John R. Robles and Associates |
||||||
 |
||||||
| Online | Unsubscribe | Subscribe | Feedback | Vol. 9 - November 2007 | ||
John R. Robles and Associates |
||||||
|
||||||
| Online | Unsubscribe | Subscribe | Feedback | Vol. 9 - November 2007 | ||
 |
|
From the Editor |
|
Welcome to the ninth edition of Info-Governance. I wish you had a HAPPY THANKSGIVING! Please send suggestions and comments to jrobles@coqui.net or visit www.johnrrobles.com . ENJOY! |
 John R. Robles Editor |
|
|
Technology and Governance News |
|
Risk with respect to Information Technology (IT) Systems is the potential harm that may occur from some current or future event. It is a function of the likelihood of the threat (or bad thing that can happen, such as, Acts of Nature, Alteration of Software, Alteration of Data, etc.) against a potential vulnerability (flaws or weaknesses in systems and procedures that could be exercised resulting in damage to assets and the company) with an ensuing negative impact on the organization (financial loss, data loss, negative impact on reputation of company, lack of compliance with laws and regulations, etc.). Risk management is the process of reducing the risk (or potential harm) to an acceptable level through the process of identifying potential threats, identifying vulnerabilities, relating threats to vulnerabilities, and defining impacts to the company or systems ( financial loss, damage to hardware and software assets, effect on human lives, etc.) The NIST (National Institute of Standards and Technology) has published “The Risk Management Guide for Information Technology Systems”. It is the US Federal Government standard and it clearly defines Risk Management in the use of Information Systems in the Federal government. You can read and download it here. Another good document is “An Introduction to Information System Risk Management”. It is part of the Information Security Reading Room of the SANS Institute. You can read and download it here. |
|
|
|
Professional Associations |
|
An important part of this newsletter is the identification of professional associations that provide training and seminars to information technology, governance, security, and other professionals in Puerto Rico. We will publish all activities and seminars of these associations so that each professional can select which seminar or training to attend for their own professional growth, as well as, the accumulation of Continuing Professional Credits for their certification requirements. |
|
 |
|
 News from ISACA Puerto Rico
|
|
11/26/07 - Monthly Seminar - Auditorias de Base de Datos 12/07/07 - ISACA PR Chapter's 6th Annual Symposium |
|
|
|
 News from the Association of Certified Fraud Examiners of Puerto Rico |
|
|
11/27/07 - Investigacion del Caso de Fraude en la Union Independiente Autentica de Acueductos (UIA)
|
|
 News from Project Management Institute of Puerto Rico |
|
11/29/07 - Requirements, a Crucial Ingredient of any Successful Proyect
|
|
 News from "Asociacion de Ejecutivos de Cooperativas de Puerto Rico" |
|
| 11/27/07 - Estrategias de Medicion y Control para el Mercadeo Efectivo "Dashboard y Scorecards" 11/29/07 - Almuerzo de Socios - Perspectivas Economicas 2008-09
|
|
 News from the Institute of Internal Auditor Puerto Rico |
|
| 12/05/07 - Conferencia Sobre Tecnologia de Informacion, Auditoria y Contabilidad - Sector Gobierno y Privado
|
|
 News from Infragard
|
|
A la fecha de hoy la asociación no tiene actividades anunciadas para lo que queda del mes. |
|
|
|
ISSA - News from the Information Systems Security Association, Puerto Rico Chapter |
|
A la fecha de hoy la asociación no tiene actividades anunciadas para lo que queda del mes. |
|
|
|
 itSMF - Puerto Rico Local Interest Group |
|
A la fecha de hoy la asociación no tiene actividades anunciadas para lo que queda del mes. More information...
|
|
 News from the Internet Society of Puerto Rico |
|
| A la fecha de hoy la asociación no tiene actividades anunciadas para lo que queda del mes.
|
|
 News from the "Colegio CPA de Puerto Rico" |
|
| A la fecha de hoy la asociación no tiene actividades anunciadas para lo que queda del mes.
|
|
 News from AIIM - The Enterprise Content Management Association, Puerto Rico Chapter |
|
| A la fecha de hoy la asociación no tiene actividades anunciadas para lo que queda del mes.
|
|
News from APSEI - Asoc. Profesionales Sistemas Electronicos de Información |
|
For aditional information on APSEI, please contact the following person.
|
|
 News from Puerto Rico PASS -Professional Association of SQL Server |
|
A la fecha de hoy la asociación no tiene actividades anunciadas para lo que queda del mes.
|
|
From Our Readers |
|
This eNewsletter has received many favorable comments from our readers. Read those comments.
|
|
Farewell... |
|
Thank you… Thank you for reading this e-newsletter. I hope to keep improving it with each volume. Please feel free to forward it to a friend or associate. If you prefer NOT to receive it, unsubscribe. See you next time!! John R. Robles |
|
|
|
About this eNewsletter |
|
If you no longer wish to receive the Info-Governance newsletter, unsubscribe. If you wish to receive this newsletter on another email address, change your email address here. Please add jrobles@coqui.net to your address book to ensure delivery of this e-newsletter. |
|
 |
130 Winston Churchill Ave. Suite 1 PMB 203 San Juan PR 00926 |
Risk Management for Information Technology Systems