View ISG Africa meeting videos on the web / BSI ISO 27001 Lead Auditor training

[Information Security Group of Africa]

	This e-mail is subject to a disclaimer, available by clicking here.
	Risk Management Governance Compliance Business Continuity Information Security Awareness
	*** ISG Africa news *** ===================================================== 1.    View videos of ISG Africa Gauteng meetings on the internet:   For those that can’t always make our monthly meetings (& for our members in the regions) you are now able to view the video clips from our January 2006 & March 2007 meetings by visiting: http://one.revver.com/account/show/ISGAFRICA   This is a test to see if this is of use so let me know what you think? If we get a positive response we will upload more of our meetings. Thanks to Brian for recording our meetings & to Karel for uploading the video clips to REVVER.   I have included the agenda for the March 2007 video below:   Gauteng Meeting - March 2007 Date: Thursday 22 March 2007 Time: 10:00 – 12:30 (Registration open from 09:15) Venue sponsors: Exhibitions for Africa Sandton Convention Centre Sandton, Johannesburg RSVP: Craig Rosewarne – cr...@isgafrica.org  / +27 832314707 Cost: Free <Plse RSVP by Monday 19th> Meeting Agenda   09:15 Registration opens / Welcome coffee 10:00 An overview of the upcoming IFIP security event 2007 Sandra Galbraith, Exhibitions for Africa (Venue sponsors) 10:15 Guidance on undertaking the CISA & CISM qualifications Faizal Docrat, ISACA South African Chapter board member and CISA and CISM coordinator   10:30 An introduction to CobiT with a special focus on DS5 (Ensure systems security) & its relationship to ISO 17799 / 27001 Johan Botha, Analytix 11:00 Coffee break 11:30 Root kits – Detecting the undetected Tonie Deen, Observo 12:00 How to configure and use Nessus for vulnerability assessments Jacques van Heerden, GTSP 12:30 Meeting ends followed by a few drinks with friends in the industry!   2.    Next ISG Africa meeting   We are not having a May 2007 Gauteng meeting due to our involvement in the ITWeb Security Summit 2007 taking placing on the 22-25 May at Vodaworld in Midrand -  http://www.securitysummit.co.za/        ===================================================== Plus see below for the latest training & events Regards Craig Rosewarne Founder & Chairman Information Security Group of Africa (A Section 21 company 2006/001533/08)     3. Training Courses BSI-ISO/IEC 27001:2005 - Information Security Management System Lead Auditor Course (5 days) (*NEW*)   IRCA registered BSI’s “ISO/IEC 27001:2005 – Information Security Management System Lead Auditor” teaches students the fundamentals of auditing information security management systems to ISO/IEC 27001:2005.  This five-day intensive course trains students on how to conduct audits for certification bodies and facilitate the ISO/IEC 27001:2005 registration process.  The auditing exercises and lectures are based on ISO 19011:2002, “Guidelines for Quality and/or Environmental Management Systems Auditing.”  The course is designed specifically for those people who wish to conduct external assessments or internal audits to ISO/IEC 27001:2005, although students will also gain the knowledge and understanding necessary to give practical help and information to other individuals and organizations working toward conformance to the standard. Training Provider www.analytix.co.za Contact details charlene...@analytix.co.za / +27 11 215-2480 Dates 30 July - 3 August / 17-21 September (Johannesburg) COSO Enterprise Risk management training (2 days)   The COSO Enterprise Risk Management – Integrated Framework is designed to provide best practice guidance for management of businesses and other entities to improve the way they are dealing with these challenges. COSO – ERM integrates various risk management concepts into a framework in which a common definition is established, components are identified, and key concepts described.   Training Provider www.analytix.co.za Contact details charlene...@analytix.co.za / +27 11 215-2480 Dates 30-31 May / 24-25 July (Johannesburg) SAP R/3 CONCEPTS & AUDITING RISKS  (3 days)     This training is for auditors who have no previous experience with SAP“ R/3“. You will cover the major risk areas for SAP 4.6 and beyond. You will explore the organisational and audit department challenges inherent in managing SAP“ R/3“ during implementation, delivery and production processing, focusing on the skills required to perform project and audit tasks. Training Provider www.mistieurope.com   Contact details charlene...@analytix.co.za / +27 11 215-2480 Dates 20 – 22nd August (Johannesburg) AUDITING & SECURING SAP’S ENTERPRISE SERVICES ARCHITECTURE  (2 days) This two-day seminar is for auditors and security professionals who have to audit the risks associated with the new ESA of SAP“ R/3“. You will cover the major risk areas for the latest SAP release, including Sarbanes-Oxley compliance controls related to the protection of organisational financial data accessible via the open architecture tool set. You will review each architectural component, including mySAP.com, ECC, WebAS, NetWeaver, Master Data Manager, Enterprise Portal and Exchange and Mobile Infrastructure in terms of risks, system defaults, segregation of duties, and other key controls necessary to ensure the integrity and confidentiality of data are properly established. Training Provider www.mistieurope.com   Contact details charlene...@analytix.co.za / +27 11 215-2480 Dates 23 – 24th August (Johannesburg) Governance, Risk management & Compliance workshop (2 days)   This comprehensive 2 day workshop analyses over 30 different public and commercially-oriented standards, frameworks and methodologies in the Governance, Risk Management, Compliance and Information Security arenas. It furthermore investigates the legislative compliance imperatives applicable to companies trading in South Africa . Each delegate will receive a complete cd packed with useful information related to the workshop! Training Provider www.analytix.co.za Contact details charlene...@analytix.co.za / +27 11 215-2480 Dates 17 – 18 July / 13 – 14 August (Johannesburg) ISO 27001 Lead Auditor (5 days)   ISO 27001 Lead Auditor (IRCA Accredited) training programme by NextGen has already been attended by senior professionals from SA industry in the past. The programme over a period of 5 days covers ISO 17799 and ISO 27001 in detail and its implementation as well as Audit principles and requirements Training Provider www.nextgen.co.za Contact details su...@nextgen.co.za / +27 11 783 3390 Dates 28 May – 1 June (Johannesburg) Certified Vulnerability Assessor (3 days) The training will provide training to an Assessor on various Information Security processes, plan conduct and report vulnerability assessment program. Configure and use vulnerability assessment tools and action planning to mitigate impacts identified by the assessment.   Training Provider www.nextgen.co.za Contact details su...@nextgen.co.za / +27 11 783 3390 Dates 4 - 6 June (Johannesburg) CobiT Implementation (2 days)   This comprehensive 2 day Course is designed for IT management and professionals, Internal and IT Auditors and Management that deal with the complexities of IT control functions on a daily basis.  Training Provider www.analytix.co.za Contact details charlene...@analytix.co.za / +27 11 215-2480 Dates 27 – 29 June / 26 – 27 July   Information Security (2 days)   ISO/IEC 17799 - Code of practice for Information Security Management ISO/IEC 27001 - A Specification for an Information Security Management System (ISMS) Training Provider www.analytix.co.za Contact details charlene...@analytix.co.za / +27 11 215-2480 Dates 30-31 May / 26 – 27 June  (Johannesburg) HBN – Chief of Staff (2 days)   Hacking By Numbers - Chief of Staff is a security course aimed at technical and business leaders. The latest offering in SensePost’s acclaimed ‘Hacking By Numbers’ series, this course brings IT and IT Security managers real technical information in a language they can relate to. Training Provider www.sensepost.com Contact details sh...@sensepost.com  / +27 12 460 0880 Dates 5 - 6 June (Pretoria) Business Continuity (2 days)   The British Standards Institute (BSI) has published a new Standard (BS 25999) that clearly defines the process, principles and terminology of Business Continuity Management (BCM) and Business Continuity Plan (BCP) Development. BS 25999 replaces PAS 56, which has been withdrawn. Training Provider www.analytix.co.za Contact details charlene...@analytix.co.za / +27 11 215-2480 Dates 21 – 22 June  (Johannesburg )     4. Special Interest Groups (SIGs)   1. Business Continuity   SIG is focused on best practices around business continuity and disaster recovery SIG Leader Azaad Sathar   Contact details azaad....@firstrandbank.co.za / 011 371 7021   Next meeting details TBC Venue provider Analytix, Illovo, Gauteng (Ask for Craig Rosewarne upon arrival) 2. Digital Forensics   SIG focused on digital forensics SIG Leader Karel Rode   Contact details Karel...@ca.com / 011 236 9111   Next meeting details TBC Venue provider CA offices in Sunninghill, Gauteng   3. Risk   SIG focused on Risk management, Governance & Standards SIG Leader Joss Bernstein   Contact details yose...@telkomsa.net / 082 882 8024 Next meeting details 21st May – 5pm to 7pm ISO 27001 – use the first three monthly SIG meetings to read through and explain the application of ISO 27001, with practical examples Venue provider Deloitte, Gauteng 4. IDM   SIG focused on Identity Management SIG Leader Leon Fouche   Contact details leon.f...@kpmg.co.za / 011 647 5232 Next meeting details TBC Venue provider KPMG, Empire Road, Gauteng   5. CERT   SIG is focused on the establishment of an independent incident response centre for Africa. SIG Leader Allen Baranov   Contact details all...@Angloplat.com / 011 373 6868   Next meeting details TBC   Venue provider TBC   6. Legal   SIG focused to shaping cyber law in our legal system SIG Leader Adv. Johann Hershensohn   Contact details joh...@hershensohn.com   / 082 600 1175 Next meeting details TBC Venue provider Lawtrust, Centurion   7. OS security   SIG focused on using open source tools such as Nessus & Snort (as a start!) SIG Leader Jacques van Heerden   Contact details jvanh...@gtsp.co.za   / 083 680 0990 Next meeting details TBC - Starts 4pm to 6pm   Venue provider Centurion venue at GTSP offices   8. CISSP Study group   SIG focused on assisting those who wish to attain their CISSP certification SIG Leader Hein Mulder   Contact details he...@sd.co.za   / 0824683202 Next meeting details Every Tuesday - Starts 6pm   Venue provider Progressive room at BP Head Office in the V&A Waterfront, Cape Town If you would like to start a SIG in your area please send me through the relevant details   5. Upcoming Events Date Details     22-25th May (8:30 to 17:00)   ITWeb Security Summit 2007 Type – Large information security conference with international speakers Bruce Schneier & Philip Zimmermann Location – Vodacom, Midrand, South Africa Costs – R2 520.00, excl for the conference only (2 days) Contact -  +27 (0)11 807-3294 / mari...@itweb.co.za (http://www.securitysummit.co.za )    (A special 10% discount offer to ISGA members if you book & pay before 30 April 2007 ) 5-8 June (8:00 to 17:00) IQPC - IT Risk Management Type – IT audits are becoming more prevalent, and with the requirements of King II, IT Governance and GAAP, you not only have to ensure that your system is capable of providing information to your accounts department, but also that all IT loopholes have been closed.   Location – Glenhove Conferencing, Melrose Estate, Johannesburg , South Africa Costs – TBC Contact -  +27 11 6695019/ susan....@iqpc.co.za 14 June (8:00 to 17:00) BMI-T SA IT Security Forum 2007 Type –Provides attendees with reliable content and expert advice on how to use modern information technologies to secure and protect the enterprise. Location – Gallagher Estate, Midrand, South Africa Costs – TBC Contact -  +27 82 466 2317/ an...@bmi-t.co.za (http://www.bmi-t.co.za ) 1-2nd August   Blackhat USA 2007 Type – 10 different tracks over 2 days comprising over 90 infosec specialists Location – Caesars Palace, Las Vegas, USA Costs – $1195 if you register by May 31 ($100 discount to ISG members) *Note* - We have been approached by Blackhat to send an African delegation through. Contact me if you plan to attend this year for more info (Craig) Contact -  http://www.blackhat.com/html/bh-usa-07/bh-usa-07-index.html  9-11th December   ISF 18th ANNUAL WORLD CONGRESS (Exclusive to ISF Members) Type - The ISF's Annual World Congress is continually rated 'the best information security conference in the world' by its delegates. It offers ISF Members an opportunity to come together for three days in an exclusive and confidential environment to discuss and debate the key issues facing information security professionals - and get practical advice they can take back and use Location – Cape Town, South Africa Costs – TBC excl (3 days) Contact -  http://www.securityforum.org
	Contact Person Craig Rosewarne | Telephone +27 83 231 4707 | Web http://www.isgafrica.org/ | Email cr...@isgafrica.org
	ISG Africa’s e-mail business continuity, compliancy, security and warehousing is powered by Mimecast

 

[Frans Sauermann]

Hi Craig
You've got (video) comment spam on the site, maybe enable online
WhiteHat users to comment?

[Karel Rode]

> You've got (video) comment spam on the site, maybe enable online WhiteHat users to comment? <

Please explain?

Karel

[Frans Sauermann]

See the sidebar...

SGAFRICA's Collections

* Coll-vv
My Videos

16 videos
* Coll-vv
ISG Africa Meeting Jan 2006

122577 videos
* Coll-vv
ISG AFRICA Jan 2006

66970 videos
* Coll-vv
ISG AFRICA Jan 2006

4 videos

More collections »