Leadership
About our Chapter
Academic Relations
Meetings & Events
Newsletters
Employment
Review Courses
Conferences
Links and Resources
Bylaws
ISACA Membership
ISACA Certification
 
 
 
 

MONTHLY MEETING TOPIC AND SPEAKERS
( Meeting Date : February 21, 2008 )

Current Trends in IT Risk Management. Information resource integration and governance: Delivering service and managing risk - (Panel Discussion)

Moderated by Surya Vinjamuri

Panelists:
Shafeeq Banthanavasi - Senior Manager, Deloitte & Touche.
Ames Cornish - Montebello Partners.
Mary Kadomoto - Sr Dir,I.S Cisco Sysytems.
John Vecchi - Director, Product Marketing, McAfee, Inc.
Current Trends in IT Risk Management. Information resource integration and governance: Delivering service and managing risk

A top priority for government business transformation is effective management of the vast accumulation of existing information resources contained in tens of millions of rows of operational data processing environments. Core to this information management mandate is the goal of making high value information available to managers, planners, analysts, and researchers while addressing the associated risks. To deliver on this requirement, specialized data warehousing technology skills and knowledge are combined with standards, process, and policy to build a governance and service structure that addresses threats to quality, integrity, access, availability, and personal information protection. The outcome is an information access service environment with demonstrably higher value and less risk than direct interaction with the source environments.
By attending this panel discussion you will learn:
- The strategic approaches to delivering high value analytical information and managing the risk.
- An overview of the vision and objectives, summarize the overall approach, and highlight selected aspects of the risk management and governance deliverables.
- Provide value to individuals responsible for planning or delivering information resource access solutions, for those responsible for identifying and managing risks.
Surya Vinjamuri Surya Vinjamuri has over 20 years of experience in the development, implementation and management of large software applications and tools in the areas of Risk Management, Corporate/IT Governance and Regulatory Compliance. His industry experience includes managing large offshore development teams for outsourced software services and consulting services for regulatory compliance requirements. Mr. Vinjamuri holds a MS in Computer Science & Engineering from the Indian Institute of Technology, India and MBA in International Business/Finance from California State University. He holds CISA, CISM and PMP Certifications. He is an active member of ISACA, IIA and PMI. Till recently he served on the Management board of InfoSTEP Inc. where he worked as Vice President, Risk Management & Compliance. Currently he works in the SOX PMO Office of Cisco, Inc. His interests include Corporate/IT Governance, Regulatory Compliance and Information Security.
Shafeeq Banthanavasi Shafeeq Banthanavasi is a Senior Manager with Deloitte & Touche LLP's Security & Privacy Services group. He has over seven years of experience in enterprise risk management, application and software security , enterprise security architecture, and information technology controls design & implementation. He primarily serves clients in engagements around enterprise security and in increasing the security of software products and applications. Prior project experience includes strategic data risk assessments, enterprise security architecture, infrastructure and process security assessments, software security design, application vulnerability assessments, privacy programs and services, public key infrastructure services, cryptosystem design and analysis, program management office design and deployment, and technology and business alignment. Shafeeq is a Certified Information Systems Security Professional (CISSP).
Ames Cornish Ames Cornish leads Montebello Partners which he founded in 1997 to provide business strategy, Internet security, and application development services to high-technology businesses. Clients include Fortune 500 companies, entrepreneurial start-up companies, and venture capital firms. Ames was the founder, Chief Technical Officer, and President of Vividus Corporation, which was funded by Draper Fisher Jurvetson in 1991, and acquired by Sunburst Communications in 1997. As the product visionary, Ames conceived, designed, and developed Vividus' award-winning multimedia authoring (Cinemation), web authoring (Web Workshop), and children's products (Amazing Animation). Prior to founding Vividus, Ames' roles included managing the Desktop Presentations marketing group at Apple Computer, and managing the product marketing team for Business Graphics Software at Hewlett-Packard. Previously, Ames worked in corporate finance at Kidder, Peabody, where he assisted in initial public offerings for technology companies, and invented a debt-for-debt swap in which over $100,000,000 was invested. Ames has presented at numerous industry conferences, and appeared on national TV and radio broadcasts. He has been elected to the board of directors for the bay area chapter of Infragard, an FBI-sponsored cyber-security organization. He is a member of the board of directors of the Software Development Forum (SDForum), Silicon Valley's leading developer organization, and is a founder and co-chairman of SDForum's Internet Security and Privacy special interest group. Ames holds bachelor's and master's degrees in theoretical physics from Harvard University, and an MBA from Stanford University. Ames is a Certified Information Systems Security Professional (CISSP), and certified by Visa for PCI assessments (QDSP, QPASP).
Mary Kadomoto Mary Kadomoto is the Director of IT Risk Management for Cisco. In this role, she works with many teams within IT as well as within other functions across Cisco to ensure that risk related to IT Operations is understood and is mitigated where approprate. This role includes leading compliance efforts related to specific regulations, policies and best practice standards. Mary joined Cisco in 1998 as a manager of financial planning and analysis for the America’s sales organization. She then lead the corporate financial planning and analysis organization which modeled the corporate P & L, reported management results to the Investor Relations team and coordinated all budgeting activity. She went on to lead the business team in several successful large scale system implementations for the Global Corporate Controller’s Organization . In this role she partnered extensively with other business functions as well as IT. Prior to Cisco, Mary worked for nine years in Motorola in many different finance roles, includi ng auditing and an International assignment in Japan. Mary also spent 4 years in public accounting in KPMG’s audit group . Mary is a CPA in the state of Arizona and has a Bachelors degree in accounting.
John Vecchi John Vecchi is Director of Product Marketing for network security solutions at McAfee, responsible for product marketing activities for McAfee’s portfolio of network security solutions, including the market-leading IntruShield Network Intrusion Prevention Solution product-line. Vecchi has over 14 years of experience in the areas of outbound marketing, business development, product management, and product marketing with a focus on telecom, wireless and network security industries. Prior to joining McAfee, Vecchi held the position of senior product-line and product marketing manager for Symbol Technologies, overseeing Symbol's flagship WLAN infrastructure product-line and the introduction of the industry's first wireless switching product.
 
 
© ISACA - Silicon Valley Chapter.