Chapter Events

The San Diego Chapter is dedicated to providing world-class content to our members in the areas of information systems (IS) audit, governance, risk management, privacy, and security. Our chapter meets on the third Thursday of each month (typically from 12:00 to 2:00 PM PST) and there’s a minimum of one (1) continuing professional education (CPE) credit for each meeting. Members are invited to follow ISACA’s CPE Policy. Content from meetings will help our members maintain current knowledge to support their CISA, CISM, CRISC, CGEIT certifications as well as the CyberSecurity Nexus certificate. Members are welcomed to submit ideas for meeting topics to Guests are always welcomed and the fees for monthly meetings are kept low or free to ensure active participation. Organizations are invited to sponsor monthly meetings for a nominal fee.

Loading Events

« All Events

  • This event has passed.

April 2016 – Joint IIA and ISACA Meeting

April 13, 2016 @ 7:30 am - 5:00 pm

Register Here:

Come and join ISACA for the annual ISACA-IIA all day Seminar. The first 30 ISACA members to register will recieve a $90 discount off the event! After the 30 deep discount tickets are gone ISACA members will still get a $60 discount off event tickets. You must be an active ISACA member to recieve this benefit. Otherwise your ticket will be refunded. Non-members can sign up for the event via the IIA San Diego website:

3-29-2016 11-02-16 AM

Program description:

The morning sessions will cover the topics of Creating an Effective Vendor Management Program, this discussion will highlight the constituent elements of a good vendor management and assessment program and provide real-world insight to help with diligence. The second morning session will be led by Alex Branisteanu, and it will focus on Internal Audit’s Role in Cyber Security. The last morning session will be a discussion on Compliance in the Cloud how you can dramatically increase your efficiency and accuracy when auditing an environment built in the cloud.

The afternoon sessions will cover Tips for Helping Auditors and Others Communicate. It’s filled with ideas to help you translate audits into words and concepts your non-audit colleagues will embrace, and eliminate the argument of whether audit brings value forever. The final three sessions will provide a brief overview and discussion of current trends with information security, data analytics, and cybersecurity investments.

Speaker Bio:

Matt Stamper CISO, VP of Services, MPIA, MS, CISA, ITIL, CIPP-US
Matt is a seasoned IT & Cyber Security executive. As a Certified Information Systems Auditor (CISA) with extensive public-company experience, Matt brings a depth of understanding and hands-on involvement in IT best practices to his clients. Matt’s diverse domain knowledge spans IT service management (ITSM), cyber security, control design and testing, individual revenue contribution, sales management, new product & service development, cloud services operations, compliance design and assessment (Sarbanes-Oxley, HIPAA/HITECH, CFR 21 Part 11 validated systems), privacy, governance, enterprise risk management (ERM), as well as extensive international experience in both Latin America and China. Matt excels at conveying complex cyber security and IT concepts to boards of directors, executive management, and professional services providers that are not domain experts in these fields.

Alex Branisteanu. Director IT Advisory San Diego, KPMG LLP
Alex Branisteanu (CPA, CISA, CISM, CISSP, CRISC, ISO 27001 Lead Implementer) is a Director in KPMG’s San Diego IT Advisory. Prior to joining KPMG, Alex served as the Director of Information Security implementing a comprehensive information security function for a large healthcare provider in Southern California. Her accomplishments include: IT Audits of clinical and business applications in healthcare, higher education, and banking, SOX 404 IT control design and testing; System and Program Implementations (badge identification & access, CCTV surveillance systems, data loss prevention for privacy and security monitoring, learning management system (LMS) online security & privacy awareness, identity and access management, computer asset management, laptop & USB device encryption, disaster recovery, and program change management); Information Security (policies and standards, intrusion detection monitoring and vulnerability management, mobility security, and cloud risk mitigation, incident response, reporting, and monitoring technologies, security event log management and monitoring, mitigation simulation exercises); HIPAA/HITECH and PCI DSS Enterprise Risk Control Self-Assessments. Alex serves as the CISM Coordinator on the ISACA San Diego Chapter Board and is a frequent speaker at various professional association conferences related to healthcare auditing and information security.

Aaron Wilson, Cloud Security Architect and Consultant
Aaron Wilson is the Founder and Principal of Scalable Security, a security-first Amazon Web Services (AWS) consulting partner providing educational workshops, cloud security strategy and operations playbooks, and hands-on services for automation, integration, and implementation.
Previously, Aaron was a senior consultant for the AWS Professional Services team, leading complex security initiatives for enterprise Fortune 500 companies across multiple industries around the world. While at Amazon, Aaron also served as a technical security advisor to internal AWS service builders. Aaron brings nearly two decades of experience in commercial and federal markets and several relevant industry certifications including the Certified Information Systems Security Professional (CISSP) and AWS Certified Solutions Architect – Professional Level.

W. Noel Haskins-Hafer, Compliance Technical Manager for Intuit Inc.
W. Noel Haskins-Hafer is the Compliance Technical Manager for Intuit Inc’s personal financial management and small business software divisions. She advises senior leadership on strategies for developing cutting-edge financial management products that comply with US, international and industry laws, regulations and standards. Since joining Intuit 8 years ago, she has created award-winning audit programs for emerging technologies, as well as designing and overseeing Anti-Money Laundering and fraud detection and prevention programs. A Deloitte alumna, she has represented Intuit at Association of IT Professionals (AITP) and Computer Week Cloud Computing Conferences, and was the first industry representative to San Diego State University’s Center for the Teaching of Critical and Creative Thinking.
Noel has an MBA from Rollins College in Winter Park, FL, and a bachelor’s degree from Yale University. She holds all four ISACA certifications as well as Certified Internal Auditor (CIA), Certification in Risk Management Assurance (CRMA), and Certified Fraud Examiner (CFE) designations. A board of the San Diego ISACA chapter, she also serves on ISACA International’s review committees for certification study materials, and is a frequent guest speaker at audit industry conferences in the Western US.

Marcus Richerson, Lead Penetration Tester at Somerset Recon
Marcus has been working in information security for 12 years and is a board member of the San Diego OWASP chapter. Marcus is a lead penetration tester at Somerset Recon, with a masters in Computer Science from San Diego State University. He is an avid security researcher and participant in vulnerability disclosure programs. Marcus actively hosts and participate in capture the flag hacking competitions and enjoys reverse engineering, exploit development, lock picking, SCADA security, embedded device hacking, web hacking and mobile application hacking.

Robert Putrus- PE, CMC, CFE, PMP, CISM, Compliance, IT, Operations, & Accounting Processes and IT Security
Robert Putrus, CISM, CFE, CMC, PE, PMP, is an IT professional with 25 years of experience in senior management roles, program management, compliance services, information systems and management of professional service organizations. He rendered services for variety of companies ranging from middle market to Fortune 100.
He is experienced in the deployment of various cybersecurity frameworks and standards. Putrus has written numerous articles and white papers in professional journals, some of which have been translated into several languages. He was quoted in publications, articles and books, including those used in masters of business administration programs in the US.


April 13, 2016
7:30 am - 5:00 pm


The Alexandria
10996 Torreyana Rd. CA 92121 United States + Google Map