|
|
John Thompson
Topics: Business Continuity Management, Business-Internal Audit Management, Data & Asset Protection, SOX & IT Controls Are you managing business risk and continuity planning in the best way possible? In his energetic talk filled with real-life examples, business consultant, auditor and trainer John Thompson shows how to develop and implement sound policies that get results – and his focus is always on practical implementation. Drawing on over 20 years’ management and operational experience, John gives you cutting-edge info and strategies illustrated with actual case histories, so you can learn how others have met the challenges you face today. “I have hands-on experience with current information that will impact your company – and even you personally,” says Thompson, who customizes his talks and workshops to suit your group’s needs. His topics include: Audit for Management and IT Controls Improvement This program is an overview of IT auditing guidelines and results from performed audits and is customized to suit your group’s needs. We’ll focus on risk assessment, continuity planning, auditing management and reporting for these activities. The guidelines and standard documents used for reference are from the Information Security Management System (ISMS, ISO 27001:2005), Code of Practice for Information Security Management (BS 7799-1:2005), Recommended Security Controls for Federal Information Systems (NIST, Special Publication 800-53). Global Technology Audit Guide (GTAG®). (Inquire about half-day workshops for Audit Committee members, IT managers and Auditors.) Overview of the IT Audit Management Guidelines and Relationship. This talk focuses on IT Audit Management responsibilities related to risk assessment and business continuity. You’ll learn how to gauge risk assessments, when and how often to do business continuity auditing, and what specifically should be done. We’ll explore IT audit management reporting – how often and how much detail? What are the penalties? Specific documents and references will be discussed and compared. We’ll also discuss the issue of company personnel. Audit committee members, IT audit managers and auditors will gain a better understanding of the relationship of guidelines and standards to risk assessments, business continuity auditing and reporting. The information presented will help to develop and implement a business continuity plan. You’ll leave with a much clearer understanding of responsibilities and individual liabilities. Overview of Key SOX, Cobit, GTAG and ISO requirements No matter which law you use – Sarbanes Oxley (SOX), standards (ISO) or guides (i.e., Global Technology Audit Guide or GTAG®), they are always related by common management responsibilities and operational and control requirements. This program will identify the key policy and control responsibilities for board members and senior managers and what is expected of them in terms of accountability. SOX or No SOX: Board and Executive Management Responsibilities Get clear once and for all on who’s responsible for what. This talk explores the responsibilities of board members, senior executives, the audit committee and takes a look at fiduciary responsibilities too. Do you know what the penalties are – both company and personal? You’ll get inside tips about what auditors and consultants are finding, and you’ll leave with a clear understanding of everyone’s responsibilities, personal and individual liabilities, and how to implement these guidelines in your organization. John Thompson has presented management and auditing programs to over 1,500 people, participated in over 200 quality system audits, and consulted with many Fortune 500 and Fortune 100 companies. His extensive management consulting and operational experience in the hi-tech industry, as well as in the health care and transportation industries (with a focus on information technology), has provided him with a well-rounded, "common sense" approach to implementing solutions and management systems. John has an MBA degree from Lake Forest University, Deerfield, Illinois, and a BS in Business Administration from TriState University, Angola, Indiana (Specialization: Accounting and Information Processing). John is a Qualified Instructor for BSI (Standards: ISO 9001:2005, ISO 27001:2005 and BS 25999), and a Lead Auditor, International Register of Certificated Auditors (A006984). He holds a U.S Navy Top Secret Clearance. John’s roster of clients includes: Abbott Laboratories, Akima, AML Communications, American Bureau of Shipping (ABS), Baxter Healthcare, British Standards Institute United States (BSI America), British Standards Institute Canada (BSI Canada), Hydranautics, Intertek Systems Certification (ITS), Network Appliance, Rolls Royce, San Diego State University, United Parcel Service (UPS), U.S. Department of the Navy, Wakunaga of America, and Whittington and Associates. He belongs to the following professional organizations: Institute of Internal Auditors (IIA), American Society for Quality (ASQ), senior member, Information System Audit and Control Association (ISACA), and Computer Security Institute (CSI). John served as moderator for a PBS program on International Standards sponsored by San Diego State University. Ask for rates outside of local area please. Contact: (760) 945 9714 or (619) 890 9767 (cell) E-Mail: jtpastor@aol.com Availability: S. California |
|
Speaker for Free Category List Speaker for Fee Category List Browse Our Speaker List |
|
