree from the Technical University of Berlin/Germany, is a Certified Information Systems Auditor (CISA), GIAC Security Essentials certified (GSEC exp.), ITIL Foundation certified, and a SABSA certified (SCF) professional.

WHY PEOPLE CHANGE HAS TO BE EVERYONE’S BUSINESS – GAME ON!

Event Date / Time: 14th May 2019 – 5:30pm to 8:00pm (AEDT)

When change is volatile, uncertain, complex and ambiguous –

When constant change is the new black –

We cannot rely on a select few to manage the people side of change.

This presentation describes the brave new world we are in right now or are about to be faced with.

When change is fast and iterative and subject to alteration in outcomes itself, how do you manage the people side of change.

How do you communicate and engage when the outcomes are not yet known. You can’t!

We have to stop talking about resistance to change and start talking about resilience.

You will learn why we need to simplify the roles involved in the people side of change and how change has to be everyone’s business. That means YOU.

 

What they are saying:

“Karen’s presentation challenged conventional wisdom about organisational change. Her thought provoking material had participants talking about the content long after her presentation ended. If you missed it at Convergence in Melbourne in 2018, then be sure to catch it when you can.”
– Lena Ross – Author, Hacking for Agile Change

 

“Karen’s presentation simplified the roles needed in organisational change management. Her soccer analogy resonated with everyone in the room. It was clear what was needed to build a resilient workforce and a winning team.”
– Adrian Amore, Owner Icomm Australia

 

CPE Hours

1.5 hours, based on the assumption you have signed the attendance sheet when attending

 

Registration and Admittance

•           Due to our sponsoring partner’s facilities, access requirements and for catering purposes, we request that you register for this event to ensure you are able to attend.

•           Registration to this session is open and free of charge to all current and prospective ISACA members.

•           If you registering please do attend, this is very important for the Chapter and the Sponsors.

•           A registration door prize will be drawn from the list of duly registered attendees.

 

Agenda

·         5.30pm – Registration and session sign-in – required to receive applicable CPE credits

·         6:00pm – START – Welcome, Introductions, Agenda

·         6:05pm – Monthly PD Session, Questions & Answers

·         6:50pm – The Soapbox – Chapter Updates, Announcements and Issues of interest to members

·         7:00pm – 15min Topic presentation

·         7:15pm – Networking opportunity – drinks and finger food to be served

·         8.00pm – Event Ends

 

About the Speaker

 

Karen Ferris

Organizational Change Management Rebel With A Cause

https://karenferris.com

 

Karen is a self-professed organisational change management rebel with a cause.

Acclaimed internationally as an author and speaker, with industry acknowledgement of her reputation as a Thought Leader, she provides both strategic and practical advice and insights to her audiences.  Her ability to share her experience and knowledge ensures that everyone is empowered to make a difference within their organisation.

In 2011, Karen authored the acclaimed publication ‘Balanced Diversity – A Portfolio Approach to Organisational Change’ introducing a new and innovative framework for ensuring that service management changes become embedded into the fabric of the organisation.

This year saw the publication of Karen’s second book “Game On! Tactics to Win When Leading Change is Everyone’s Business”.  In this book, Karen introduces us to the tactics needed to be resilient and successful – tactics that enable you and your organization to triumph in the face today’s challenges of constant change.

In 2014 itSMF Australia bestowed her with the Lifetime Achievement Award for her contribution to the industry. For the last three years she has been voted one of the top 25 thought leaders in service management by HDI. In 2017 the Business Relationship Management Institute presented her with a Global Excellence Award and in 2018 CMI awarded her the Rebel Award for “The person breaking all the rules to make things better for all”

Cyber Skills Shortage – “What skills are in short supply and what are your options?”

This year’s Oceania Leaders Convention (OLC) is scheduled to take place on 6-7 April in Melbourne. The ISACA Melbourne Chapter invites members and fellow industry professionals to welcome ISACA Oceania Presidents, Vice Presidents and ISACA International Delegates.

Agenda
Friday 5th April 2019
5:30pm Registrations Open

6pm – 7pm

Cyber Skills Shortage

“What skills are in short supply and what are your options?”

Panel Members

Mitra Minai
Head of Technology Specialist Controls, NAB

Daniel Newby
Cyber Assurance Professional and Data Evangelist

Paul Edwards
Founder and Principal, Lead Upwards

Prof Matt Warren
Professor of Cyber Security, School of Information Technology, Deakin University
Deputy Director of the Deakin University Centre for Cyber Security Research and Innovation

 


7pm – 8pm

ISACA 50th Anniversary Trivia
& Networking

To celebrate 50 years of ISACA, the Melbourne Chapter
is organising a team based trivia opportunity.
Great prizes to be won.

 

 Event Details

Friday, 5th April 2019
5:30pm sign-in 
for a 6pm to 8pm
at Pan Pacific Hotel

2 Convention Centre Place South Wharf,
Melbourne Victoria 3006 Australia

Drinks and Canapés will be served during the networking segment.

This event is 1.5 CPEs.