Embedding new GRC Technologies into business processes
25 & 26 February 2020
The Forum, Bryanston
Speaker
Tapiwa Zvandasara
IT Governance, Risk & Compliance Specialist, TCTA
Tapiwa Zvandasara is a seasoned information risk, security and control professional who is currently working as an IT Governance, Risk and Compliance (GRC) Specialist with expertise in IT Governance, Information Security Management, IT Risk Management, Business Continuity and Disaster recovery Management, IT Compliance Management with a passion for information and cyber security and enterprise governance of IT. He currently works at the Trans-Caledon Tunnel Authority (TCTA), a parastatal under the Department of Affairs of South Africa.
Prior to joining TCTA, he worked for more than 18 years as an Information Systems/IT Auditor where he was a senior consultant with a firm of Chartered Accountants in South Africa. He consulted and provided advisory services on Application Controls, General Controls, Information Security, IT Governance, Project controls, Data analytics, Business Continuity and Disaster Recovery in various industries, including banking, manufacturing, services and government institutions. Prior to that, he worked for various organisations including large banks within the information systems control and audit space in Zimbabwe.
Previous speaking experience
- Digital ID World Africa 2012, Johannesburg, South Africa
- Cyber Crime and Criminal Justice System Forum 2015, International Law Enforcement Academy (ILEA), New Mexico, Rosewell, USA.
- CSX Asia Pacific conference 2016, Singapore
Tapiwa Zvandasara will be speaking on the following topics:
Case Study Social engineering: The art and science of hacking the human mind
Social engineering is the act of tricking prospective victims into divulging information or taking action. Technology is usually used to take advantage of the potential victim’s natural tendencies and emotional reactions. During this session, you will:
- Learn about the most common social engineering attacks.
- How to protect your organisation from social engineering attacks.
- How to create an environment of awareness by training all employees in your organisation.
Panel Discussion Panel discussion: Highlighting the latest updates on GRC laws that impact businesses, including data protection laws and privacy standards now at play
With the commencement date for GDPR having passed and that of POPIA on the horizon, it is pertinent for organisations to understand these laws on data privacy. The experts will discuss:
- How to address data privacy issues, including compliance with GDPR and POPIA.
- Methods of ensuring individuals who have access to personal data are bound by appropriate confidentiality undertakings.
- When the POPIA commencement date occurs and what this means for businesses in SA.
- Which lessons might be learnt through GDPR compliance and how they can be applied to POPI compliance.
Industry Insights Sponsors
F-Secure
F-Secure Consulting is a research-led cyber security consultancy, partnering with enterprises and early adopters worldwide. We exist to build resilience in an ever-changing digital world by providing evidence-based security advice. Our research and passion drive service innovation and excellence for our clients.
Please visit: www.f-secure.cog.
Puleng Technologies in partnership with RSA
Puleng Technologies
The Puleng Blueprint provides our customers with a client-centric strategy to manage and secure the two most valuable assets an organisation has: its Data and Users while facilitating IT and business with a platform to build an efficient, collaborative and integrated Cybersecurity programme.
www.puleng.co.za
RSA
Learn more at www.rsa.com
Silver Sponsor
OneTrust GRC
OneTrust GRC enables risk, compliance and audit professionals to identify, measure, and remediate risk across their business. With OneTrust GRC, companies can seamlessly integrate risk management into their daily activities.
Please visit: www.onetrust.com.
Display Sponsor
ISACA
The South Africa Chapter covers all of South Africa; including the Western Cape (Cape Town), Eastern Cape (PE and East London), Gauteng (Johannesburg & Pretoria) and Kwazulu-Natal (Durban).
The South Africa Chapter (130) is the largest chapter in the Africa region, which comprises 17 ISACA chapters; and is the twelfth-largest chapter of ISACA’s 221 chapters worldwide.
Now in its 28th year of existence, the vision of the ISACA SA Chapter is to be the leading professional organisation in South Africa for business leaders in technology, information and cyber security, governance, risk and innovation.
The ISACA community is guided by our Purpose and Promise, which defines the essence of who we are and what we do. Our Purpose is the reason we exist—to help business technology professionals and their enterprises around the world realize the positive potential of technology. Our Promise is how we, as an organization and as individuals, deliver on our Purpose: inspiring confidence that enables innovation through technology. Our work, and the work of the professional community we support, has never been more important.
Please visit: engage.isaca.org.
RT @FSecure_Consult: We had a great time today meeting delegates at #ITWebGRC2020! Our highlight was a talk from our very own Johannes Mybu…
A panel discussion on what compliance and regulatory issues RegTech work solves, at the ongoing #ITWebGRC2020 https://t.co/owbdbY4OpE