Information Security Audit and Control Association
Description
TORONTO CHAPTER Information Systems Audit & Control Association Chapter Website: www.isaca.toronto.on.ca International Website: www.isaca.org MARCH 2009 MONTHLY BULLETIN ISACA’s mission is to support enterprise objectives through the development, provision and promotion of research, standards, competencies and practices for the effective governance, control and assurance of information, systems and technology. Toronto Chapter Activities CONTINUING PROFESSIONAL EDUCATION SERIES SCHEDULE The 2009 Conference on IT Audit, Governance and Security is quickly approaching. Have you signed up yet? The dates for this conference are April 6 – 7, 2009. See below for the link to the website to get more information on the conference. Have you ever thought of taking an IT Infrastructure Library (ITIL) Foundation course? Well, now is the time. The Chapter is offering a special subsidized course on April 6 and 7. Why don’t you take advantage of this special offer? The Continuing Education Committee will soon start its planning for the 2009 – 2010 training year. If you have any suggestions for topics, speakers or other aspects of the Chapter training program please let the Committee know by March 25, 2009. All comments and suggestions can be sent to Program@isaca.toronto.on.ca. March 24, 2009 EDUCATION SESSION: Green IT Corporate Social Responsibility SPEAKERS: CATHY COBEY, AND MELANIE STEINER 8:30am to 12:00pm Location: Kitchener-Waterloo –Holiday ...
Informations
| Publié par | Nepher |
| Nombre de lectures | 168 |
| Langue | English |
Extrait
Information Systems Audit & Control Association
Chapter Website:
www.isaca.toronto.on.ca
International Website:
www.isaca.org
TORONTO CHAPTER
MONTHLY BULLETIN
MARCH 2009
ISACA’s mission is to support enterprise objectives through the development, provision and promotion of research, standards,
competencies and practices for the effective governance, control and assurance of information, systems and technology.
March 2009
Page 1
Toronto Chapter Activities
CONTINUING PROFESSIONAL EDUCATION SERIES SCHEDULE
The 2009 Conference on IT Audit, Governance and Security is quickly approaching. Have you signed up yet? The
dates for this conference are April 6 – 7, 2009. See below for the link to the website to get more information on the
conference.
Have you ever thought of taking an
IT I
nfrastructure
L
ibrary (
ITIL
) Foundation course? Well, now is the time.
The Chapter is offering a special subsidized course on April 6 and 7. Why don’t you take advantage of this special
offer?
The Continuing Education Committee will soon start its planning for the 2009 – 2010 training year. If you have any
suggestions for topics, speakers or other aspects of the Chapter training program please let the Committee know by
March 25, 2009. All comments and suggestions can be sent to
Program@isaca.toronto.on.ca
.
March 24, 2009
8:30am to 12:00pm
E
DUCATION
S
ESSION
: Green IT Corporate Social Responsibility
S
PEAKERS
: C
ATHY
C
OBEY
,
AND
M
ELANIE
S
TEINER
Location: Kitchener-Waterloo –Holiday Inn Kitchener Waterloo
30 Fairway Dr. South, Kitchener
Price: Members $90
Non-Members $110
Session Description and Registration
April 1, 2009
5:30 pm to 7:30 pm
S
ECURITY SPECIAL INTEREST GROUP
:
T
O
B
E
D
ETERMINED
S
PEAKER
: T
O
B
E
D
ETERMINED
Location: Ryerson University – Ted Rogers School of Information
Technology Management
55 Dundas Street West Suite 3-164 “Four Seasons Hotels Seminar
Suite”
(9
th
Floor directly opposite the elevators)
Price: Members $20
Non-Members $20
April 6 & 7, 2009
2009
C
ONFERENCE ON
IT
A
UDIT
,
G
OVERNANCE AND
S
ECURITY
LOCATION
: S
HERATON CENTER
T
ORONTO HOTEL
PRESENTED JOINTLY BY THE
CIC
A
, IIA
AND
ISACA
S
ESSION
D
ESCRIPTION AND
R
EGISTRATION
April 14, 2009
8:30am to 10:30am
C
OBIT
U
SER
G
ROUP
:
CONTROL
&
THE CLOUD
S
PEAKERS
: M
ICHAEL
O'N
EIL
, R
OBERT
F
ABIAN
, A
LEX
T
ODD AND
L
EN
I
NKSTER
L
OCATION
: T
O
B
E
D
ETERMINED
Price: Members $20
Non-Members $20
S
ESSION
D
ESCRIPTION AND
R
EGISTRATION
TORONTO CHAPTER
March 2009
Page 2
April 16, 2009
8:00am to 9:30am
E
DUCATION
S
ESSION
: International Financial Reporting Standards
(IFRS) for IT ( Breakfast)
S
PEAKER
: M
ARGARET
N
EARY AND
M
ARCUS
A
TTONG
Location: London – The Delta London Armouries
325 Dundas Street, London
Price: Members $40
Non-Members $40
Session Description and Registration
April 23, 2009
8:30am to 5:00pm
E
DUCATION
S
ESSION
: Data Classification/Data Protection Leakage
S
PEAKER
: R
EZA
K
OPAEE
Location: Mississauga - The Living Arts Centre
4141 Living Arts Drive, Mississauga
Price: Members $180
Non-Members $220
Session Description and Registration
April 27 & 28, 2009
8:30am to 5:00pm
E
DUCATION
S
ESSION
: IT Infrastructure Library (ITIL) Foundations
Version 3
(Date on this course has been changed to April 27 & 28)
S
PEAKER
: P
ROVIDED BY
IBM
Location: Toronto - The Toronto Board of Trade
First Canadian Place downtown Toronto
Price: Members $900
Non-Members $1000
Registration Deadline :April 9, 2009
S
ESSION
D
ESCRIPTION AND
R
EGISTRATION
Please confirm session details and location by referring to the Chapter website.
We don’t want you to miss these vital training opportunities!
To register choose one of the following:
)
S
end email to
admin.support@isaca.toronto.on.ca
)
follow the hyperlinks provided above
)
online at
www.isaca.toronto.on.ca
)
phone the ISACA recorded message line at 416-410-2246
Planning saves money! If you plan to attend multiple Chapter education events, why not buy a booklet of coupons?
Check out the details at:
http://www.isaca.toronto.on.ca/ed.p.aspx
CISA EXAM PREPARATION COURSES
The ISACA Toronto Chapter will be offering both a four day concentrated CISA preparation course and a nine
week comprehensive preparation course to assist writers in preparing for the June 2009 CISA exam.
The concentrated course will run over 4 full days on June 2nd - 5th, 2009. Although the course will cover each of
the technical content areas of the CISA exam, the pace is fast and there is more emphasis on self-study prior to the
course. The course structure is designed for first time writers who have completed the pre-course work or
experienced IS Audit professionals with a minimum 4 years experience or potential repeat CISA writers.
The nine week comprehensive course will be held on Saturday mornings from April 4th to June 6th, 2009. The
course will also cover all of the technical content areas of the CISA exam, but at a more measured pace. The course
structure is designed to assist first time writers who have not previously covered the course work and have at least
two years experience as an IT professional or auditor.
Further details about the courses and registration can be found on the ISACA Toronto Chapter website:
http://www.isaca.toronto.on.ca/cisa.c.aspx.
TORONTO CHAPTER
March 2009
Page 3
CISM EXAM PREPARATION COURSES
The ISACA Toronto Chapter will again be offering concentrated CISM exam preparation course of two full days to
be held May 25th and 26th, 2009, to assist writers in preparing for the June 2009 CISM exam.
The course is designed as a review course, though will cover each of the domains of the CISM exam. Attendees
should have reviewed the pre course work and be an experienced IT security professional.
Further details about the course and registration can be found by going to the ISACA Toronto Chapter website:
http://www.isaca.toronto.on.ca/cism.c.aspx
.
Toronto Chapter’s Academic Relations Research Committee
Identity and Access Management (IAM)
The art and science of management of a subject’s identity life cycle from initiation to termination.
Submitted by: Rajiv Bhatnagar, Toronto Hydro, Tel: 416-542-3125;
rbhatnagar@torontohydro.com
Research Focus/Sub-Topics
Executive guide to sources of further information related to IAM including, benefits,
challenges and tools in the market
Research Scope Summary
The scope of this summary is to provide practitioners a summary of sources to
further investigate and seek information related to IAM Program.
Scope & Approach:
This IAM research is limited to information listed in public sources through Internet
only. The approach for this research including:
)
Google / Yahoo search results on key topics;
)
Discussions with industry practitioners who are currently
engaged in IAM program;
)
Publically available research available.
Summary
Forrester evaluated leading identity and access management (IAM) vendors across 117 criteria.
It was found that Oracle has established itself as the IAM market Leader due to its solid technology base across the
IAM landscape.
Oracle has a compelling, aggressive strategy around what it refers to an application-centric
identity.
IBM, Sun Microsystems, CA, and Novell were found to be Strong Performers. Each of the strong performers have
some top-notch products. But, they also face a few fundamental technological shortcomings across their IAM
portfolios. Additionally, they fail to focus on all the key areas of development and utilization of IAM solutions.
BMC Software has failed to keep pace with competitors on functionality, which has hindered market execution, and
it is best suited for organizations with a provisioning focus that are already looking to BMC for business service
management (BSM) solutions.
Source:
http://www.forrester.com/Research/Document/Excerpt/0,7211,41990,00.html
Burton Groups’ Technical Positions: Provides insight to questions such as:
9
How should enterprises automate the mapping of identities to accounts, credentials, and access rights?
9
How to and to what extent should enterprises use roles in identity management, applications, and other
enterprise systems?
9
How should an organization identify internal and external users and manage the life cycle relationship
between organizations and users?
9
How can enterprises leverage their identity management infrastructures to help address some aspects of
their auditing requirements?
9
How should an organization manage and control access to applications and online information resources?
9
How should organizations exchange identity information across domains to support real-time sessions or
transactions?
etc., .and many more
Source:
https://wiki.doit.wisc.edu/confluence/display/IAMP/Burton+Group+-+IAM+Technical+Positions
Partial list of key sources and references:
Wikipedia –
http://en.wikipedia.org/wiki/Identity_and_Access_Management
TORONTO CHAPTER
March 2009
Page 4
ISACA –
http://www.isaca.org/Content/ContentGroups/Journal1/20044/jpdf044-IdentityManagement.pdf
Burton Group –
http://www.burtongroup.com/Consulting/Engagements/IdentityManagementRapid.aspx
SANS Institute –
http://www.sans.org/reading_room/whitepapers/services/1640.php
IBM –
http://www-01.ibm.com/software/tivoli/governance/security/identity-access-mgmt.html
Oracle – http://www.oracle.com/corporate/analyst/reports/infrastructure/sec/forresterwave-idm.pdf
Deloitte –
http://www.deloitte.com/dtt/research/0,1015,cid%253D170582,00.html
We’re Always Scanning!
If you attended one of our events, let us know. We’re
always looking for ways to improve. We’re also interested in
what our members are doing. If you’d like to submit and article
for publication in the Bulletin or a synopsis of one of our
education seminars, we’d love to hear from you.
TORONTO CHAPTER
March 2009
Page 5
NOTICE OF ANNUAL GENERAL MEETING AND NOMINATIONS
2009-2010 BOARD OF DIRECTORS
The Annual General Meeting for the Toronto Chapter will be held on June 18, 2009 at 5:00 p.m.
at the Toronto Board of Trade, First Canadian Place. This annual meeting will be held after our
continuing professional education session on “Green IT Corporate Social Responsibility”. All
members are encouraged to attend the annual general meeting to find out about this year’s
activities and the plans for next year.
Nominations are being accepted for positions on the Board of Directors. A nomination must be
signed and supported by two members in good standing of the Toronto Chapter. The nominee
must be a member of the Toronto Chapter in good standing and must also sign the nomination
form. Please submit the nominations for the Board of Directors to Patricia Goh at fax number
(416) 866-5167 by April 15th, 2009.
Detach form here
To the Nomination Committee:
W
e
w
i
s
h
t
o
n
o
m
i
n
a
t
e
for the position of
of the ISACA Toronto Chapter for the 2009-2010 year.
We confirm that we are members in good standing of the ISACA.
Name (please print):
Signature:
Date:
Telephone:
Each nomination must be signed by two members in good standing of the Chapter.
Acceptance:
I accept the above nomination. I confirm that I am a member in good standing of the ISACA Toronto Chapter.
Name:
Date:
Signature:
TORONTO CHAPTER
March 2009
Page 6
INTERNATIONAL NEWS
CISA and CISM in the Money!
The CISM certification has been ranked as the third-
highest-paying certification in
Certification Magazine
’s 2008 Salary Survey.
According to
BankInfosecurity.com
, industry recruitment experts and information security professionals noted CISA and
CISM as two of the top five certifications for 2009, as they provide assurance that the holder has extensive experience in
their fields above and beyond passing a test. ISACA’s new CGEIT™ designation is also mentioned as a top certification
to earn in 2009.
CISA and CISM Exam Highlights
The results of the December 2008 exams were released by one-time e-mail notification, posted to the candidate’s profile
on the ISACA web site and sent by post in early February. To ensure the confidentiality of scores, exam results will not
be reported by telephone or fax.
June Exam Registration
Starting in June, ISACA will now offers the CISA exam in Polish! The June 2009 CISA Bulletin of Information (BOI)
and 2009 Candidate’s Guide are also available in Polish
at www.isaca.org/cisaboi
and
www.isaca.org/cisaguide
,
respectively. Translations of the June 2009 BOI for CISA (
www.isaca.org/cisaboi
) and CISM (
www.isaca.org/cismboi
)
as well as the Candidate’s Guides for CISA (
www.isaca.org/cisaguide
) and CISM (
www.isaca.org/cismguide
) are now
available in most exam languages. Please see the links above to find the translated information.
Registration for the June 2009 CISA, CISM and CGEIT exams continues. The final registration deadline is 8 April 2009.
To view additional exam details, please read the CISA, CISM or CGEIT BOI for the June 2009 exams, available at
www.isaca.org/cisaboi
,
www.isaca.org/cismboi
and
www.isaca.org/cgeitboi.
CISA and CISM Certification Renewals
Certificate holders who have not already done so should renew and report CPE hours as soon as possible to avoid
revocation. Final reminder invoices have been mailed. The CISA, CISM and CGEIT CPE policies are available at
www.isaca.org/cisacpepolicy
,
www.isaca.org/cismcpepolicy
and
www.isaca.org/cgeitcpepolicy
.
The renewal process can be completed online at
www.isaca.org
and going to “My Renewals.”
CISA Recognized by Peruvian Government
In updating its regulations for the internal audit function, a Peruvian government body has recognized ISACA’s CISA
certification, stating that it attests to the expertise and specialization of internal auditors who have earned this designation.
Additionally,
it
notes
that
systems
auditors
will
take
ISACA
IS
Auditing Guidelines into account
(
www.isaca.org/auditguidelines
).
“This recognition further demonstrates that CISA is an internationally respected
credential,” said Juan Luis Carselle Alvarado, chair of the CISA Certification
Board.
Distance Learning Update
March2009 e-Symposium
ISACA’s March e-Symposium is scheduled for Tuesday, 31 March 2009. To register for the March e-Symposium and
take the first step toward earning three free continuing professional education (CPE) credits, please visit
http://isaca.brighttalk.com
.
All e-symposia are recorded and archived for viewing on demand. For more information,
please visit
www.isaca.org/elearning
.
TORONTO CHAPTER
March 2009
Page 7
ISACA e-Learning Campus
The CISA
®
Online Review Course is now available on the ISACA e-Learning Campus. This interactive, web-based
course was developed to provide Certified Information Systems Auditor™ (CISA
®
) exam candidates and ISACA
members with an efficient and cost-effective tool for exam preparation and for performing information systems audits
and reviews. For more information, please visit
www.isaca.org/elearning.
Bookstore Update
Here are some new publications from the ISACA bookstore. They include
NEW
CISA and CISM study aids,
ISACA and ITGI research, and peer-reviewed books. Complete descriptions of these books are available on the
ISACA web site, www.isaca.org/salebooks. For more information, please contact the ISACA Bookstore at
bookstore@isaca.org
or +1.847.660.5650.
Control Objectives for Information and related
Technology (C
OBI
T)
)
COBIT
®
User Guide for Service Managers*
Audit, Control and Security—Essentials
)
The IT Regulatory & Standards Compliance
Handbook: How to Survive an Information
Systems Audit
Internet and Related Security Topics
)
Hacking Exposed: Network Security Secrets &
Solutions, 6th Edition
Audit, Control and Security Specific Environments
)
A Practical Guide to IBM i and i5/OS Security
and Compliance
IT Governance and Business Management
)
Identifying and Aligning Business Goals and IT
Goals: Full Research Report*
)
IT Governance and Process Maturity*
)
Unlocking Value: An Executive Primer on the
Critical Role of IT Governance*
)
The Business Value of IT: Managing Risks,
Optimizing Performance and Measuring Results
)
CISO Leadership: Essentials for Success
)
Corporate Management, Governance, and
Ethics Best Practices
)
Global Perspectives in Information Security:
Legal, Social, and International Issues
)
Information Security Policies Made Easy,
Version 11
)
Service Oriented Architecture Field Guide for
Executives
CISA, CISM and CGEIT Examination References*
Those preparing for the June 2009 exams should visit
www.isaca.org/cisabooks
,
www.isaca.org/cismbooks
and
www.isaca.org/cgeitreferences
for the new study aid editions and IT governance resources.
Calendar of Events
Dates of conferences/events are indicated in
RED
;
other dates and deadlines are indicated in BLACK.
March
11 March........................ Deadline for contributions to April’s
C
OBI
T
®
Focus
13-18 March...................
EuroCACS
, Frankfurt, Germany
14-15 March...................
Europe/Africa Leadership
Conference
, Frankfurt, Germany
22 March........................ Deadline to submit nomination forms
for 2009-10 ISACA International Board
of Directors
23 March........................ Deadline for contributions to
volume 4, 2009, of
ISACA Journal
27 March........................ Deadline to apply for 2009-10 ISACA
key boards and committees
30-31 March...................
Information Security and Risk
Management Conference (Latin
America)
, Bogota, Colombia
April
6-10 April……………...
ISACA Training Week,
Nashville,
Tennessee, USA
8 April...………………..Early-bird registration deadline for the
ISACA Training Week, Vienna, Austria
15 April………………..Member-Get-A-Member contest
deadline
May
2-3 May..........................
North American Leadership
Conference
, Orlando, Florida, USA
3-7 May..........................
North America CACS
, Orlando,
Florida, USA
13 May...………………Early-bird registration deadline for the
International Conference
18-22 May……………..
ISACA Training Week
, Denver,
Colorado, USA
* ISACA/ITGI Publication
TORONTO CHAPTER
March 2009
Page 8
2009 Conference/Training Week Calendar
For the latest information and a complete listing, please visit
www.isaca.org/conferences
.
Conference Spotlight
North America CACS
3-7 May 2009
Orlando, Florida, USA
The North America Computer Audit, Control and Security (North America CACS
SM
) conference provides a customized
experience where attendees will explore the topics most important to the professional development and discover new
technologies and trends specific to their location and industry. North America CACS provides the most comprehensive
training for IT audit, security and governance professionals in North America. The conference focuses on the latest
strategies to address IT auditing and security challenges from business, managerial and operational perspectives. The
conference will be held 3-7 May 2009 in Orlando, Florida, USA. Attendees can earn up to 44 CPE credits.
Future Conferences and Training Weeks
Upcoming events are noted in the Calendar of Events. Other 2009 events to keep in mind include:
)
15-19 June—ISACA Training Week, Vienna, Austria
)
19-22 July—International Conference, Los Angeles, California, USA
Research
/
Model Curriculum for Information Security Management
Designed to help colleges and universities worldwide meet the demand for future information security management professionals, the CISM
task and knowledge areas provide the framework for this model. It
is posted for complimentary download at
www.isaca.org/modelcurricula
.
An Introduction to the Business Model for Information Security
Based on a theoretical security model from the University of Southern California (USA) Marshall School of Business Institute for Critical
Information Infrastructure Protection, ISACA’s holistic Business Model for Information Security takes a business approach to information
security management
.
Methods include creating a culture that intentionally accepts information security, providing awareness and training
so employees understand thoroughly what information security is and how it relates to them, and considering social and psychological
issues. It is available as a complimentary PDF at
www.isaca.org/downloads
.
Enterprise Risk:
Identify, Govern and Manage Risk, The Risk IT Framework
Exposure Draft
The Risk IT framework provides the missing link between enterprise risk management and IT management and control. It fits seamlessly
into ITGI’s IT governance framework and builds on all existing risk-related components within C
OBI
T and Val IT. The framework allows
business managers to assess IT controls for deficiencies and business risks. An exposure draft of the first Risk IT publication is posted for
comments through 16 March 2009 at
www.isaca.org
.
Recent ISACA/ITGI Releases
)
An Introduction to the Business Model for Information Security
)
COBIT
®
and Application Controls:
A Management Guide
(scheduled to be released in April)
)
COBIT
®
User Guide for Service Managers
)
ITGI™ Enables ISO/IEC 38500:
2008 Adoption
)
IT Governance Roundtable:
Value Delivery
TORONTO CHAPTER
March 2009
Page 9
Information About ISACA
ISACA is committed to providing its members and the IT assurance, information
security management and IT governance community with high quality educational
and training opportunities and events.
Today, ISACA’s membership—more than 86,000 strong worldwide—is characterized by its diversity. Members live and work in more
than 160 countries and cover a variety of professional IT-related positions—to name just a few, IS auditor, consultant, educator, IS
security professional, regulator, chief information officer and internal auditor. Some are new to the field, others are at middle
management levels and still others are in the most senior ranks. They work in nearly all industry categories, including financial and
banking, public accounting, government and the public sector, utilities and manufacturing. This diversity enables members to learn from
each other, and exchange widely divergent viewpoints on a variety of professional topics. It has long been considered one of ISACA’s
strengths. Previously known as the Information Systems Audit and Control Association, ISACA now goes by its acronym only, to
reflect the broad range of IT governance professionals it serves.
ISACA is a recognized global leader in IT governance, control and assurance. ISACA sponsors international conferences, publishes
Control Objectives for Information and related Technology
(COBIT
®
), and administers the globally respected Certified Information
Systems Auditor™ (CISA
®
) Certified Information Security Manager™ (CISM™)and the new Certified in the Governance of Enterprise
IT™ (CGEIT™)designation.
The International Conference is ISACA's flagship conference. It is also the site of the Annual General Meeting of the Membership as
well as ISACA Board of Directors' meetings and scheduled Global Leadership Conference for representatives of the local chapters.
Held in mid summer annually, the International Conference attracts over 250 professionals from around the globe. Its educational
streams focus on managerial and business issues of IT audit, control, security and assurance.
The views and opinions contained in this publication are solely those of its author, and do not necessarily represent or reflect the views or
opinions of the Toronto Chapter of the Information Systems Audit and Control Association. In the event of questions concerning articles in
this publication, please contact the author of the articles directly.
Public Sector Internal Controls – Training Seminar - May 5-6, 2009 – Ottawa, ON
New guidelines now require deputy heads and CFOs to sign off on an annual statement of
internal controls, confirming that their responsibilities have been met and that the effectiveness of their
departments' internal controls has been validated. Such planning has typically focused primarily on
financial reporting, but now it is beginning to take in overall operations.
Attend INFONEX's two-day
Public Sector Internal Controls
training seminar to get strategies and
best practices to strengthen your department's oversight and accountability. Learn not only how to
maintain and enhance your compliance with financial reporting requirements, but also how to improve
overall operations for better efficiency and service to Canadians.
Don't miss this opportunity to hear case studies and lessons learned from federal agencies, as
well as informative sessions from industry leaders. Over 450 organizations across Canada have already
taken advantage of our internal controls conferences. Don't miss your chance!
Register today!
TORONTO CHAPTER
March 2009
Page 10
Join online and save US $20.00
MEMBERSHIP APPLICATION
www.isaca.org/join
□
MR.
□
MS.
□
MRS.
□
MISS
□
OTHER _______________
Date __________________
MONTH/DAY/YEAR
Name____________________________________________________________________________________________________
FIRST
MIDDLE
LAST/FAMILY
___________________________________________________________________________________________________________________________________
PRINT NAME AS YOU WANT IT TO APPEAR ON MEMBERSHIP CERTIFICATE
Residence address
_____________________________________________________________________________________________________
STREET
_______________________________________________________________________________________________________________
CITY
STATE/PROVINCE/COUNTRY
POSTAL CODE/ZIP
Residence phone
_____________________________________ Residence facsimile _________________________________
AREA/COUNTRY CODE AND NUMBER
AREA/COUNTRY CODE AND NUMBER
Company name __________________________________________________________________________________________
Title ___________________________________________________________________________________________________
Business address
_______________________________________________________________________________________________________
STREET
______________________________________________________________________________________________________
_
CITY
STATE/PROVINCE/COUNTRY
POSTAL CODE/ZIP
Business phone
_____________________________________
Business facsimile _________________________________
AREA/COUNTRY CODE AND NUMBER
AREA/COUNTRY CODE AND NUMBER
E-mail ________________________________________________________
Send mail to
Form of Membership requested
I do not want to be included on
How did you hear about ISACA?
Home
Chapter Number
(see reverse)
________________
a mailing list, other than that for
1
Friend/Coworker
6
Local Chapter
Business
Member at large
(no chapter within 50 miles/80 km)
association mailings.
2
Employer
7
Certification Programs
Student (must be verified as full-time)
3
Internet Search
8
Direct Mail
4
IS Control Journal 9
Educational Event
5
Other Publication
Please note:
Membership in the association requires you to belong to a local chapter when you live or work within 50 miles/80 km of its territory. The name of the chapter is indicative of its territory. If you live
further than 50 miles from the chapter territory, select member at large. This selection is subject to verification by ISACA International. Cities listed in parentheses are a reference to where the majority of
chapter meetings are held. Please contact your local chapter at
www.isaca.org/chapters
for other meeting locations.
Level of education achieved
(indicate degree achieved, or
number of years of university education if degree not
obtained)
1
One year or less
2
Two years
3
Three years
4
Four years
5
Five years
6
Six years or more
7
AS
8
BS/BA
9
MS/MBA/Masters
10
Ph.D.
99
Other
______________
Certifications obtained
(
other
CISA/CISM)
1
CPA
2
CA
3
CIA
4
CISSP
Work Experience
5
CPP
6
GTAC
7
CFE
99
Other ________
Current field of employment
(check one)
1
Financial/Banking
2
Insurance
3
Public Accounting
4
Transportation
5
Aerospace
6
Retail/Wholesale/Distribution
7
Government/Military—
National/State/Local
8
Technology Services/Consulting
9
Manufacturing/Engineering
10
Telecommunications/
Communications
11
Mining/Construction/Petroleum/
Agriculture
12
Utilities
13
Legal/Law/Real Estate
14
Health Care/Medical
15
Pharmaceutical
16
Advertising/Marketing/Media
17
Education/Student
99
Other ____________________
1
No experience
2
1-3 years
3
4-7 years
4
8-9 years
5
10-13 years
6
14 years or more
Current
Professional Activity
(If not your title, please select the BEST match)
1
CEO,President,Owner,General/ExecutiveManager
2
CAE,GeneralAuditor,Partner,AuditHead/VP/EVP
3
CISO/CSO, Security Executive/VP/EVP
4
CIO/CTO,InfoSystems/TechnologyExecutive/VP/EVP
5
CFO,Controller,Treasurer,FinanceExecutive/VP/EVP
6
Chief Compliance/Risk/Privacy Officer, VP/EVP
7
IS/IT Audit Director/Manager/Consultant
8
Security Director/Manager/Consultant
9
IS/IT Director/Manager/Consultant
10
Compliance/Risk/PrivacyDirector/Manager/Consultant
11
IS/IT Senior Auditor (External/Internal)
12
IS/IT Auditor (External/Internal Staff)
13
Non-IS/IT Auditor (External/Internal)
14
Security Staff
15
IS/IT Staff
16
Professor/Teacher
17
Student
99
Other _________________________________
Date of Birth___________________________________________
MONTH/DAY/YEAR
Payment due
•
Association dues †
$ 130.00 (US)
• Chapter dues (Toronto)
$ 25.00 (US)
• New member processing fee
$ 30.00 (US) *
PLEASE PAY THIS TOTAL
$ 185.00 (US)
† For student membership information please visit
www.isaca.org/student
*
Membership dues consist of association dues, chapter dues and new member processing
fee. Join online and save US $20.00.
Method of payment
Check payable in US dollars, drawn on US bank
Send invoice
(Applicationscannotbeprocesseduntilduespaymentisreceived.)
MasterCard
VISA
American Express
Diners Club
All payments by credit card will be processed in US dollars
ACCT # _______________________________________________
Print name of cardholder __________________________________
Expiration date__________________________________________
MONTH/YEAR
Signature ______________________________________
Cardholder billing address if different than address provided above:
______________________________________________________________
By applying for membership in ISACA, members agree to hold the association and its chapters,
and the IT Governance Institute, and their respective officers, directors, members, trustees,
employees and agents, harmless for all acts or failures to act while carrying out the purposes of
the association and the institute as set forth in their respective bylaws, and they certify that they will
abide by the association's Code of Professional Ethics (
www.isaca.org/ethics
).
Initial payment entitles new members to membership from the date payment is processed by
International Headquarters through the end of that year. No rebate of dues is available upon early
resignation of membership.
Contributions, dues or gifts to ISACA are not tax deductible as charitable contributions in the
United States. However, they may be tax deductible as ordinary and necessary business
expenses.
Make checks payable to:
ISACA
Mail your application and check to:
ISACA
1055 Paysphere Circle
Chicago, IL 60674 USA
Phone: +1.847.253.1545
Fax: +1.847.253.1443
The dues amounts on this application are valid through 31 December 2009.
© 2010-2024 YouScribe