This event has ended. Visit the official site or create your own event on Sched.
Don’t forget to mark your calendars now for FAEDS 2017, September 24th through 27th, at the Hilton Daytona Beach Resort/Ocean Walk Village.
Back To Schedule
Tuesday, September 20 • 11:15am - 12:00pm
Addressing Audit Criticism

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Please note that this is the last 45 minutes of the 3 hour session on Building Security into Contractual Agreements: Bid Specs, SLAs, MOUs. The speaker sharing insights on dealing with auditors and answering questions related to addressing audit findings. A description of the full session is below.

In this seminar we will explore the procurement process focusing on some of the security related considerations that should be written into the RFP process as well as within Service Level Agreements and Memorandum’s of Understanding. During the morning we will talk about:

  • How regulations and industry requirements regarding data security and privacy are changing the way contractual arrangements are documented 
  • The need to set expectations for security and monitoring at the RFP stage
  • The need for data related receptacle agreements
  • How data ownership and custody should be declared and documented in a SLA or MOU
  • Sources to aid organizations in building contractual documentation from EDUCAUSE and others

At the end of today’s session, you should have a better understanding of how to build security into contractual agreements and some of the items to look for to assure effectiveness of these agreements.

Note: This is a facilitated session on the procurement process. During the presentation, small teams will review a mock RFP for an LMS System, an Onboarding Due Care Review Checklist and a sample SLA & SLA Performance Checklist. As teams and as a group we will discuss the quality and shortcomings of these documents.

avatar for Shawna Flanders, CISM, CRISC, national ISACA trainer

Shawna Flanders, CISM, CRISC, national ISACA trainer

President and Chief Technical Consultant and Trainer, Business - Technology Guidance Associates. LLC
Over 30 years of experience in technology including including technology related : Information Security Incident Response Telecommunications Risk Management Audit Vendor Management Data and Information Governance and Privacy Business Resiliency (BCP/DR) Project and Program Management... Read More →

Tuesday September 20, 2016 11:15am - 12:00pm EDT
Coquina C 100 North Atlantic Avenue, Daytona Beach, FL 32118