Join us on Thursday, October 8th, 6:30 PM at the Portsmouth Public Library, as our speakers will explore "Governance, Risk & Compliance" and "The Evolution of SIM, SEM and SIEM".

About our speakers:

Bruce Beck, Vice President of Sales and Business Development for Avior Computing.
Mr. Beck has over 30 years of successful sales, business development and management experience in the technology industry, primarily focused on early stage companies.  Mr. Beck significantly contributed to the successful IPOs of three companies where he was an executive.

Mr. Beck joined Avior Computing in 2006, an emerging leader in the Governance Risk and Compliance (GRC) market, as the 3rd employee with responsibility for Sales and Business Development. Avior Computing’s customers include Cigna, Huntington National Bank, United Parcel Services, Guardian Insurance and Pearson Publishing. 

Mr. Beck earned a BS in Business Administration and a minor in Computer Science from the University of Illinois and a Masters in Finance from Boston College.  He is an avid competitive golfer.  Mr. Beck and his wife reside in North Hampton, New Hampshire.
 
Mark Carboni, Technology Consultant at RSA, The Security Division of EMC. 
Mark has over 26 years of technology experience spanning various disciplines, interacting and collaborating with a diverse group of solution seekers, from C level and below.  Mark specializes in providing Security Information and Event Management [SIEM] solutions to NY and New England enterprise customers.

Presentation Abstracts:

Governance, Risk & Compliance

The Executive Board of any large enterprise wants to know that the organization is appropriately protected against potential risk. The ultimate objective of risk management is to define and understand the risk tolerances of the enterprise, manage to those tolerances; optimizing the risk/return of the business. In addition, increased accountability and transparency is being demanded of corporate executives and boards of directors from both customers and regulatory agencies. Renewed enforcement and enhancements of regulatory requirements are becoming more evident and the costs associated with compliance are increasing significantly. This is occurring at the same time that resources are being stretched thin, if not altogether eliminated.

It has been estimated that spending on Governance, Risk & Compliance (GRC) exceeded $32 billion in 2008[i]. Budget priorities are becoming more focused on enterprise and operational risk management. As enterprises continue to spend time, money and resources on GRC, finding effective and economically sound ways to identify and manage the processes and procedures implicit in GRC is an enterprise imperative.

GRC is not just one particular subject, discipline or endeavor. It is the attempt to develop a unified approach to interrelated tasks and events within an enterprise, including among other things:
· risk management
· policy management
· compliance management
· continuity of business management
· asset management
· audit management
· threat management
· incident/event management
· vendor management

In my presentation I will provide an overview of the elements of a GRC program and provide an overview of what to look for in tools to implement a GRC program. I will also relate IT GRC to Operational Risk Management and highlight overlaps and differences.

The Evolution of SIM, SEM and SIEM

Check back here soon...