• Skip to primary navigation
  • Skip to main content
  • Skip to primary sidebar
  • Skip to footer
  • About
    • Secure360
    • UMSA
    • Get Involved
  • Events
    • Secure360 2021
    • Student360
    • Past Events
      • 2020 Secure360 Twin Cities
      • 2020 Student360
      • 2019 Secure360 Twin Cities
      • 2019 Student360
      • 2018 Secure360 Twin Cities
      • 2018 Secure360 Wisconsin
      • 2018 Student360
      • 2017 Secure360 Twin Cities
      • 2017 Student360
      • 2016 TC Secure360 Conference
      • 2015 Secure360 Conference
      • 2014 Secure360 Conference
      • 2013 Secure360 Conference
        • 2013 Secure360 Conference Speaker Presentations
      • 2012 Secure360 Conference
  • For Sponsors
    • Secure360 Twin Cities
    • Student360 Sponsors
  • For Speakers
    • Secure360 Speaker Details
    • Student360 Speaker Details
  • Blog
  • Nav Social Menu

    • Facebook
    • LinkedIn
    • Twitter
    • Vimeo

Secure360

From Scavenger Hunt to Competitive Advantage

As ever-increasing numbers of data breaches of unprecedented size continue to occur and evermore regulations are mandating good security practices, it seems companies are being asked to demonstrate security controls and compliance to an ever-increasing number of interested parties. These requests for information (RFI) come in many forms, including questionnaires, requests for proposal (RFP) and even on-site audits. Managing and responding to these requests can often feel like a frustrating, disjointed and muddled process, especially when approached as a series of one-off requests or projects instead of part of business-as-usual.

This presentation will provide 5 keys to turning your company’s security audit and RFI scavenger hunt into an efficient and measurable process using lessons learned from over 10 years of experience at public and private companies in highly-regulated industries.

Key learning points:
  • Suggestions for getting organized using tools your company already owns
  • Ways to make the process repeatable…and fast
  • Tips for providing the information the auditor really wants
  • Options for process measurement and reporting

About Tennelle Anderson

Tennelle has over 16 years of experience in information security, audit and compliance roles, including 10 years creating, leading and transforming security, compliance and audit programs and teams at public and private companies in highly-regulated industries. Tennelle’s previous experience has focused on providing companies with a competitive advantage by creating a framework for the proactive assessment and treatment of compliance and security risks and the organized and timely resolution of security and compliance deficiencies. In addition, Tennelle has effectively balanced the management of a number of varied security and compliance requirements and frameworks, including ISO 27001:2005 & 2013, PCI-DSS, HIPAA Security Rule, Safe Harbor/EU Data Privacy Directive, SAS70/SOC2, and Sarbanes-Oxley (SOX). Tennelle currently holds CISSP, CISA and CPA certifications.

Primary Sidebar

Details

Tuesday May 17, 2016
11:00 AM - 12:00 PM
Room 12
Level: Intermediate
Focus: GRC (Governance, Risk & Compliance)

Share this page

Share on Facebook
Facebook
Tweet about this on Twitter
Twitter
Share on LinkedIn
Linkedin
Buffer this page
Buffer
Email this to someone
email

Footer

Contact

For more information about UMSA events, contact: Marie Strawser

Email List Signup

Join our email list for monthly Secure360 news and updates!




Join our tradeshow email list for updates on sponsorship opportunities and upcoming exhibitor deadlines.

Sponsored by:
© 2021 Secure360. All rights reserved.