eNews - January 2015

The President’s Message

Greetings Dallas Chapter!  As we wrap up 2014 and welcome in 2015, we have a lot to celebrate. Our 3rd Annual Dallas IIA Super Conference was a tremendous success. I would like to express my gratitude to the conference steering committee, our sponsors, speakers, volunteers, and the roughly 800 attendees who came together to make this event so special.  Without the support of each and every one of you, this outstanding event would not be possible. In fact, we even received some recognition, albeit indirectly, as keynote speaker Chad Hennings was recently featured on one of our local Dallas television news programs. The news broadcast showed clips of Chad speaking at the Super Conference and signing books afterwards.

In addition to the Super Conference, our Chapter also held its annual toys for tots drive and collected unwrapped toys for families in need this holiday season. The drive was conducted during our December monthly meeting. The meeting was led throughout the day by John Hall. John’s 3 hour course on “How to Audit….Better” was well received and many participants commented that this was in fact one of their favorite courses offered during our monthly meetings.

The Chapter’s next monthly meeting will be January 8th and it will be our annual joint session with North Texas ISACA. Our lunch speaker will be Peter Vogel who will lead a session titled “Internet 102” which will discuss the implications of cyber intrusions and common mistakes associated with privacy.  Additional sessions for the day include the pre-meeting “Legal Security and Compliance in an IS Environment” led by John Ansbach, General Counsel at General Datatech, L.P.  and our post meeting “Texas Perspective – what we are doing in the state, how others can leverage it, as well as any legislative/regulatory aspects of the state’s laws related to privacy/identity protection” which will be presented by Brian Engle, Chief Information Security Officer, State of Texas Department of Information Resources. The day’s courses should be exciting and informative regardless of your level of experience in information systems or internal audit.

The January meeting will be held at the Renaissance Dallas Richardson Hotel. Please follow the link http://www.cvent.com/d/trq75b/4W to register now! Don’t miss out on this outstanding event!

On behalf of the Chapter, happy holidays!

Sincerely,
Joseph Mauriello>2014/15 President – Dallas IIA
president@dallasiia.org

January 8, 2015

Joint Meeting with
North Texas ISACA

Lunch Meeting - 12:00 pm - 1:00 pm
Lunch to be served at 11:40 am
Registration at 10:00am or 11:30 am

Internet Law 102 - Cyber intrusions, privacy and common mistakes
Peter S. Vogel, Partner at Gardere Wynne Sewell LLP

Objectives:  The Internet is the greatest social change in the history of humans, and Social Media is transforming communications, and as a result the world has changed forever.  Because of these social changes brought about by the Internet it is imperative that IT auditors and professionals know and understand Internet legal issues, or suffer the consequences.  However learning about Internet legal issues is not static and continues to change, so in the meantime we need to be vigilant to changes in the Internet.

At the conclusion of the session, participants will have gained an understanding of:

  • Cyber Insurance Advice
  • Use of the cloud impacts all businesses
  • eGovernment changes access to the public
  • US and International Privacy Issues
  • Impact of Social Media on business
  • Greater use of GPS location based information impacts discovery and evidence the basic risks organizations face related to social media

No prerequisites required

Peter S. Vogel is a trial partner at Gardere Wynne Sewell LLP where he is Chair of the eDiscovery Group and the Internet, eCommerce, & Technology Team.  Before practicing law he worked as a systems programmer, received a Masters in Computer Science, and taught graduate courses in information systems.   Peter has had trials around the US on software implementations, misappropriation of trade secrets, copyright infringement, software patent infringement, and Internet disputes.  For 12 years he has served as the Founding Chair of the Texas Supreme Court Judicial Committee on Information Technology which is responsible for helping automate the Texas court system and creating the Texas eFiling System. Peter has taught courses the SMU Dedman School of Law for more than 25 years including courses on eDiscovery and the Law of eCommerce. Many of Peter’s topics are discussed on his blog www.vogelitlawblog.com and in his monthly legal column on www.ecommercetimes.com.

1 Hour Continuing Professional Education

 

Pre-Meeting
10:30 am - 11:30 am
Registration at 10:00am or 11:30am

The Internet of Things (IoT) and the Cybersecurity, Standards and Privacy Challenges that Lie Ahead
John Ansbach, General Counsel of General Datatech, L.P.

Objectives:  By the year 2020, experts estimate that we’ll live in a world where somewhere between 50-100 billion connected devices surround and impact our lives. Everything from our cars to our homes, our schools, factories, hospitals, appliances and even our clothing will be connected to one another in, through and over the Internet, creating what’s been called an Internet of Things (IoT). While it’s clear that the IoT will drive innovation and unleash tremendous value across almost every business sector (more than $19 trillion dollar market potential, by some estimates), what’s equally clear is that the IoT will also produce significant challenges to Cybersecurity and privacy, especially in a world without established standards. In this session, John Ansbach will discuss the IoT, the amazing solutions now emerging and the risks and challenges that will come along with it. The IoT is here, and business leaders at all levels need to understand it and it’s associated and previously undiscovered perils.

At the conclusion of the session, participants will have gained an understanding of:

  • The Internet of Things (IoT)
  • IoT uses and applications now in use and on the horizon
  • Big Data’s role and value in IoT
  • IoT Cybersecurity and privacy challenges
  • The need for and status of IoT standardization movements

No prerequisites required

John Ansbach is General Counsel of General Datatech, L.P. (“GDT”), an award winning technology integration partner. In business since 1996, GDT specializes in designing, building, and delivering complex information technology solutions in service provider and enterprise networking, data center technologies and services, as well as cloud services, collaboration, information security, optical design, wireless and mobility.

As General Counsel for GDT, John he is responsible for all of the legal affairs of the company, which include negotiating and memorializing commercial agreements; developing and implementing risk management policies, including those relating to information security; protecting the organization’s intellectual property; and overseeing regulatory and compliance efforts. John also leads GDT’s government relations efforts, and as such helps the company to monitor and impact legislative developments in Texas and across the country as they pertain to technology, intellectual property protection, tax treatment, and other matters.

Prior to joining GDT, John served as General Counsel and Chief Operating Officer of a financial services company and General Counsel of a national non-profit. In addition to his work at GDT, and when time permits, John speaks to organizations across the US and Canada on topics related to technology, cloud and Cybersecurity, the Internet of Things, diversity and leadership. His audiences have included Toyota, Frito Lay, Hewlett Packard, PepsiCo and others. John has authored articles for Law Technology News, the Association of Corporate Counsel, the American Law Institute, and The Texas Lawbook. He also publishes a weekly technology blog at ansbachblog.com.

1 Hour Continuing Professional Education


Post Meeting
1:15pm - 2:15pm
Registration at 10:00am or 11:30am

The State of the State of Cybersecurity
Brian A. Engle, CISSP, CISA, CISO for the State of Texas

Objectives: 

An overview of the general landscape of cybersecurity from the State of Texas perspective, and a glimpse into the strategic plan that will move the state forward through 2020.
By the session's end, participants will understand:

  • How the issues of industry and customers relate to the government sector and citizens
  • An overview of the security program maturity evaluation process that the State of Texas uses to measure maturity in its agency organizations
  • A summary of the strategic plan that is meant to address the issues that are currently present, and how the state will be moving forward for the next five years in the statewide security program

No prerequisites required

Brian A. Engle, CISSP, CISA - as CISO for the State of Texas, Brian advises the executive leadership of nearly 200 independent agency and higher education organizations on protecting state government information resources. Brian oversees statewide cybersecurity strategy and the enterprise security program, operations, and services. His mission includes creating a “risk aware” culture that places high value on securing state information resources and protecting personal information entrusted to the state.

Brian also serves as the Texas Cybersecurity Coordinator. In this role, he develops partnerships between private industry and public-sector organizations to build a more secure and prosperous Texas. These strategic partnerships will help produce an exemplary cybersecurity workforce, equipping the state to protect technology resources from increasing threats.

Brian holds a bachelor of science in management/computer information systems, is a past president and lifetime Board of Directors member of the ISSA Capitol of Texas Chapter, is a member of ISACA, and holds CISSP and CISA certifications.

1 Hour Continuing Professional Education


Meeting Location

Renaissance Dallas Richardson Hotel
900 E. Lookout Drive · Richardson, Texas 75082


View Larger Map

>> Current Month Registration - CLOSED <<

Contact:
reservations@dallasiia.org

May 2015 Social Meeting Prices:

  • Dallas IIA Member $55
  • Other IIA Member or Non-member $65

NO WALK-INs will be allowed. Price includes up to 2 CPE and game ticket; there is no prorated price for attending just one of the meeting day sessions.

Reservations & Payment must be received by 5:00 on Friday, January 2, 2015.

Registration Cancellation Policy

Current Cancellation date: 5:00p Friday, May 8, 2015

  • You can cancel online until the current cancellation date and receive 100% refund. If you do not cancel by the deadline, you may send a substitute in your place after notifying reservations@dallasiia.org.
  • The substitute may be required to pay an additional fee which would depend on their membership status (Member, Student Member or Non-Member). To cancel your registration after the cancellation date, please send an email to CANCEL@dallasiia.org .

Chapter News

Dallas IIA Social Media

Follow us on our social media for updates, information, and current events!



Look on our social media outlets for regular updates about internal audit hot topics, meeting registration, interesting information about our speakers, and much more!

Use the official hashtag #DallasIIA to post about monthly meetings, current events, hot topics, etc.!

This year is the Dallas IIA’s 65th Anniversary, and we encourage you to celebrate with us this year at our monthly meetings and conferences! Please use the hashtag #DIIA65 to post about this incredible anniversary. We encourage you to submit Dallas IIA photos, stories, memories, or anything else using the hashtag #DIIA65, so that we may celebrate together!

"Thanks for another record setting year!"
Greg Estes, 2014 Super Conference Chair

  • 800+ Registrants
  • 25 Sponsors
  • 8 Program Tracks
  • 48 Speakers
  • 55 Volunteers



News from UT Dallashttp://som.utdallas.edu/iaep

The UTD Center for Internal Auditing completed the first semester of the 12th year of the program.  There were a lot of new faces with plans for more in the spring semester.  We start back at school for the spring semester January 12th and our first student chapter meeting is that week.  Similar to the past we plan to have weekly chapter meetings along with a number of very interesting site visits. Look for a brand new resume book in early February with a new group of students.

We have the 10th Annual Fraud Summit which is to be held on March 26th and 27th.  We are planning on making it a very special event, since this is our 10th anniversary for the event.  Since we have sold out in the past we can’t say it is going to be bigger than ever.  As part of the 10th anniversary of the event James Ratley, President of the ACFE International will receive special recognition and speaking at the event Friday.  As a reminder, early registration for discount pricing ends January 16th and as part of the celebration of the 10th anniversary pricing is the same as last year!

We are looking forward to seeing all of you this next year at the Dallas IIA Chapter meetings along with our receptions.  If you are interested in sponsoring a reception for the student organization contact Mark Salamasick at mark.salamasick@utdallas.edu

 

 

 


IIA Research Foundation

The Research Foundation has issued the report entitled Bribery: Identify Hidden Risks in Your Organization.  Bribery is often covert, tricky to prevent, and notoriously tough to uncover. Forensic accountants and fraud-focused auditors are often successful at detecting bribes, but it is difficult for generalist internal auditors to find such transactions through regular auditing techniques.  Fortunately, many anti-bribery controls are also internal controls for sound, general practices.

This book offers practical information and advice on:

  • Third-party bribery
  • Legislative and regulatory considerations
  • Channels through which bribes may be made, concealed, or prevented
  • Anti-bribery controls over an organization’s expenditure, revenue, assets, and liabilities
  • Organizational whistleblowing hotlines
  • Anti-corruption compliance programs

Fraud detection is not normally the primary purpose of internal auditing, yet it is an important subject that cannot be ignored.  Internal auditors’ advice and recommendations can encourage management to introduce and maintain strong internal controls over bribery risks.

The book can be ordered online at: http://www.theiia.org/bookstore/product/bribery-identify-hidden-risks-in-your-organization-1828.cfm.  (Item number 1155, member price - $40, non-member price - $50.  It can also be ordered as an e-book or a download pdf, member price -$35, non-member price - $45.)  


Report Your Speaking and Writing

Each speaking engagement on internal auditing that a Dallas Chapter member completes will earn the Chapter 1 credit per CPD hour.  Each full article, Roundtable article, Fraud Finding, etc. submitted that meets basic editorial guidelines will earn 5 credits. For each full article published 20 credits are earned.  Each internal audit related article published in any other trade or professional journal that is authored by a chapter member is 5 credits.

To report your writing and speaking go to http://dallasiia.org/Speaking.htm and complete the online form. If you have any questions, please contact Corinne Bryan at CAP@dallasiia.org.


Employment Opportunities

Neiman Marcus  (11/25/14)

Information Services Staff Auditor

Company Overview

Neiman Marcus Stores are located in the most affluent markets in the United States with a presence in Florida, California and Texas. From the finest designer and luxury merchandise for men and women to precious jewelry, beauty and home decor, we offer our customers an impeccable and irresistible array of choices. Since 1907, Neiman Marcus has served our discerning and sophisticated customers with gracious and attentive service.

Job Summary

This position reports directly to the IS Audit Manager and is responsible for performing audits of routine nature in accordance with audit work program.  This position is also responsible for identifying and recommending specific audit tests to be performed in routine audit areas.  The IS Staff Auditor also provides technical support to Internal Audit staff as needed.

Key Performance Elements:
  • Perform audits in accordance with audit programs under the supervision of the IS Audit Senior and/or Manager.
  • Perform SOX testing as it relates to Information Services general controls.
  • Obtain and analyze evidentiary data through interaction with auditee.
  • Prepare comprehensive workpapers for each area audited.
  • Identify and recommend specific audit tests to be performed. 
  • Participate in system development projects under the supervision of the Audit Manager to provide assistance to IS Management with establishing proper controls.
  • Prepare oral presentation of findings from areas audited to auditee Management, along with appropriate recommendations to enhance controls, improve operations or reduce costs.
  • Resolve routine audit issues with auditee staff.
  • Provide technical support to Internal Audit staff as needed.

Requirements

Knowledge/Skills/Abilities:
  • Bachelors degree in Information Services (Accounting/Finance/Audit coursework a plus)
  • CISA candidate
  • Excellent written and oral communication skills
  • Working knowledge of Microsoft Office products
  • Basic working knowledge of information technology and Sarbanes-Oxley requirements and standards
  • Ability to perform minimal travel
Work Experience:
  • 1-2 years prior audit experience preferred, recent graduates also considered
  • Retail industry experience preferred, but not required
  • IS SOX testing experience preferred, but not required

Qualified candidates should contact Randy Smithart at randy_smithart@neimanmarcus.com  


Weaver  (11/17/14)

Weaver is a Texas-based regional accounting and consulting firm that has been in continuous practice for over 60 years. Weaver serves clients in all industries with comprehensive services, including audit, tax and advisory services.  Weaver's client base includes private and publicly held business enterprises, local governments, municipalities, nonprofits, wealthy families and executives.

At Weaver, your career journey will be both exciting and challenging. Weaver offers competitive benefits, flexible schedules, top salaries, a business casual environment, and 7 great locations throughout Texas: Fort Worth, Dallas, Houston, San Antonio, Austin, Midland, and Odessa.

Information Technology – Senior Associate I or Senior Associate II

Position Summary:

The IT Advisory Senior Associate is responsible for the organization of day to day engagement activities, supervision of staff, and communication with the client. The IT Advisory Senior ensures the objectives of our field work are achieved.

Duties and Responsibilities:
  • Assist with engagement planning activities related to assigned engagements and assist in designing engagement-specific audit approach
  • Plan, perform, and deliver work independently with limited supervision on smaller engagements
  • Research accounting treatment for issues on audit engagements, propose solutions and consult with experienced staff as necessary
  • Prioritize and manage multiple assignments of varying sizes and complexity within given timeframe and budget
  • Exhibit initiative in ensuring follow through of open items and issues through completion
  • Develop and assist in the training of other staff; create an environment that fosters learning
  • Consistently assume responsibility for assigned engagements under the supervision of more experienced staff and perform assurance procedures and/or communicated engagement objectives with limited guidelines
  • Monitor and supervise progress of Associates, where applicable, and provide performance feedback as needed
  • Work diligently towards acquisition of CISA, CISSP, or CIA certifications and / or CPA license
Qualifications:
  • Bachelor’s degree in Management Information Systems, Computer Science, Accounting, Finance, or related
  • Master’s degree in information systems auditing, Accounting, Business, or Finance preferred
  • 2- 4 years or more equivalent experience (public accounting / external audit, internal audit, information technology and/or staff accountant responsibilities)
  • Knowledge of IT controls and how they affect the control environment.  COBIT, COSO, and related preferred
  • Understanding of systems infrastructure and security, connectivity, remote access, and data mining
  • Understanding of fundamental layers of information systems including network infrastructure, computer operating systems, database management systems, and computer applications
  • Experience supervising 1 to 3 or more individuals
  • Excellent written and oral communications skills
  • Team orientation and strong interpersonal skills
  • Proficient at Microsoft Office product suite

Fossil  (9/22/14)

Internal Auditor

Company Overview

Fossil Group is a global retailer specializing in the design, innovation and marketing of fashion lifestyle and accessory products. At the heart of Fossil Group's vision is a commitment to fostering creativity and delivering the best in design through its three core businesses: the Fossil brand; the Skagen brand; and a multi-brand watch portfolio business. This portfolio includes adidas, Armani Exchange, Burberry, Diesel, DKNY, Emporio Armani, Karl Lagerfeld, Marc by Marc Jacobs, Michael Kors, Michele, Relic, Tory Burch and Zodiac. Fossil Group is constantly developing its businesses through core competencies in innovative branding, world-class design and dynamic global distribution.

Job Description

Fossil is searching for an Internal Auditor to join our growing team! This star candidate will assist external auditors with quarterly financial and internal controls testing evaluations. Additionally, this position will support Internal Audit management in the assessment of risks and controls as well as execution of SOX testing, and financial, operational and compliance audits. Other responsibilities will include working with management on special projects as necessary.

Required skills and Responsibilities:
  • Bachelor’s degree in Accounting/Finance
  • 1-3 years of public accounting experience
  • CPA is required
  • Familiarity with SOX regulations required

All applicants should submit resumes to:  Ameea Bally (abally@fossil.com)


This page was last updated on Thursday, February 19, 2015 at 03:21 AM PST.

For problems or comments concerning this information,
please contact the webmaster@dallasiia.org

© 1998-2015 Dallas Chapter Institute of Internal Auditors
P. O. Box 261747, Plano, TX 75026-1747



Follow us on LinkedInFollow us on FacebookFollow us on Twitter
Social Media Policy

AUDIT LINKS

theiia.org
The Institute of
Internal Auditors

Fort Worth Chapter
of the IIA

http://som.utdallas.edu/iaep
UT Dallas
School of Management
Internal Auditing
Education Partnership

UTD Students Chapter

itaudit.org
IT Audit Forum

auditnet.org
Audit Net


North Texas Chapter
of ISACA

Information Systems Audit
and Control Association

Dallas Chapter
of ACFE

Association of
Certified Fraud
Examiners

aicpa.org
American Institute of
Certified Public Accountants

cpadallas.org
Dallas Chapter
of TSCPA

Texas Society of CPA's


Dallas Chapter
AGA

Association of
Government Accountants

HOME ~ MEETINGS ~ SEMINARS ~ REGISTRATION ~ LEADERS ~ CAREERS