BEGIN:VCALENDAR PRODID:-//GiftTool//Calendar MIMEDIR//EN VERSION:2.0 METHOD:PUBLISH BEGIN:VEVENT DTSTAMP:20260430T170000Z DTSTART:20260430T170000Z DTEND:20260430T203000Z LOCATION;ENCODING=QUOTED-PRINTABLE:Suite 700 - 7th Floor, 11 King Street West, , Toronto, ON UID:support@isacatoronto.com DESCRIPTION;ENCODING=QUOTED-PRINTABLE: Panel Discussion: Bridging the Cybersecurity Ecosystem: ISACA=0D=0A & ISC2 in Conversation =0D=0A=0D=0A=0D=0A   =0D=0A=0D=0A=0D=0A  Moderator: Arif Hameed, Chief Information Security Officer,=0D=0A C&R Software=0D=0A=0D=0A =0D=0A=0D=0AArif Hameed is a=0D=0A seasoned and award-winning Cybersecurity Leader with 25 years of=0D=0A technology experience. He is a two-time Chief Information Security=0D=0A Officer and has had roles in Security Advisory, IT Risk, Client=0D=0A Assurance and IT Audit in the financial services and technology=0D=0A verticals. He actively volunteers for professional associations and=0D=0A participates in advisory committees for academic programs in=0D=0A Cybersecurity. He has presented, moderated and took part in panels for=0D=0A Information Security events including the RSA Conference, InfoSec=0D=0A World, SecureWorld, etc. He holds the CISA, CISSP and CRISC=0D=0A certifications. He also has a Level II (Secret) Canadian Federal=0D=0A Government clearance.=0D=0A=0D=0A =0D=0A=0D=0A Panelists:=0D=0A=0D=0A =0D=0A=0D=0A Najib Hayat, President, ISACA Toronto Chapter=0D=0A=0D=0ANajib is a versatile=0D=0A and seasoned leader with multiple years of experience (over 10 years)=0D=0A in the areas of accounting and finance, audit and IT. Najib Hayat is a=0D=0A Chartered Professional Accountant (CPA), Chartered Accountant (CA),=0D=0A Certified Information Systems Auditor (CISA) and Certified Internal=0D=0A Auditor (CIA). As the CEO and founder of NHK Consultants, he provides=0D=0A accounting, financial and IT audit, controls, risk management and=0D=0A consulting expertise to clients throughout North America. He has=0D=0A previously held management positions with professional services firms=0D=0A such as GrantThornton, KPMG and EY. Najib has a strong passion for=0D=0A information system assurance, security, enterprise governance, risk=0D=0A and compliance and controls and an even stronger belief in the mission=0D=0A of the organization. Najib is applying his several years of knowledge=0D=0A and experience, having worked with several other Boards, to ensure=0D=0A that the ISACA continues to be the leading global provider of=0D=0A knowledge, certifications, community, advocacy and education. =0D=0A=0D=0A =0D=0A=0D=0A Ronny Labban, Continuing Education Director, ISACA Toronto Chapter=0D=0A=0D=0ARonny holds a=0D=0A bachelor?s degree in computer engineering and a master?s degree in=0D=0A business administration. He has complemented his academic=0D=0A accomplishments with professional industry certifications in Project=0D=0A Management, Information Technology, Cybersecurity, Cloud Computing,=0D=0A and Risk Management.=0D=0A=0D=0A =0D=0A=0D=0AAs a dynamic=0D=0A cybersecurity executive with over 25 years of experience, Ronny has=0D=0A led strategic projects and built high-performing teams in=0D=0A Cybersecurity, Risk Management, and Information Technology. His track=0D=0A record includes driving valuable output for a multitude of=0D=0A stakeholders with on-time, on-budget, and easily consumable deliverables.=0D=0A=0D=0A =0D=0A=0D=0AHe is a platinum=0D=0A member of ISACA and has previously volunteered on CISA and CISM=0D=0A material development and currently serving as the Director of=0D=0A Continuing Education. He holds the PMP, PMI-RMP, CRISC, CISM, CISA,=0D=0A CGEIT, CDPSE, CEH, CCISO, CISSP, CCSP, CCSK, HISP, Open FAIR, AI=0D=0A Governance, and ITIL Expert designations.=0D=0A=0D=0A =0D=0A=0D=0A Jon Rohrich, President & Board Chair, ISC2 Toronto=0D=0A=0D=0AJon Rohrich is an=0D=0A Award-winning business leader, mentor, solution architect, and=0D=0A military veteran. As Director of Avanade?s, Canadian Security=0D=0A Consulting Practice, Jon serves as a strategic leader driving business=0D=0A growth, sales strategy, solution development and delivery for the=0D=0A region. Prior to joining Avanade, Jon worked in a solution engineering=0D=0A role at Microsoft, driving the growth of Microsoft?s vast security=0D=0A portfolio. He holds 25+ Certifications including Certified Information=0D=0A Systems Security Professional (CISSP) and Certified Cloud Security=0D=0A Professional (CCSP). In addition to his role at Avanade, Jon is an=0D=0A active member of the cybersecurity community. He is a respected public=0D=0A speaker and educator. Jon has been a featured speaker at prominent=0D=0A industry events including iTech, Microsoft Ignite Tour, Microsoft=0D=0A Ready, GoSec, Cyber Tech & Risk, BSides and ISC2 chapter meetings.=0D=0A He is passionate about mentoring and coaching fellow security=0D=0A professionals to advance and grow in their careers.=0D=0A=0D=0A =0D=0A=0D=0A Camille Kloppenburg, Strategic Partnership Director, ISC2 Toronto=0D=0A=0D=0ACamille, drawing from=0D=0A over two decades of experience, serves as a trusted advisor for=0D=0A organizations striving to develop secure products from the outset,=0D=0A preserving their competitive advantage and promoting innovation. Her=0D=0A diverse background spans aerospace engineering, software development,=0D=0A entrepreneurship, and leadership. In her role as Director of Strategic=0D=0A Partnership, she plays a pivotal role in advancing her field.=0D=0A=0D=0A =0D=0A=0D=0A Session 1: Using AI in SOX Audits: Where Efficiency Ends and=0D=0A Professional Judgment Begins  =0D=0A=0D=0A=0D=0A Speaker: Ellie Liu, Specialist, IT Audit & Technology=0D=0A Risk, RSM Canada =0D=0A=0D=0A =0D=0A=0D=0A Session Description: =0D=0A=0D=0AAudit teams are=0D=0A increasingly using AI to support SOX work, whether analyzing full=0D=0A populations of transactions, identifying unusual patterns, drafting=0D=0A variance explanations, or suggesting which controls or journal entries=0D=0A deserve the most attention. While these tools promise major efficiency=0D=0A gains, they also change what auditors mean by evidence, coverage, and=0D=0A professional judgment.=0D=0A=0D=0AThis session examines=0D=0A how AI is reshaping core audit activities. Through practical case=0D=0A scenarios, we will explore situations where AI identifies what is=0D=0A ?high risk,? generates explanations that look like audit=0D=0A documentation, or filters large data sets in ways that auditors can no=0D=0A longer fully observe or reproduce. These examples show how efficiency=0D=0A gains can quietly shift key judgments away from people and into models.=0D=0A=0D=0A =0D=0A=0D=0AThe discussion will=0D=0A focus on where auditors must draw clear judgment boundaries when using=0D=0A AI: when it is appropriate to rely on model-driven analysis, and when=0D=0A human skepticism, experience, and accountability must take over. We=0D=0A will also examine the new risks that arise when audit procedures=0D=0A depend on opaque algorithms, including hidden bias, missed exceptions,=0D=0A or persuasive but unverifiable outputs.=0D=0A=0D=0AAttendees will leave=0D=0A with a practical framework for using AI to enhance SOX audits without=0D=0A weakening audit quality, control reliance, or professional responsibility.=0D=0A=0D=0A =0D=0A=0D=0A Speaker Bio: =0D=0A=0D=0AEllie Liu is an IT=0D=0A audit and technology risk professional specializing in IT SOX and=0D=0A control assurance. She has supported companies preparing for or=0D=0A recently completing an IPO, as well as global enterprises, middle=0D=0A market organizations, and Fortune 500 clients operating in complex=0D=0A regulatory environments. Her expertise includes IPO and first?year SOX=0D=0A readiness, SOX 404(a)/(b) program design and execution, annual scoping=0D=0A and walkthroughs, deficiency evaluation and remediation, and SOC 1 and=0D=0A SOC 2 readiness and reporting. Ellie is known for translating complex=0D=0A technical and regulatory requirements into clear, actionable guidance=0D=0A that enables strong governance and sustainable control environments.=0D=0A=0D=0A =0D=0A=0D=0A Education & Certification =0D=0A=0D=0AMaster of Science,=0D=0A Accounting, Boston College=0D=0A=0D=0ABachelor of Science=0D=0A in Business Administration, Financial Planning, Colorado State University=0D=0A=0D=0ACertified Information=0D=0A Systems Auditor (CISA)=0D=0A=0D=0A =0D=0A=0D=0A Session 2: =0D=0A Risk-Based Segmentation for Audit and Assurance =0D=0A=0D=0A=0D=0A Speaker: Ola Aliu, Cyber Specialist, RSM Canada =0D=0A=0D=0A =0D=0A=0D=0A Session Description:=0D=0A=0D=0ARisk-based=0D=0A segmentation replaces ?one-size-fits-all? audits with a structured=0D=0A approach to grouping systems into risk zones (e.g., PCI, HR/Payroll,=0D=0A SaaS/Cloud) and applying fit?for?purpose control baselines.=0D=0A=0D=0A =0D=0A=0D=0AThis session explores=0D=0A what effective segmentation looks like from an assurance standpoint,=0D=0A the types of evidence that demonstrate segmentation is working, and=0D=0A how this approach reduces scope creep and audit fatigue while=0D=0A strengthening overall governance.=0D=0A=0D=0A =0D=0A=0D=0A Speaker Bio:=0D=0A=0D=0AOla is a seasoned IT=0D=0A and cybersecurity professional with over a decade of experience in=0D=0A technology risk and assurance. He specializes in implementing and=0D=0A evaluating IT risk and security controls across multiple frameworks,=0D=0A including PCI DSS, NIST CSF, NIST 800 series, ISO/IEC 27001, HIPAA,=0D=0A and GDPR. His expertise spans conducting gap and risk assessments,=0D=0A developing cyber resilience strategies, and aligning security=0D=0A requirements with business objectives. Ola brings a practical,=0D=0A evidence driven approach to evaluating control design and operating=0D=0A effectiveness, validating evidence quality, and translating technical=0D=0A findings into actionable assurance outcomes for internal audit, risk,=0D=0A and security stakeholders. Drawing from cross-framework assessment=0D=0A experience, he shares practical ways to improve audit efficiency,=0D=0A reduce ambiguity, and strengthen governance.=0D=0A=0D=0A =0D=0A=0D=0A Education =0D=0A=0D=0AMaster?s degree in=0D=0A Risk Management=0D=0A=0D=0ABSc in Engineering=0D=0A=0D=0A =0D=0A=0D=0ACPE:4.0 Hrs.=0D=0A=0D=0A =0D=0A=0D=0A Refund & Cancellation Policy in effect=0D=0A=0D=0A SUMMARY:ISACA Toronto Chapter & ISC2 Toronto Chapter Joint Session PRIORITY:3 END:VEVENT END:VCALENDAR