Overview
This seminar will give participants the knowledge necessary to understand and effectively evaluate both general and application controls in a modern, distributed information processing environment. It will outline and define basic technical concepts, incorporate concepts for modern web and distributed applications, and provide a risk-based approach for ensuring that adequate controls have been implemented. The seminar will incorporate guidance contained in leading industry standards, most notably the Control Objectives for Information Technology (COBIT) and the Federal Information Systems Controls Audit Manual (FISCAM). It will begin at a basic level and slowly progress into more complex technology issues that are prevalent in today’s information processing environments. The seminar will consist of modules that address the core areas of IT risk. Each module will explain the objectives, risks, key controls, and primary audit procedures that can be used. Participants will leave this seminar with a solid knowledge of key technology concepts, and the foundation needed to audit these technologies and processes effectively. Topics of discussion will include the following: • Information Technology Risk • Categories of Risks and Controls • IT Control Environment • Security Management • Operating Systems Security Management • Network Security Management • Electronic Communications • Disaster Recovery & Business Continuity • Systems Management • Physical, Environmental, & Operations Management • Database Management • Change Management • Systems Development • Transactional Integrity, Consistency, Accuracy, Validity • Web-based Applications • Application-level Security • Application Controls: Integration with General Controls • Types of Audits
Date:	February 27 – March 1, 2007	Agenda:	7:30 – 8:00	Registration & continental breakfast
			8:00	Class Begins
			12:00–1:00	Lunch
			4:30	Class Ends
Location:	Radisson Hotel Roseville 2540 N. Cleveland Ave St. Paul, MN 55114 651-636-4567		A morning and afternoon break will be scheduled

Cost:	$750 ISACA Members $850 Non-Members
CPE:	This training qualifies as 24 CPE hours. SecureIT Consulting Group is registered with the National Association of State Boards of Accountancy (NASBA), as a sponsor of continuing professional education on the National Registry of CPE Sponsors. State boards of accountancy have final authority on the acceptance of individual courses for CPE credit.

Registration Instructions
Step 1:	Click Here to download the Registration Form
Step 2:	Complete the Registration Form
Step 3:	Mail, Email, or fax the completed form and check or purchase order to our chapter office by Thursday, February 22, 2007
	Fax Number:	651-290-2266
	Email Address:	lauriek@ewald.com
	Postal Address:	MN ISACA 1000 Westgate Dr, Ste 252 St. Paul, MN 55114
Step 4:	Wait for your registration confirmation. Registration confirmations will be done by phone or by Email within 48 hours.
Registration Questions:		Please contact Laurie Krueger at lauriek@ewald.com or by phone (651) 290-6283.
Cancellation Policy:		http://www.mnisaca.org/cancel.htm
Additional Information
About the Speaker:		Ms. Cereda Amos, CISA, CFSA Cereda Amos is a Senior Security Consultant with SecureIT Consulting Group, a leading provider of IT Audit consulting and training services. Since joining SecureIT, Cereda has delivered numerous IT Audit seminars to a variety of customers, including multiple ISACA and IIA Chapters around the country. Prior to joining SecureIT Consulting, Cereda was an Information Security Specialist at the Federal Home Loan Mortgage Corporation (Freddie Mac). In that role, she was the Security Liaison to the network area, and worked with Network Engineers in defining baseline configuration standards for routers, firewalls, and other network devices. She also assisted a team in defining network security metrics to help continually assess security risk as it related to external connectivity. Before accepting the promotion to Information Security Specialist at Freddie Mac, Cereda worked in their Internal IT Audit department where she was responsible for assessing, designing, and implementing security controls over a wide array of platforms, technologies, and processes. Prior to joining Freddie Mac, Ms. Amos was an integral part of the Federal Reserve Bank System's Center for Auditor Development, where she developed and delivered trainings in the areas of IT Audit and IT Security.
Chapter Contact:		Eric Wion, VP Education Minnesota ISACA