Leadership
About our Chapter
Academic Relations
Meetings & Events
Newsletters
Employment
Review Courses
Conferences
Links and Resources
Bylaws
ISACA Membership
ISACA Certification
 
 
 
 

MONTHLY MEETING TOPIC AND SPEAKERS
(Meeting Date: July 17, 2008)

"Continuous Auditing and Monitoring" - (Panel Discussion)

Moderated by Scott Elliott Anderson - IT auditor, Cisco Systems

Panelists:
Binita Pradhan - Senior Manager, BDO Seidman, LLP
Sudhir Mandal - Information Technology Audit Manager, Xilinx
Krishna Marella - Manager, Security and Privacy Services, Deloitte & Touche LLP
"Continuous Auditing and Monitoring"

Continuous auditing and continuous monitoring is an emerging best practice for information systems audit and governance, risk management and compliance. This panel discussion will cover the role of these two aspects of corporate assurance. This discussion will be of value to individuals responsible for planning or delivering information audit, controls compliance, information risk reduction, and fraud detection in the financial services field. In addition, those charged with accountability for privacy and IS security can benefit from understanding the principles related to Continuous Auditing and Continuous Compliance Monitoring and their potential.
By attending this panel discussion you will learn:
  • Explore the viability of continuous auditing, its conceptual framework, and the issues to consider when implementing it
  • Gain an understanding of reporting time frames and the availability and reliability of data
  • Examine automated audit procedures, information system requirements, key controls, automated reporting, and software tools and techniques
  • Discover how continuous auditing can be used to help achieve compliance with Sarbanes-Oxley’s internal control reporting requirements
Scott Elliott Anderson Scott Elliott Anderson is an IT auditor with Cisco Systems in San Jose, CA. Prior to joining Cisco in 2007, he researched emerging, collaborative technologies as part of an IBM Speed-Team project. Additionally, Scott completed two internal audit internships with Sprint's Corporate Audit Services department in Overland Park, KS., and he recently graduated with his MBA from the J.D. Edwards Honors Program in Computer Science and Management at the University of Nebraska - Lincoln. Scott is responsible for performing risk based information technology and process audits of Cisco's worldwide infrastructure and application production environments, which includes Scientific Atlanta, Linksys and WebEx. He is also responsible for implementing best-in-class continuous audit techniques as part of Cisco's control environment.
Binita Pradhan Binita Pradhan, CISA, CPA*is a Senior Manager with BDO Seidman, LLP and leads BDO Seidman’s Bay Area IS Assurance practice that offers both advisory and assurance services, such as, SAS 70 readiness/examination, external audit, internal audit, business continuity planning, network penetration studies, privacy audits, agreed upon procedures, risk assessments. Binita has led client engagements including both assurance and advisory services within the Technology and the Banking sector for a number of Bay Area and other companies, such as, SumTotal Systems, Sonic, Chordiant, Nanometrics, NetSuite, EVault, EASi, Neohapsis, and various community banks. Prior to BDO Seidman, Binita was a Manager in PwC’s San Francisco office where she managed Information Technology audit practice for PwC San Francisco’s Internal Audit practice as well as assurance engagements. Her industry focus was Financial Services including clients such as, BGI, Texas Lottery, Fiserv EFT, Silicon Valley Bank, Greater Bay Bank, First Republic Bank, United Commercial Bank, Axa Rosenberg, Franklin Templeton, Dodge and Cox, ITI, various other Fiserv subsidiaries.
Sudhir Mandal Sudhir Mandal is the Information Technology Audit Manager at Xilinx. In his current role at Xilinx he worked with IT Compliance and External Auditors and enhanced the efficiency of SOX Information Technology controls testing process. Performed IT Risk Assessment. Implemented ACL as an audit tool and utilized for operational audits. During his tenure at Dolby Laboratories he managed an external resource in developing process documentation, risk control matrix, test procedures and performed testing of SOX IT key controls. Sudhir has an MBA from University of Phoenix, MS from University of Patna, India. Sudhir is a Certified Information Systems Auditor (CISA) and a member of ISACA Silicon Valley Chapter.
Krishna Marella Mr. Marella, CISSP, is a Manager in the Security & Privacy Services Group of the Enterprise Risk Services practice at Deloitte. He has a strong technical background with a broad experience across several areas of information security including data protection, software vulnerabilities, information security governance and identity management. He has assisted clients in evaluating their information security program through reviews based on standards such as ISO 17799 and has experience conducting SAS 70 and SysTrust audits. Krishna has served clients both as a solution architect and a project manager across multiple industries. He has also helped software companies enhance the security of their products through application vulnerability assessment and security design reviews.
Krishna has a strong background in enterprise software development and design/implementation of internet portals. Prior to joining Deloitte, he held software development positions at a major global entertainment company and a large software vendor.
 
 
© ISACA - Silicon Valley Chapter.