February 20, 2019 CPE Luncheon

Topic: Data Analytics

Join us for this presentation by Jose Vazquez Ortiz

Time and Location: February 20th, at Boise Plaza, 1111 West Jefferson, Room 2NE @ 11:30 AM to 1:00 PM.

Click here to RSVP.

Summary:  Data Analytics

  • What is Data Analytics
  • Approach taken based on prior experiences
  • Where to apply data analytics
  • Real life examples
  • Tools
  • Lessons Learned along the way

Jose Vazquez Ortiz graduated from Boise State University with an Accounting & Finance Major, and is a certified internal auditor.  He spent the last six years of his professional career working in Internal Audit, with a focus on implementing data analytics.  He has developed models that have helped identify frauds that have led to prosecution, assisted in continuous risk and control performance monitoring, identification duplicate records such as accounts payable, or models to support the business among others.  In his former company, these developments helped him earn CFO Innovation recognition, and one model being published as an example on the CEB Global Audit Leadership Council website.

Scholarship Application 2019-2020 Academic Year

The ISACA Boise Chapter is proud to offer a $1,000 scholarship for the 2019-2020 academic school year. This scholarship is to promote students studying in the related fields of Computer Science, Information Systems, Cybersecurity and Accounting.  The application deadline is March 15, 2019.

Nearing its 50th year, ISACA® (isaca.org) is a global association helping individuals and enterprises achieve the positive potential of technology. Today’s world is powered by technology, and ISACA equips professionals with the knowledge, credentials, education and community to advance their careers and transform their organizations. ISACA leverages the expertise of its 450,000 engaged professionals in information and cyber security, governance, assurance, risk and innovation, as well as its enterprise performance subsidiary, CMMI® Institute, to help advance innovation through technology. ISACA has a presence in 188 countries, including 217 chapters worldwide and offices in both the United States and China.

ISACA’s constituency is characterized by its diversity. The global community of ISACA members and certification holders cover a variety of professional IT-related positions —some of which include IS auditor, consultant, educator, IS security professional, risk professional, chief information officer and internal auditor. Some are new to the field, others are at middle management levels and still others are in the most senior ranks. ISACA constituents work in nearly all industry categories, including financial and banking, public accounting, government and the public sector, utilities and manufacturing.

Click the following to download the 2019-2020 Application:


January 16, 2019 CPE Luncheon

Topic: Hidden Cost of Security Questionnaires

Join us for this presentation by Leo Cuellar

Time and Location: January 16th, at Boise Plaza, 1111 West Jefferson, Room 2NE @ 11:30 AM to 1:00 PM.

Click here to RSVP.


Hidden Cost of Security Questionnaires

Security Questionnaires are critical and vital, and surprisingly, time consuming. In both processing and managing, and responding to security questionnaire, there is a cost per question that can be calculated. This session will present some of the factors that can be used by a business to create their unique formula for their own cost per question. Once the value of questions is determined, it is surprising the hidden costs that are revealed in managing and responding to questionnaires.

Leo Cuellar –  As an experienced Director of Information Security, Risk and Compliance, Leo has focused in IT Security Operations, IT Governance, Secure Development, Compliance, Risk and Privacy. throughout his career. His experience blends a diverse mix of small and Fortune 100 companies and a real-world understanding of the challenges and opportunities of implementing PCI, SOX, PII, HIPAA, NIST, and International regulatory requirements.  His goal is to provide strategic guidance as well as practical expertise in information security, compliance and risk management.

Cyber-physical Systems Security Forum at Boise State University

Boise State is hosting security forum:


From the above Website:

Join us for a Cyber-Physical Systems Security Forum at Boise State University on November 30. This interactive forum is designed to promote discussion on the cyber-physical security risks, threats, and challenges organizations face. To help frame the discussion, we have invited industry leaders to share their experiences in implementing, managing, enforcing, and assessing cyber-physical systems security controls.

The forum begins with an optional breakfast networking session at 8:30 AM and College of Engineering Dean JoAnn Lighty will kick things off at 9 AM. We will conclude the event with a luncheon and roundtable discussion where your input will help shape our cyber-physical security curricula. Check out the agenda for more detail.

There is no cost to attend but registration is required.  We encourage you to invite others from your organization who may also be interested.

December 19, 2018 ISACA / ISSA Mixer

Topic:  Holiday ISACA / ISSA Mixer Toys for Tots collection.

Join us for this discussion on Nation States, Hackers, and Squirrels – The threats facing US Critical Infrastructure by Justin Courtial, (CISSP)

Date, Time and Location: December 19th, at the Stonehouse  (709 E. Park Blvd Boise, ID 83712) From 11:30 AM to 1:00 PM.

Free with a Toys for Tots Donation.

Summary: Join Justin Courtial, as he takes his audience on the captivating journey that is Industrial Control System Security! Come away with some new conversation starters for your holiday parties as you drop some knowledge on your fellow revelers with terms like ICS, SCADA, HMI, RTU, and PLC! If that wasn’t enough, get ready to dazzle everyone that hasn’t walked away from you pretending to answer a phone call with some highlights about some of the attacks against Critical Infrastructure. We will top it all off with security suggestions you have undoubtedly heard before but maybe ignored, and of course, squirrels.

Justin Courtial, (CISSP) is a Cyber Security Lead for a publicly traded utility in Idaho. He is currently focused on Incident Response, Host/Network Forensics, Enterprise Security Architecture and Enterprise Security policy. He has a BBA from Washington State University in Management Information Systems.