Information Security Governance and The Role of IA

The Institute of internal Auditors Philippines, Inc.

The Institute of Internal Auditors (IIA) Philippines is a professional organization dedicated to the advancement of the internal audit profession in the country. Our members, who work in internal auditing, risk management, governance, internal control, information technology audit, education and security, came from various industry or sectors in the Philippines and belong to a global network of almost 200,000+ professionals from more than 170 countries and territories sharing a common vision of a global profession of internal auditing.

The Institute of Internal Auditors Philippines Inc. (IIAP) was registered with SEC in 1982 and formerly known as The Institute of Internal Auditors, Inc. – Manila Chapter. It was founded on August 14, 1948 by Mr. Santiago F. Dela Cruz Sr. along with a small group of accountants actively engaged in the profession. Mr. Dela Cruz, who is considered to be the moving spirit of the association, is the same man who, two years earlier than IIAP, co-established the Philippine College of Commerce and Business Administration (PCCBA) which we now know as the University of the East.

The IIAP despite some struggles during its formative years was able to attain full-fledged stature as a professional association upon earning its “Institute” status from The Institute of Internal Auditors (IIA Global) in 1990. At the time, IIAP is 1 of the 6 (six) chapters in the Pacific Region (others were in Bombay, Tokyo, Sydney, Melbourne and Ceylon). On its 75th Anniversary Celebration and Global Business Meeting last 16-17 July 2016 at New York Hilton Midtown, the IIAP was acknowledged as the 3rd Chapter organized by the IIA Global since the latter’s founding in 1941 still then headquartered in New York City, USA

Event Details

Information is a significant component of most organizations' competitive strategy either by the direct collection, management, and interpretation of business information or the retention of information for day-to-day business processing. Some of the more obvious results of Information Security failures include reputational damage, placing the organization at a competitive disadvantage, and noncompliance.

This training will provide a thought process on how ISG affects the organization's view and handling of information.

This course facilitates audits of ISG from audit planning to audit analyzing, focusing on testing and analyzing IS data to assess whether the organization's ISG activities deliver its purpose and objectives effectively or efficiently towards the attainment of the organization's goal as a

whole.

This course aims to assist organizations in planning their Information Security related assurance and consulting engagements through attendees with an introduction of Information Security Governance concepts.
This is NOT a TECHNICAL course. Discussion on information Security from business and assurance perspective.
This course is designed for internal auditors involved or will be involved in information security assurance and consulting services.

Understand Information Security Governance from business and audit perspective,

Understand the key concepts of Information Security and Information Security Governance
Appreciate the role of Internal Auditing on Information Security Governance

What You Will Learn

Overview of Information Security
Introduction to Information Security Governance
Internal Audit Roles in Information Security Governance

Number of CPE units: 3

Privacy Notice: We collect your personal information to register you in our training/ membership events and photos/videos will be taken for evidentiary purposes in relation to IIAP Seminars. We will use this information to provide services regarding your attendance and if you agree, to send you marketing information.

By giving us your personal information you consent to our use of it for the purposes described in this Privacy Notice.

Speakers

Solomon Anastacio, CISA, CISM, Certified ISO 22301 (BCMS) Lead Implementer, Certified ISO 31000 Risk Manager

Consultant at Solvere Consulting

An accomplished professional with over 35 years of experience in Information Technology and information security within the electric utility sector. Possessing extensive expertise in IT Governance, IT Systems Management and Administration, IT Project Management, Information Security Management, IT Auditing, and Information Risk Management. Prior to retirement, held a leadership position overseeing Enterprise-Wide Risk Management, managing enterprise-level risks, and reporting directly to the Chief Risk Officer.

He is a resource person, facilitator, and speaker for several courses and workshops on:
• IT Operations, Governance and Management based COBIT and ITIL,
• IT Project Management based on PMBOK,
• IT Auditing based on COBIT,
• Information Security and Cybersecurity Management based on ISO 27001 and NIST,
• Information and Enterprise Risk Management based on ISO 31000, and
• Business Continuity and Disaster Recovery Management based on ISO 22301.
He is a graduate of BS Computer Science from University of the Philippines Los Banos (UPLB). And holder of internationally renowned IT related designations:
• Certified Information Systems Auditor (CISA) and Certified Information Security Manager (CISM) from ISACA.
• Certified ISO 22301 (BCMS) Lead Implementer and Certified ISO 31000 Risk Manager, both from PECB.
• Accredited Trainer for CISA and CISM course from APMG International
Sol is an active member and officer of several prestigious professional associations in the Philippines such as:
• Institute of Internal Auditors (IIA) – Philippines Chapter where he was the Chairperson of the Technology Committee (2017-2019);
• Information Systems Audit and Control Association (ISACA) – Manila Chapter where he was a Past President (2009-2010) and was a member of the Board (2005 to 2013),
• Project Management Institute (PMI) – Philippines Chapter where he served as member of the Board (from 2016 to 2021),
He is now the Principal Consultant of Solvere Consulting providing information technology and information security related consulting and training services.

The Institute of internal Auditors Philippines, Inc.

Contact us

Event Details

Speakers

Solomon Anastacio, CISA, CISM, Certified ISO 22301 (BCMS) Lead Implementer, Certified ISO 31000 Risk Manager

Sponsors and Partners

The Institute of internal Auditors Philippines, Inc.

Contact us

Information Security Governance and The Role of IA

Event Details

Speakers

Solomon Anastacio, CISA, CISM, Certified ISO 22301 (BCMS) Lead Implementer, Certified ISO 31000 Risk Manager

Sponsors and Partners

Organizer