The President s Message 3. ISACA Karachi Chapter Members Event (2 nd Oct 3013) 8. ISACA International News & Alerts 11 o o o o

Transcription

1

2 Table of Content Editor Absar Khan The President s Message 3 ISACA Karachi Chapter partnered ITCN ASIA ISACA Karachi Chapter Members Event (2 nd Oct 3013) 8 ISACA International News & Alerts 11 o o o o 15-Jan-2013 Renew Deadline New ISACA Resources Available Deadline to apply for certification ISACA certifications rank high for pay performance ISACA Network Training Week 9-12 Dec ISACA Book Store Update 13 For Suggestions & Feedback Country Highlights 14 o o o o Pakistani Smartphone App Intel Pakistan launches Tablet Pakistani Windows 8 App More than 70,000 Downloads Intel Pakistan Announces a range of Eco-System Absar Khan Chair Communication & Publications, ISACA Karachi publications@isacakarachi.org ISACA Conference / Training Week Calendar [Nov-Dec] 16 Contacts of ISACA Karachi Chapter Board Members 17 This bimonthly newsletter focuses on ISACA Karachi Chapter s activities, achievements & announcements. It also highlights major news events happening in the IT/IS/Telecom/eBusiness/GRC & related sectors of Pakistan.

3 President s Message Dear Members, I am pleased to share your Chapter s activities and some important news that may be interest to you. As you know, in the first couple of months your chapter partnered, sponsored & solely conducted several events which include : ITCN ASIA 2013 This is first time that your chapter partnered this annual event of the city held on 8 10 Oct 2013 at Expo Center Karachi. We were the Strategic Partner of this mega event. Due to our efforts, the event organizers agreed to invite our Chapter Members and C-Level Executives and Sr. Industry Professionals not only in the Exhibition but also in the event Conference and Roundtable Sessions. Chapter president and two Board Directors of your chapter were addressed the conference. On first day of the event, I delivered a speech on egovernment. On second day, speech on "Key Consideration for Information Security" was delivered by Mr.Hussein Hassan Ali, On third day, "e-education" speech was delivered by Ms.Zainab Hameed. A large number of conference participants and visitors visited the stall of ISACA Karachi Chapter during exhibition. You can get brief information of the event in our newsletter. Presentation on 2 nd Oct 2013 Your chapter conducted a presentation on Managing Risk & Ensuring Compliance. To conduct this presentation, we invited Mr.Mahir Mohsin Sheikh as a Speaker, who is CEO of Trillium Information Security Systems. You can see event detail in the newsletter. The held in the Marriott Hotel Karachi. It was a Free Event for chapter members and offered 2 CPE Hrs. Continue... ISACA Karachi Newsletter Jul Aug 2013 Edition Page 3 of 17

4 President s Message Upcoming event for November: I am pleased to inform you that in the month of November; your chapter is planning to conduct a comprehensive presentation on Business Continuity Management. Mr.Sohail Khimani BCM/ERM will be honorable speaker of the event. The event will be held in Marriott Hotel Karachi and will be a free event for Chapter Members. Online COBIT Foundation Course: ISACA is offering online COBIT Foundation Course version 4.1. The course will offer 8 CPE Hrs and will cost USD $ 400 for members and USD $ 550 for nonmembers. You could find its detail in the newsletter. ISACA latest publications released: ISACA knowledge center has released some latest publication on COBIT5 Assurance, Responding to Targeted Cyber Attacks and Cloud Governance. These are available on ISACA bookstore. At the end, I would like to assure you that your board is continuously working to provide ease to each and every member. Feel free to contact us, your chapter board and especially myself will be very glad to serve you all the time. We are working for more members events and sooner after the holy month of Ramadan you will be informed accordingly. We are committed to make ISACA Karachi Chapter as one of the leading chapters of Asia. Last but not the least; I would like to thank you for supporting your chapter. Thank you. Zain Ansari President, ISACA Karachi Chapter. 1 st November 2013 Earn Over 70 FREE CPE ISACA Certified Members Can Earn Over 70 FREE CPE Credits Certified members have numerous options in order to obtain their FREE continuing professional education credits through: Journal quizzes Monthly esymposia quizzes Local Chapter volunteer activities Mentoring Learn more about FREE CPE T0xNjA0NjY3JnA9MSZ1PTEwMj AwOTA1OTgmbGk9NzE2ODg3M g/index.html ISACA Karachi Newsletter Sep Oct 2013 Edition Page 4 of 17

5 ISACA Karachi Chapter Partnered ITCN ASIA 2013 Exhibition & Conference Karachi Mr. Zain Ansari President ISACA Karachi Chapter is inaugurating egovernment Forum at ITCN Asia ITCN ASIA Exhibition & Conference Karachi. Karachi: 13 th ITCN Asia 2013 Int'l Exhibition & Conferences held at Karachi Expo Centre on October 8-10, This annual event is being organized since 12 consecutive years. This is first time that ISACA Karachi Chapter partnered this annual event of the city as a Strategic Partner of this mega event. It is a mega platform that brings together a series of eight (8) conferences covering the most important aspects of IT & Telecom Industry including: Asian Telecom Summit, CISO Summit, Cloud Pakistan Summit, Digital Marketing Forum, egovernment Forum, Pakistan Apps Summit, Conference on Data Center Solutions and Conference on elearning. This event brought together more than 1200 CEOs/CIOs/CTOs/Telecom Solution Providers from different industry sectors, including top level executives and key decision makers of preeminent IT & telecommunications companies from around the globe. 51 Foreign delegates/participants from more than 15 countries including UK, USA, Dubai, Russia, India, Middle East, China, Germany, Taiwan, etc visit the event. On first day Mr.Zain Ansari - President ISACA Karachi Chapter addressed the audience at the inauguration of this mega event. He delivered a speech on egovernment topic. Apart from him, two other Board Directors of ISACA Karachi Chapter were also addressed the conference. On second day, an outstanding speech on "Key Consideration for Information Security" was delivered by Mr. Hussein Hassan Ali,who is Chief Information Security Officer, Bank AL Habib Ltd, Karachi and Board Director ISACA Karachi Chapter. On third day, another comprehensive speech on "e-education" was delivered by Ms. Zainab Hameed, IT Business Partner, GSK Pakistan and Chair Marketing ISACA Karachi Chapter. ICT products / services, telecommunications equipments, systems, networking, IT solutions, software/ programs, office automation, multimedia devices and digital products were displayed at the exhibition. A large number of conference participants and visitors visited the stall of ISACA Karachi Chapter during exhibition. ISACA Karachi Newsletter Sep Oct 2013 Edition Page 5 of 17

6 ISACA Karachi Chapter Partnered ITCN ASIA 2013

7

8 ISACA Karachi Chapter conducted a presentation on Managing Risk & Ensuring Compliance 2 nd October 2013 Marriott Hotel Karachi ISACA Karachi Newsletter Sep Oct 2013 Edition Page 8 of 17

9 ISACA Karachi Chapter conducted a presentation on Managing Risk & Ensuring Compliance ISACA Karachi Newsletter Sep Oct 2013 Edition Page 9 of 17

10

11 ISACA International News & Alerts 15-Jan-2013 Renew Deadline 15 January 2014 is the Membership and Certification renewal deadline. To renew, log in and click on the Renew link from the ISACA home page. Renewing can be easily completed by logging onto the ISACA web site, clicking the Renew button and following the online prompts. Certification renewal update The certification renewal period for 2014 will open soon. Renewing ISACA certifications requires payment of the annual certification maintenance fee and reporting of continuing professional education (CPE) hours for the annual and/or 3-year cycle. The CPE policy requires earning a minimum of 20 CPE hours in each cycle year and 120 CPE hours over the 3-year cycle. With the new CPE reporting system, CPE hours can be entered as they are earned, individually or in a single total for the year. To learn more about annual certification maintenance, visit the Maintain Your CISA, CISM, CGEIT or CRISC and the How to Report and Earn CPE pages of the ISACA web site. New ISACA Resources Available COBIT 5 for Risk creates an information risk view of COBIT 5 for ISACA s information risk constituents. This guide is the riskfocused equivalent of the COBIT 5 for Information Security publication within the COBIT 5 family of products. Configuration Management: Using COBIT 5 provides practical guidance about implementing and managing configuration management using COBIT 5 as a foundation. It describes the most common risk factors, threats, controls and best practices to maximize benefits and reduce associated risk. A good portion of the book is dedicated to the configuration management database concept, including information on how to build an effective database, interacting with other IT processes, configuring item life-cycle management and security controls. Information on current research projects is posted on the Current Projects page of the ISACA web site. Deadline to apply for Certification Exam passers have only 5 years to apply for certification once they have passed the exam. As an example, for those who passed an exam in 2008, the period permitted to apply for certification will end 31 December Please note that the title designation of CISA, CISM, CGEIT and CRISC cannot be used until the exam passer has completed and submitted the corresponding application for certification and has been awarded certification by ISACA, following review and approval of the application. Contact certification@isaca.org with questions concerning the application process. ISACA Certifications Rank High for Pay Performance According to the latest IT Skills and Certifications Pay Index (ITSCPI) report from Foote Partners LLC, individuals who have attained ISACA certification ranked among the highest on its pay performance index. The average pay premiums for 289 IT certifications were surveyed and CISM and CGEIT tied with other certifications as the fourth highestpaying certification for the second quarter of CISA and CRISC tied as the fifth highest-paying certification. In addition, CGEIT s market value increased by 10 percent during the quarter ending 1 July More information on ISACA certification is available on the Certification page of the ISACA web site. /default.aspx ISACA Karachi Newsletter Sep Oct 2013 Edition Page 11 of 17

12 Network training week Network Security Auditing 9-12 December 2013 Houston, TX, USA This ISACA and Deloitte unique course teaches the experienced auditor to recognize and address information security issues in the enterprise. Learn to identify and analyze the risk associated with security threats across network, operational and physical systems. Course description: With a proliferation of high profile network security attacks over recent years, this course looks to equip the IT auditor with the necessary skills to scope, plan and perform a network security assessment. Learn how to view and help protect the network perimeter of the organization through a range of hands on presentations and demonstrations. Target audience: IT auditors and integrated auditors Audit managers IT managers responsible for information security CPE: up to 32 Cost: ISACA Member...$2,500 Nonmember...$2,700 Day One Business risks o Why should you secure your external systems? o Privacy matters o Securing customer data Networking basics o Defining types of networks o OSI model o TCP/IP Attack & penetration overview o Open source testing methodology o How to use methodology to strategically align audits Day Two Foot-printing o Finding a company's Internet presence o Freely available information o Web site TMI (Too Much Information) Discovery o Identifying systems exposed to the Internet (Ping Sweeps) o What are those systems offering? (Port Scanning) o What Operating System is in use? (O/S Detection) o Using discovery methodologies as audit tools Day Three Enumeration o What do the systems tell us? (auditing your public face) o Auditing via hacking techniques Windows UNIX Linux o Web application hacking (auditing for potential holes in your ecommerce site) Firewalls o Premier & DMZ design concepts o Firewall options o Auditing firewalls Day Four Auditing for common vulnerabilities & risks o Patches, hot fixes, & updates o SPAM o What you should be doing? Vulnerability management concepts o Independent security assessments o Vulnerability management applications o Vulnerability management appliances ISACA Karachi Newsletter Sep Oct 2013 Edition Page 12 of 17

13 ISACA Book Store Update The ISACA Bookstore offers new tools for preparing for ISACA s 2013 certification exams CISA Review Manual 2013 CISM Review Manual 2013 CGEIT Review Manual 2013 CRISC Review Manual Candidates Guide to the CISA Exam & Certification 2013 Candidates Guide to the CISM Exam & Certification 2013 Candidates Guide to the CGEIT Exam & Certification 2013 Candidates Guide to the CRISC Exam & Certification CISA Practice Question Database, CD-ROM or download CISM Practice Question Database, CD-ROM or download CISA Review Questions, Answers & Explanations Manual CISM Review Questions, Answers & Explanations Manual CGEIT Review Questions, Answers & Explanations Manual CRISC Review Questions, Answers & Explanations Manual COBIT 5: Implementation COBIT 5: Enabling Processes COBIT 5 for Assurance COBIT 5 for Information Security Ways to Order these books Search the Bookstore online For the complete descriptions by product title or category. Contact ISACA Bookstore bookstore@isaca.org or Online: Mail: Fax: Order online at Mail your completed order form with payment to: ISACA 1055 Paysphere Circle Chicago, IL USA Fax completed order form with credit card # & Expiration date to ISACA e-library Center/Pages/eLibrary.aspx ISACA Karachi Newsletter Sep Oct 2013 Edition Page 13 of 17

14 Country Highlights IT, IS, Telecom & related sectors Pakistani Smart-phone App Got Global Recognition! It is an honor for Pakistani Mobile App Development Community that Groopic, a Smart Phone App by Lahore Based Eyedeus Labs, is getting global recognition. Groopic is Smartphone app that has solved ever existed problem of including photographer in a picture in a group photo. This app caters best in itself enabling you to take a group picture and put yourself in it. So photographer won t be out from picture anymore even without asking help from a stranger or to have a trivet. Groopic, smartphone app developed to give user an idyllic group photo in just three simple steps that are: 1.Simply take two pictures. 2.Mark the photographer. 3.Finally, this app will utomatically merge these incomplete pictures into one complete group picture. Other than this credit, further Groopic app achievements are: Won Best startup Award at Startup Weekend Lahore in February Earned (PITB) Plan9 incubation. Got Runners up Award at P@SHA ICT Awards Featured by renowned and leading media property, Techcrunch. Currently got prominent coverage by CNN media. Watch Another endearing aspect of this intriguing app is its now among the Top 10 Photo & Video Apps on the US AppStore. However, this smart app could be purchased for Apple devices for 0.99$. Intel Pakistan launches 'Tablet' to bring revolution Intel Pakistan launches its Intel powered notebook "Tablet" across Pakistan to bring a technological revolution in the country, said Naveed Siraj, a country manager. He said Intel imparted training in information technology to 0.3 million teachers while 50 research workshops were conducted in Pakistan. Adult IT literary program was launched in rural areas to educate and train the rural women. He said Intel Pakistan had embarked on a nation-wide initiative to increase awareness of personal computing devices and drive domestic adoption of technology in Pakistan by targeting consumers with message of how a PC could change their life. "Intel believes that technology can play a pivotal role in ending the digital divide in Pakistan and driving personal growth, be it in developing job skills or providing easy access to quality education, healthcare and critical government services. Our efforts through this campaign are one step in this direction and hope that more people will purchase personal computing devices and get a firsthand experience at the transformative capability of technology," they concluded. ISACA Karachi Newsletter Sep Oct 2013 Edition Page 14 of 17

15 Country Highlights IT, IS, Telecom & related sectors Pakistani Windows 8 App Gets More than 70,000 Downloads Pakistani Windows 8 App Gets More than 70,000 Downloads G Maps, a free app for Google Maps, has been downloaded by more than 70,000 Windows 8 users with-in a week of its launch at Windows 8 marketplace. This Ultimate Google Maps app for Windows 8 with Street View, Weather, Live Traffic and Photo stream support is is Developed by Data Arc, a Lahore based startup specializing in software development for mobile and tablets for ios, Android and Windows. Software firm claim to be amongst the first companies that had submitted Windows 8 Apps from Pakistan. To know more about G Maps visit: en-us/app/g-maps/61757ddf a198-1d391c Intel Pakistan announces a range of Ecosystem Intel Pakistan announced a range of ecosystem and enabling efforts that will further accelerate the company's presence in mobile devices and help usher in new devices and richer experiences with Intel Inside. The announcements include support from OEMs for new dual-core Atom(tm) SoC ("Clover Trail+") platform Android* tablets. Naveed Siraj, Country Manager, Intel Pakistan told that the Atom Processor Z2580 codenamed "Clover Trail +", Z2460 codenamed "Medfield" and the company's 22nm Atom SoC Z3000, codenamed "Bay Trail", will be the starting foundation for the effort. Atom Z3000 (Bay Trail) processor based tablets will become available in Q4, He said the "Bay Trail" family of processors is based on Intel's lowpower, high-performance micro architecture "Silvermont", announced in May This is the company's first mobile multi-core SoC and its most powerful offering to date for tablets and other sleek mobile designs. The family of "Bay Trail" SoCs provides a wide range of options for Intel's customers by enabling one hardware configuration that supports both Windows 8 and Android, ultimately offering people broader choice of form factors at arrange of price points that meet the varied needs of consumers and business users, he added. ISACA Karachi Newsletter Sep Oct 2013 Edition Page 15 of 17

16 ISACA International Up Coming International Conference / Training Week Calendar Nov Dec 2013 Training Week: Virtual Conference Training Week Taking the Next Step: Advancing Your IT Auditing Skills Cloud Maturity How to Solve Your Cloud Security Challenges COBIT: Date Nov th Dec Dec 2013 Location Dallas, Texas, USA Online Las Vegas, Nevada, USA New 2014 ISACA conference and educational event dates have been released. For the latest information, please visit ISACA Karachi Newsletter Sep Oct 2013 Edition Page 16 of 17

17 List of Board Members, ISACA Karachi Chapter Zain A. Ansari President Kashif Alam Khan Vice President M Asif Riaz Secretary Muhammad Maad Treasurer Aamir Jamil Chair IT Governance/COBIT/CGEIT Coordinator Abdul Rasool Hoodbhoy Chair Special Projects Absar Khan Chair Communications Faisal Abdullah Akhawala CISA Coordinator Muhammad Kamran Chair of Academic Relations Muhammad Sami ul Hassan Chair Membership Zainab Hameed Chair Marketing Waqar Ahmed Khan Immediate Past President PastPresident@isacakarachi.org