Add to collection(s) Add to saved
  1. Engineering & Technology
  2. Industrial Engineering
  3. Supply Chain Management

File

advertisement 
1
President’s Message
Exciting Times
Issue #2
Fall 2015
Were you able to join us for our program year social mixer and
certifications awareness event in September?
Thank you!
Inside This Issue
The September event was a lot of fun. Attendees were able to
network, build professional relationships, and some lucky few
picked up some great door prizes. It was a great way to kick off
what I expect to be a great 2015-2016 program year.
1
President’s Message:
Exciting Times
Speaking of…
2
Get to know a member:
Brett Asmann
3
Save the date! Upcoming
program plans
4
Recent job board postings
5
Call for speakers and
sponsors
6
Job board
7
The Back Page
•
•
Our October 8th event is with a Joint event with the IIA
Portland, featuring Kimberly Lawrence who will be
presenting on BCP/DR. A special thank-you to Dana
Lawrence, who leads IIA Portland Programs, and Adam
Teuscher, ISACA Portland Programs Director, for their
help organizing. This event is quite popular, and sold
out early.
One key goal we have this year is to continue reaching
beyond our Portland home base. We are excited to
serve our friends down in the Willamette Valley with
our Salem 2015: IT Security, Fraud, Risk and Audit
Summit, which is coming up on November 17.
The Salem event will feature my friend Adam Kendall
Abplanalp, who runs Kendall Consulting, who will be
presenting on Fighting Fraud with Security: Strategies
for IT Security Controls to Prevent Internal and External
Fraud. Other featured speakers include Chris Cochran
with PGE offering insight on Earthquake preparedness,
Andrew Plato with Anitian who will present on
inspiring people to embrace risk management, and Thor
Ryan, CSO from the State of Alaska, Dept. of Health and
Social Services, speaking about Life after a Data Breach.
•
Looking towards the Fall, we have more great monthly
downtown luncheons. Our November 12 speaker is
Lauren Wallace, of counsel with Tonkon Torp. Lauren is
a real expert in Privacy, and works with quite a few
2
President’s Message (Continued)
technology companies around town. I am
looking forward to her presentation.
Another Fall presentation I am looking
forward to is Ngoni Murandu, Chief
Information Officer with Northwest Natural.
Ngoni will offer insights on the implications
of the internet of things.
These are some really great events, and I am
especially grateful for the volunteers who organize
and give presentations.
1
2
Get to know a member
Each issue, we interview a chapter member to understand what makes them tick.
In this issue, we would like to
introduce you to chapter member
Brett Asmann.
•
Tell us about your job. What do you do on
a day-to-day basis?
I'm the Quality Manager for ColumbiaCare
Services, which is a rapidly growing mental
health organization with about 400
employees. ColumbiaCare is a mental health
treatment agency that specializes in designing,
developing, and operating residential treatment
programs across Oregon and Idaho.
In addition to residential services, we also
provide comprehensive mental health
treatment, short-term crisis
stabilization, Veterans programs, and suicide
prevention services for adults and youth. Most
referrals are by way of State, Region, County
Mental Health agency, or the Veterans
Administration--however, we will process
private requests for services.
ColumbiaCare is in the business of changing
people’s lives and believes that by developing a
full continuum of care in the community, people
receive the most clinically appropriate treatment
based on individual needs, which in turn,
promotes personal success and independent
living.
Specifically, I am responsible for the overall
quality of our services, and also serve as the
Compliance Officer and HIPAA
Officer(including information security
oversight), and the companies liaison to Adult
Protective Services. What I do day-to-day is
different every day, which is why I like my job. I
conduct internal audits in various areas; deal
with Federal, State and Local regulators around
compliance issues; interact with clients and their
families about grievances and complaints;
consult with managers and staff about clinical
issues that are impacted by regulations; develop
and implement quality measures, data analysis;
and keep abreast of how our contracts and
finances impact our service delivery. I also so
some programming to accomplish some of these
tasks.
•
What do you enjoy the most about the
profession?
I like being able to help managers and staff to be the
best at what they do. My position allows me to
bring together all the skills I've learned over the 39
years of my career to make the lives of people with
mental illness better.
• How did you get into the profession?
When I didn't get into medical school I pursued my
minor in Psychology. I was licensed as a Marriage,
Family and Child Counselor in 1976 after I earned
my MA degree in Psychology. I worked early in my
career at private non-profits counseling delinquent
youth. I rapidly became involved in Mental Health
Administration which led me to working 20 years
for State government (Mental Health, and
regulating nursing homes). During those 20 years I
wrote legislation, developed an Access application
that was used by over 70 users statewide, and did a
great deal of data analysis. In my last job I manage a
quality improvement team that validated 88 quality
improvement projects for healthcare and mental
health plans in Oregon and Washington. During
that time I helped audit the information systems of
all the major healthcare and mental health
providers in Oregon and Washington. The CISA
working for me turned to me one day and said,
"You can do this you ought to get certified." So, I
did and that's how I became a CISA. I use those
skills and knowledge to make sure that
ColumbiaCare's protected heath information is
secure.
•
How have you develop your skills and stay on top of changes? Do you maintain any professional
certifications?
I maintain my CISA certification. I attend as many ISACA events, conferences, and trainings as my schedule
allows.
• What advice do you have to emerging professionals who are considering a career in the
profession?
Clearly, my career path is not been linear. But, that has become the norm. Back in the '70s I was told I would
have 5 or 6 careers. I have had more, but I'm using them all right now. My advice is to follow your interests
and your heart. Do something that is meaningful for you.
• Do you have a funny story involving IT security or audit you could share?
I was conducting audit of a major healthcare plan and was asking about their disaster recovery plan and
business continuity plan. One of the engineers piped up that he started to appreciate how important these
things are after the business next door had a small plane fall into their server room. They nearly went out of
business. I've used that story ever since.
2015-2016 Program Plans
Save the date! We have some big plans for next year.
The ISACA Board of Directors will be holding our annual chapter planning retreat this August, where we
will flesh out all of the details for the upcoming year. We have some exciting plans for the upcoming year,
and would encourage you to tentatively mark your calendars now.
•
Annual Social Mixer and Kickoff – Thursday September 17th – This event kicks off our program
year. It is a great opportunity to network with other ISACA members, and introduce colleagues to
the chapter. This year, the mixer will again be held at the Portland Marriott City Center.
•
Monthly downtown luncheons – Our primary monthly programs are held on the 2nd Thursday of
each month, between October 2015 – June 2016. Northwest Evaluation Association will continue to
serve as the generous location for these events. This program will continue to offer a professionally
catered lunch, and a high quality presentation.
•
ISACA Dinner on the Westside – Tuesday 5/24/15 – This new program format will
include professional networking opportunities, and then feature a high quality speaker
from 6:30 – 7:30PM. Dinner will be provided.
•
IT Audit and Security Summit in Salem – Tuesday November 17th - This annual event will feature
high quality professional education and networking for our Willamette Valley members.
•
ISACA Luncheon on the Westside – Tuesday January 19th – Expanding on our existing
downtown luncheon format, we plan to have a luncheon on the west side with a similar
format. Professional networking and a buffet lunch will be served, with a high quality
presentation following.
•
Information Security Essentials Course – Friday January 29th & Saturday January 30th –
Back by popular demand (we offered this course in 2013), we have arranged for Adam
Kendall Abplanalp to provide an intensive 2-day information security essentials course.
This course will cover the 10 domains of the ISC2 CISSP examination, and is a good option
for students preparing for the examination or just brushing up on information security knowledge.
•
Spring Training 2016 – Wednesday April 27th & Thursday April 28th - Building on the success of
the 2015 spring training, we will continue to hold this event at the Portland Community College
Rock Creek campus in Hillsboro.
•
CISM and CISA review courses - dates TBD – A core education offering of the chapter continues
to be CISM and CISA review courses. We traditionally offer the CISM review course in NovemberDecember, and the CISA review course in May-June, in an evening format taught by qualified
volunteers. We are also exploring the option of providing CSx certification training (CSx is the new
ISACA skills-based security certification).
Recent Job Board Postings
Sign up for ISACA Job Board updates via E-Mail or RSS feed to see who is hiring.
Company
Multnomah County
Ecova
Moss Adams
Portland Community College
Portland General Electric
Precision Castparts
Precision Castparts
Precision Castparts
PeaceHealth (Vancouver)
Legacy Health System
Nike
Nike
Nike
Nike
Deloitte
Deloitte
Perkins & Co
Perkins & Co
US Bank (Gresham or
Remote)
Providence Health & Services
Intel
Standard Insurance Company
US Department of Energy
Simple
Moss Adams
US Bank
Deloitte
Deloitte
Deloitte
Umpqua Bank
Umpqua Bank
Tripwire
NAVEX Global (Kruse Way)
Greenbrier
Umpqua Bank (Tigard)
Umpqua Bank (Tigard)
Position
IT Compliance and Security Analyst
Internal Audit Manager
IT Consulting Director
Firewall Team Lead
Financial & Risk Analyst
Forensic Analyst (Information Security)
Security Risk Analyst
Security Operations Analyst
Information Security & Integrity Specialist
Senior Information Security Officer
Change Manager (Information Security)
Director, Identity Access Management
Senior Web Application Security Engineer
Expert Cloud Security Engineer
Consultant -­‐ Cyber Risk Services
Internal Audit Transformation Senior Consultant
Audit Senior
Audit Manager
Third Party Risk Management Portfolio Manager
Internal Auditor Associate
Operations Risk and Controls Manager
Disaster Recovery Manager
Supervisory IT Specialist (Information Security)
Compliance Analyst
BRMCS Internal Audit Staff (2016)
Risk Manager
Senior Consultant, IT Audit (Seasonal)
Cloud Security Manager -­‐ Cyber Threat Management
Cyber Risk Technical Architect
Analytics Governance Analyst
Senior Analysitcs Governance Analyst
Engineering Manager (InfoSec Background)
Network & Security Engineer
IT Audit Manager
IT Audit Manager
Model Enterprise Risk Auditor
The Back Page
The Willamette Valley Chapter of ISACA represents IT Security,
Audit and Compliance Professionals in the Oregon/SW
Washington region. This chapter is one of more than 180
international chapters.
Your Board of Directors
The chapter is represented by a member-elected board of directors as
well as volunteer committees formed for special purposes.
Members benefit from discounted materials developed by ISACA
International, regular continuing professional education, and excellent
opportunities to network with professionals in the field.
The chapter hosts luncheon programs and coordinates technical
seminars designed to provide networking and professional education
opportunities, and serves as a conduit for information from the
International ISACA organization.
We invite you to explore the chapter website at www.isacaoregon.org, attend a luncheon, or contact the chapter to get involved!
Contact the chapter board:
board@isaca-oregon.org
Dave Dyk - President
ddyk@isaca-oregon.org
Janice Richards - Immediate Past President
jrichards@isaca-oregon.org
Raymond Neville - Vice President
rneville@isaca-oregon.org
Adam Nasset - Director of Marketing
anasset@isaca-oregon.org
Dan Davis – Secretary
ddavis@isaca-oregon.org
Rose Wooton – Treasurer
rwooton@isaca-oregon.org
Call for Speakers Interested in speaking at an ISACA event? We would love to hear from you. Check out the 2015-­‐2015 Call for Speakers for more details. General Information www.isaca-­‐oregon.org
Past Presentations www.isaca-­‐oregon.org/past-­‐presentations.htm
Event Registration http://www.isaca-­‐oregon.org/calendar-­‐-­‐event-­‐
registration.html
Volunteer Contact any current board member Brittany Donohue - Deputy Treasurer
bdonahue@isaca-oregon.org
Greg Damon - Director of Membership
gdamon@isaca-oregon.org
Nancy Wells - Director of Certification
nwells@isaca-oregon.org
OPEN - Director of Programs
OPEN - Assistant Education
Brett Asmann - Assistant Programs
basmann@isaca-oregon.org
Related documents
2015 AASHTO Audit Sub
2015 AASHTO Audit Sub
CISA ® -CISM ® Brochure
CISA ® -CISM ® Brochure
Position: Audit Intern
Position: Audit Intern
Evolution of Data Analysis
Evolution of Data Analysis
Lutz Internal Audit Director 10 22 2015
Lutz Internal Audit Director 10 22 2015
PwC Presentation - Leeds School of Business
PwC Presentation - Leeds School of Business
Evolution of an Automated Internal Audit Management System
Evolution of an Automated Internal Audit Management System
Audit Poster - BSG Colonoscopy Audit
Audit Poster - BSG Colonoscopy Audit
CISA
CISA
1. Background 5
1. Background 5
2004-Q3 ISACA LAN.qxd
2004-Q3 ISACA LAN.qxd
CISA Glossary
CISA Glossary
Download
advertisement