Navigate Up
 

 Presentations

 

​Member Benefits for Training and Events

The IIA offers numerous benefits for members:
  • Members-only rates on conferences, seminars, and executive development through Vision University can save you hundreds of dollars.
  • Exclusive monthly Members-only Webinars are part of your core membership benefits and provide you with CPE units without ever leaving your desk or paying additional fees.
  • Members-only rates for other specialty webinars and self-study courses provide easy access to advance your knowledge from the convenience of your own desktop.
 

 Upcoming Events

 
10/29/2018

Cyber Security Luncheon

Monday, October 29th at the Rivers Club


Please join the Pittsburgh Chapter of the IIA on Monday, October 29th for a presentation from Schneider Down on Cyber Security! Thinking about how to tackle a review of cyber security can be a daunting task. There are multiple frameworks, a thousand acronyms and it’s hard to challenge IT experts. Join the Schneider Downs Cyber Security team as they share their secrets from years of experience performing network penetration tests and other types of cyber security exams. We will discuss the most impactful controls that have made the jobs of our ethical hackers much harder in our hands-on experience hacking client systems.


Location:

Rivers Club

One Oxford Center

Pittsburgh, PA 15219

 

Schedule:

Monday, October 29th

Registration: 11:00 - 11:30

Networking Lunch: 11:30 -12:00

Presentation: 12:00 - 1:00


CPE: 1 hour of CPE Credit 

 

Featured Speakers:

David Murphy, JCAC, 1N471 - Lead Cyber Security Analyst, Cyber Security & IT Risk Advisory Services

David is a former consultant for the National Security Agency (NSA) Computer Network Operations (CNO) team. He served nine years in the United States Air Force (USAF) as both active duty and a member of the reserves. During that time, he worked as a network intelligence analyst dedicated to finding vulnerabilities in target systems as part of his support of United States foreign intelligence missions. He served as a dedicated mission trainer within the United States Cyber Command. David supported more than 500 exploitation operations within CNO and has a broad understanding of both Red team and Blue team principles. He has supported intelligence activities for both the strategic and tactical level customers of information, which include the President of the United States. David has expertise in Windows, Linux and Cisco networking security. In addition to providing services to the CNO team for exploitation operations, he has also tracked Advanced Persistent Threats (APT) at all levels of complex enterprise systems.


Daniel J. Desko, CISA, CISSP, CTPRP - Shareholder, Cyber Security & IT Risk Advisory Services

Dan is a leader in the Risk Advisory Services practice at Schneider Downs, responsible for managing and leading a team of IT audit, security and risk professionals with diverse experience and skill sets for a wide range of clients across multiple industries. He is also responsible for project delivery, management and overall quality control. Dan currently serves numerous public and privately held firms in various capacities, covering a wide range of IT platforms and systems. Prior to his career in audit and security, he worked in the technology departments of a Fortune 150 manufacturer and a Fortune 50 healthcare insurance provider. Dan has experience providing internal audit co/outsourcing and security consulting services across various industries, including Sarbanes-Oxley 404 control design and testing; SOC 1, 2 & 3 including SOC 2+ control design/testing/report development; vendor risk management consulting (SIG, AUP and VRMMM); general computer control development and testing; IT risk assessment/analysis; information security program development; network security assessments; internal and external network penetration assessments; information systems general control reviews; information security and privacy assessments (GLBA, HIPAA, ISO 27001, FFIEC Cybersecurity, NIST and GDPR); PCI-DSS compliance services; data analysis; business continuity and disaster recovery plan development and testing.