BEGIN:VCALENDAR
VERSION:2.0
PRODID:-//ISACA Greater Washington, D.C. Chapter - ECPv6.16.2//NONSGML v1.0//EN
CALSCALE:GREGORIAN
METHOD:PUBLISH
X-WR-CALNAME:ISACA Greater Washington, D.C. Chapter
X-ORIGINAL-URL:https://1a0e45a7-9729-44db-9571-247e6bd9360e.express.conves.io
X-WR-CALDESC:Events for ISACA Greater Washington, D.C. Chapter
REFRESH-INTERVAL;VALUE=DURATION:PT1H
X-Robots-Tag:noindex
X-PUBLISHED-TTL:PT1H
BEGIN:VTIMEZONE
TZID:America/New_York
BEGIN:DAYLIGHT
TZOFFSETFROM:-0500
TZOFFSETTO:-0400
TZNAME:EDT
DTSTART:20250309T070000
END:DAYLIGHT
BEGIN:STANDARD
TZOFFSETFROM:-0400
TZOFFSETTO:-0500
TZNAME:EST
DTSTART:20251102T060000
END:STANDARD
BEGIN:DAYLIGHT
TZOFFSETFROM:-0500
TZOFFSETTO:-0400
TZNAME:EDT
DTSTART:20260308T070000
END:DAYLIGHT
BEGIN:STANDARD
TZOFFSETFROM:-0400
TZOFFSETTO:-0500
TZNAME:EST
DTSTART:20261101T060000
END:STANDARD
BEGIN:DAYLIGHT
TZOFFSETFROM:-0500
TZOFFSETTO:-0400
TZNAME:EDT
DTSTART:20270314T070000
END:DAYLIGHT
BEGIN:STANDARD
TZOFFSETFROM:-0400
TZOFFSETTO:-0500
TZNAME:EST
DTSTART:20271107T060000
END:STANDARD
END:VTIMEZONE
BEGIN:VEVENT
DTSTART;TZID=America/New_York:20260611T083000
DTEND;TZID=America/New_York:20260611T123000
DTSTAMP:20260602T204834
CREATED:20250824T011355Z
LAST-MODIFIED:20260528T141406Z
UID:34387-1781166600-1781181000@1a0e45a7-9729-44db-9571-247e6bd9360e.express.conves.io
SUMMARY:Risk Management Conference 2026
DESCRIPTION:  \n \n  \nJune 11\, 2026\nVirtual Event (Zoom)\nEarn up to 4 CPE\n$10 for GWDC Members\n$30 for Non-Members \n  \n  \n\n\n\nRisk Management Conference 2026 \nRisk management is the cornerstone of effective governance and cybersecurity in an era defined by rapid technological innovation. The Risk Management Conference is designed to equip professionals in IT audit\, cybersecurity\, and governance with the tools and insights necessary to navigate complex risk landscapes. \nThis conference explores cutting-edge approaches to risk management\, with a focus on the NIST Risk Management Framework (RMF) and other industry-leading frameworks that empower organizations to identify\, assess\, and mitigate risks effectively. Attendees will gain actionable knowledge on: \n\nImplementing and tailoring risk management frameworks to align with organizational goals and compliance requirements\nAddressing the unique risks posed by emerging technologies such as artificial intelligence and cloud computing\nStrengthening governance structures to drive accountability and resilience\nPractical case studies showcasing successful risk management strategies in real-world scenarios\n\nWhether you’re focused on AI risks\, securing cloud environments\, or enhancing your organization’s governance practices\, this conference offers the expertise\, practical guidance\, and collaborative opportunities to advance your risk management strategies. \nJoin us to gain the insights and frameworks you need to navigate today’s risks and prepare for tomorrow’s challenges. \nRegistration closes on June 10 @ 5PM. \nRegister Today! \n  \n\n\n\n  \nSponsorship Opportunities \nIf you are interested in sponsoring this event\, or sponsoring the chapter as an annual sponsor\, please visit our sponsorship page. \nSponsorship Info \n  \n\n\n\nEvent Details \n\nDate and Time \n\n\nThe conference will be held on June 11\, 2026 from 8:30 am to 12:30 pm. \nAdd this event to your calendar using the Add to Calendar link at the bottom of the page. \n  \n\n\nVirtual Event \n\n\nThe conference will be held using Zoom. \nPrior to the event\, participants must install the Zoom app on their respective devices. Participants using the web-based Zoom or calling via the phone may not be entitled to CPE credits. \n  \n\n\nPricing \n\n\nThe fee for GWDC Members is $10 for the conference.\nThe fee for all other registrants is $30 for the conference. \nTo become a member and take advantage of the member rate for our events\, among other benefits\, join ISACA and select the Greater Washington D.C. Chapter as your local chapter. \n  \n\n\nEvent Policies \n\n\nCancellation and refund for advance registrations is allowed if cancellations are submitted through the registration system by the date registration closes. Refunds vary depending on the date of cancellation and cost of the event. See ISACA GWDC Event Policies for details. \nThe GWDC welcomes your comments\, complaints\, suggestions\, questions\, and other feedback concerning our website information and services. \nAll complaints should be submitted through the Registration Contact Form. \n  \n\n  \n\n\n\n  \nInterested in Speaking at a Chapter Event \nIf you are interested in speaking at an upcoming conference\, please visit the Call for Speakers page and complete the form. \nCall for Speakers \n  \n\n\n\nConference Agenda \nConference agendas may change due to schedule conflicts and other unexpected situations. If a previously published agenda has changed\, the changes will be noted. \nThe conference agenda is being developed and updates will be posted when available. \n  \n \n\n08:30 AM – 09:30 AM \n\n\nOverexposed and Underdeveloped: Why Visibility Alone Has Not Fixed Vulnerability Management \nPresenter: Jonathon Risto (ZenzizenSec Inc. and SANS) \nOrganizations have more vulnerability data than ever before: scanners\, dashboards\, threat intelligence\, asset inventories\, cloud findings\, and exposure signals. Yet many programs still struggle to consistently reduce risk. This talk explores the gap between what security teams can see and what organizations can actually act on. It examines how visibility can outpace maturity\, creating overloaded teams\, unclear priorities\, weak governance\, and growing exposure debt. The session will show why effective vulnerability management is not just about finding more issues\, but about building the decision-making\, prioritization\, mobilization\, and communication capabilities needed to turn visibility into meaningful risk reduction. \n\n \n\n09:30 AM – 10:30 AM \n\n\n90 Days to AI Governance \nPresenter: John Rood (Proceptual) \nGRC and data professionals are increasingly being asked to lead AI governance efforts in 2026 — frequently without additional training or incremental staff. \nThis webinar explores the path to “minimum viable governance” — an effective starting point for a compliant\, long-term AI governance program.\n \n\n \n\n10:30 AM – 11:30 AM \n\n\nIntegrating Risk Management into CMMC Compliance: From Gap Analysis to Continuous Monitoring \nPresenter: Dr. Constance Blanson (Walden University) \nAs organizations across the Defense Industrial Base (DIB) prepare for Cybersecurity Maturity Model Certification (CMMC) Level 2\, risk management is no longer a theoretical exercise—it is a core operational requirement. This session explores how organizations can systematically integrate risk management practices into their CMMC compliance strategy\, aligning with NIST SP 800-171 requirements while building a sustainable\, audit-ready security posture. \nParticipants will gain practical insight into identifying\, assessing\, and prioritizing cybersecurity risks within scoped CUI environments and translating those risks into actionable remediation plans. The session will also examine common pitfalls in gap assessments\, the role of continuous monitoring\, and how leveraging Managed Service Providers (MSPs) or Managed Security Service Providers (MSSPs) can accelerate compliance maturity. Real-world examples and assessor-informed perspectives will be shared to help organizations move from reactive compliance to proactive risk governance. \n\n \n\n11:30 AM – 12:30 PM \n\n\nThe AI Risks You’re Not Ready to Admit You Have \nPresenter: Dr. Keith Morneau (ECPI University) \nMost security teams didn’t see AI coming. Not like this. The tools arrived quickly\, adoption followed\, and somewhere in the middle\, a new attack surface quietly opened.\nPrompt injection\, data poisoning\, model theft\, jailbreaking\, AI-generated phishing\, and deepfakes are just some of the AI risks your organization faces. These risks are emerging across enterprises\, and most organizations are underprepared. Not because you aren’t trying\, but because the frameworks you trust weren’t built for this. \nThis session is about where AI risk actually hides in your organization. Not in your policy documents\, but in your workflows\, vendor relationships\, and data pipelines. We’ll get into threat assessments\, which controls to consider\, and how to build a response posture that protects you. \nNo hype. No doom. Just a clearer picture of what you’re dealing with\, and a practical path forward.\n \n\n  \n\n\n\n  \nShare this Event \nIf you are interested\, planning to attend\, or attending this event\, please share with your colleagues across your social media networks. \n\n	\n		\n	\n			\n			\n								\n										\n													\n														\n												Share on X\n					\n					\n									\n			\n		\n			\n			\n								\n										\n													\n														\n												Share on Linkedin\n					\n					\n									\n			\n		\n			\n			\n								\n										\n													\n														\n												Share on Facebook\n					\n					\n									\n			\n		\n			\n			\n								\n										\n													\n														\n												Share on Print\n					\n					\n									\n			\n		\n			\n			\n								\n										\n													\n												Share on Email\n					\n					\n									\n			\n		\n		\n\n	\n\n\n  \n  \n\n\n\nPresenters \nAt times presenters for a session may change due to schedule conflicts and other unexpected situations. If a previously presenter has been substituted\, the changes will be noted. \n \n\n \n\n\nJonathon Risto\nFounder of ZenzizenSec Incorporated and a SANS Institute instructor \nJonathan Ristro is a cybersecurity leader with more than 25 years of experience in network engineering\, security architecture\, and cyber operations across government and industry. He currently serves as Technical Director for the Government of Canada’s Cyber Posture Management Program\, focused on vulnerability management and automated remediation. \nHe is the Founder of ZenzizenSec Incorporated\, a SANS Institute instructor for LDR516: Strategic Vulnerability and Threat Management\, and a faculty member at the SANS Technology Institute\, where he mentors graduate students in risk and vulnerability management. \nHe has led cybersecurity and incident response work across Bell Canada\, the Canadian International Development Agency\, and Defence Research and Development Canada. \nHe is also the creator of the Vulnerability Management Maturity Model and Continuous Threat Exposure Management Maturity Model\, helping organizations build structured\, risk-based security programs. \n\n \n\n \n\n\nJohn Rood\nFounder and CEO @ Proceptual \nJohn is a recognized expert in AI literacy\, governance\, and organizational implementation\, with extensive experience working specifically with privacy professionals. He’s passionate about helping professionals navigate the rapidly evolving AI landscape with confidence and strategic insight. \nJohn’s Background \n\nSpeaker at SHRM National Conference and multiple SHRM chapters\nSpeaker at Chicago ATD\nInstructor at Michigan State University and University of Chicago\, teaching AI governance\, safety\, and literacy\nHas trained hundreds of leaders on practical AI implementation\n\n\n \n\n \n\n\nConstance Blanson\nCore Faculty\, College of Faculty and Human Potential @ Walden University\nCISSP\, CC\, ITIL\, Sec+\, CMMC-PI\, CCP\n \nDr. Constance Blanson is a cybersecurity professional\, educator\, and consultant specializing in CMMC readiness\, NIST SP 800-171 compliance\, and risk-based cybersecurity strategies. With a PhD in Information Security and multiple industry certifications\, including Certified CMMC Professional (CCP)\, Certified CMMC Assessor (CCA)\, and CISSP\, Dr. Blanson brings both academic rigor and real-world application to cybersecurity program development. \nShe has extensive experience supporting organizations in the Defense Industrial Base with gap assessments\, mock audits\, enclave scoping\, and control implementation aligned to federal requirements. In addition to her consulting work\, Dr. Blanson serves as a doctoral mentor and faculty member\, guiding future leaders in aligning research with practical IT and cybersecurity challenges. Her work focuses on translating complex regulatory frameworks into actionable\, scalable solutions that strengthen organizational resilience and audit readiness.\n \n\n \n\n \n\n\nDr. Keith Morneu\nDean of Computer and Information Science @ ECPI University \nDr. Keith Morneau is the Dean of Computer and Information Science at ECPI University. He has spent more than 30 years at the intersection of technology\, education\, and cybersecurity. He’s been building programs\, closing workforce gaps\, and asking uncomfortable questions about how to close the education and workforce skills gap. His research and practice span education\, software development\, cybersecurity\, AI systems\, and the very human problem of turning technical knowledge into workforce readiness. \n\n  \n\n\n\n  \nQuestions about this Event \n\n\nIf you have any registration questions about this event\, please contact us by completing the Registration Contact Form linked below. \nRegistration Questions \n  \n\n\n\n\nIf you have CPE questions after the event has concluded\, please contact us by completing the CPE contact form linked below. \nCPE Questions \n  \n\n\n  \n\n\n\nCPE Information \nEarn up to 4 Continuing Professional Education (CPE) credit in the area of Information Technology. The ISACA® Greater Washington\, D.C. Chapter is registered with the National Association of State Boards of Accountancy (NASBA) as a sponsor of continuing professional education on the National Registry of CPE Sponsors. State boards of accountancy have final authority on the acceptance of individual courses for CPE credit. Complaints regarding registered sponsors may be submitted to the National Registry of CPE Sponsors through its website: www.NASBARegistry.org \n  \n\nPoll Questions \n\n\nParticipants must respond to all the poll questions via the Zoom polling feature or chat log in order to receive NASBA CPE credits. The GWDC will not be responsible for the participant’s inability to respond to the polls. \n  \n\n\nCPE Distribution and Evaluation Survey \n\n\nCPEs will be distributed via e-mail along with the event evaluation survey after the completion of the event. Attendees must be present for the full event to receive full CPE credit. \n  \n\n\nLearning Objective \n\n\nAfter attending this event\, attendees will learn about current and future trends in the risk management space. \n  \n\n\nCPE-Related Details \n\n\n\nPrerequisites: None\nAdvance Preparation: None\nProgram Knowledge Level: Basic\nDelivery Method:  Group Internet Based\nField of Study:  Information Technology – Technical
URL:https://1a0e45a7-9729-44db-9571-247e6bd9360e.express.conves.io/event/risk-management-conference-2026/
LOCATION:Virtual Event
CATEGORIES:Conferences
ATTACH;FMTTYPE=image/png:https://1a0e45a7-9729-44db-9571-247e6bd9360e.express.conves.io/wp-content/uploads/2025/08/risk_management.png
ORGANIZER;CN="Avneet Sabharwal":MAILTO:programs@isaca-gwdc.org
END:VEVENT
BEGIN:VEVENT
DTSTART;TZID=America/New_York:20260611T140000
DTEND;TZID=America/New_York:20260611T170000
DTSTAMP:20260602T204834
CREATED:20260514T110836Z
LAST-MODIFIED:20260514T111001Z
UID:35960-1781186400-1781197200@1a0e45a7-9729-44db-9571-247e6bd9360e.express.conves.io
SUMMARY:IT Fraud Event (with ACFE DC)
DESCRIPTION:  \n \n  \nJune 11\, 2026\nIn-Person (Alexandria\, VA)\nEarn up to 3 CPE\nGWDC Members Receive a Discounted Price\n  \n  \n  \n\n\n\nJoint ISACA/ACFE Networking Event (Training and Happy Hour) \nWhen: Thursday\, June 11\, 2026 (due to space constraints\, only 20 seats are available for ISACA GWDC registrants on a first-come\, first-served basis) \nTraining: 2pm to 5pm (3 CPEs will be granted)\nLocation: 333 John Carlyle Street\, Alexandria\, VA 22314\nAgenda: \n2:00 – 3:00 PM: AI-Powered Fraud and How to Fight Back with Biometrics \n3:00 – 4:00 PM: Governance\, Resilience\, and the New Fraud Landscape \n4:00 – 5:00 PM: Fraud Controls as Models \nCost:\n– $20 for ACFE DC and ISACA GWDC Members \n– $100 for non-ACFE DC and non-ISACA GWDC members. \nPlease register at http://www.acfedc.org/2026ITFraud – for the training only. ISACA GWDC members should use the code 2026+ISACA+ACFE to avail of the discounted price. \n\nPlease Note: This is a non-GWDC event. All registrations\, questions\, and communications are handled by the ACFE Washington Metropolitan Chapter. Any CPEs will also be issued by the ACFE Washington Metropolitan Chapter. \n\n  \nA complementary Happy Hour courtesy of the sponsor\, Veridas\, will follow the training. \nLocation: Trademark\, 2080 Jamieson Ave\, Alexandria\, VA 22314\nAttendance at the Happy Hour requires a separate registration. Please register at www.acfedc.org/Q2HH_2026
URL:https://1a0e45a7-9729-44db-9571-247e6bd9360e.express.conves.io/event/it-fraud-event-with-acfe-dc/
LOCATION:Virtual Event
CATEGORIES:Other DC Area Events
ATTACH;FMTTYPE=image/png:https://1a0e45a7-9729-44db-9571-247e6bd9360e.express.conves.io/wp-content/uploads/2026/01/FT26_PO_ACFE.png
ORGANIZER;CN="Avneet Sabharwal":MAILTO:programs@isaca-gwdc.org
END:VEVENT
END:VCALENDAR