CPE: 1.5 hours

Field of Study: Communication

Knowledge Level: Basic

Prerequisites: None

In this session, Rumy will set the stage by providing examples of the pervasive use of social media in business today, including common social media platforms and the spending some companies are doing. He will then dive deeper in to the risks that present themselves from the use of various social media platforms, as well as pitfalls in social media governance. Rumy will offer common opportunities for improvement that attendees can add to a workplan or quickly recommend. Finally, Rumy will share techniques on how to evaluate likelihood and impact of adverse events related to social media use, so that attendees can enhance their ability to score these risks and prioritize audit activities.

In this session, participants will:

1. Develop an understanding of the pervasive use of social media across industries.
2. Discuss common risks that arise from social media use in your organization.
3. Understand common pitfalls in social media governance and key opportunities for improvement.
4. Understand how to assess your organization's current social media strategy.
5. Develop skills in evaluating the likelihood and impact of example adverse events.

CPE: 1 hour

Field of Study: Auditing

Knowledge Level: Basic

Prerequisites: None

The cannabis industry is evolving. Some states have legalized medical marijuana use and other states have also legalized recreational marijuana use. This session will focus on the cannabis industry and introduce its supply chain, customers and third parties. Besides the personal use and direct sales of cannabis, derivatives, such as hemp is being added to products such as lotions, toothpaste, mouthwash, oil, and others. In addition to the direct cultivation of cannabis, the cannabis industry is supported by numerous ancillary services such as information services, banking, security, shipping, construction, equipment, and packaging, to name a few.

Delivering insight into the cash handling requirements and inventory controls, Mr. Waggoner will describe the risks, controls, and compliance requirements of a dispensary from the federal and state level perspectives. At the federal level, the Cole Memorandum, although it has been rescinded, is still used for guidelines on how states will allow cannabis programs. FinCEN Guidelines provides guidance on cash handling and tracking, and the Controlled Substance Act, (CSA)provides guidelines for how inventory tracking of a controlled substance is to be handled by operators of cannabis businesses. State required compliance includes security, badging, record keeping, surveillance, public health and safety, and inventory, and system controls.

The learning objectives for this session are:

1. Attendees will gain an overview of the cannabis industry, its - products, supply chain, customers, and third parties.
2. Attendees will be introduced to basic terminology.
3. Attendees will understand compliance required of the cannabis industry.
4. Attendees will understand the risks and controls of a cannabis dispensary.

CPE: 1 hour

Field of Study: Auditing

Knowledge Level: Basic

Prerequisites: None

Artificial intelligence or “AI” is often referred to though the capabilities of AI are generally not well understood as well as the value that may be obtained. There isn’t yet even a single set of AI terminology that can be agreed upon to use. Tanmay will answer the questions of what AI is, what it's capable of, what it’s not capable of, and how might AI be used by internal auditors in their professional and personal lives.

During the presentation, Tanmay will display transforming examples of this power.

CPE: 1.5 hour

Field of Study: Information Technology

Knowledge Level: Basic

Prerequisites: None

Robotics Process Automation (RPA) is an exciting technology that holds great promise that help companies automate manual tasks. Many experts see a wave of RPA implementations over the next five years.

This session will address best practices around leveraging RPA for SOX compliance and will address the key risks that Internal Audit should consider when auditing RPA & when using RPA as a tool for Internal Audit.

The learning objectives for this session are to:

1. Discuss best practices for performing Internal Audits in a bot-enabled environment.
2. Discuss best practices for using bots to conduct Internal Audits.
3. Discuss best practices for deploying bots to reduce SOX compliance costs.

CPE: 1 hour

Field of Study: Auditing

Knowledge Level: Basic

Prerequisites: None

In this session, we define cloud governance and explain its role in achieving security, compliance, and architecture best practices. We will also present how Internal Audit can assess the information security processes for data stored in the cloud.

Cloud solutions continue to be adopted at a rapid rate as Cloud Service Providers offer flexible computing and storage needs, easier collaboration with internal users and customers, added security features, and more; allowing organizations to focus on their core business functions. While the adoption of cloud services and resources offers many benefits, it also raises significant risks. It is important to establish governance procedures to ensure the successful, sustainable adoption of cloud computing and cloud services.

We will demonstrate how Internal Audit can determine whether the IT organization has put in place processes to actively identify and inventory all cloud services in use, including the data being stored within each cloud services provider’s environment, and how to determine whether the IT organization has processes in place to manage cloud services.

Cloud governance is not a “one and done” activity. To keep up with innovations in technology and business models, governance must be reviewed and maintained.

The learning objectives for this session are:

1. Provide overview of Cloud Governance and Cloud Security
2. Present top risks that auditors should understand
3. Demonstrate audit procedures

CPE: 1 hour

Field of Study: Auditing

Knowledge Level: Basic

Prerequisites: None

CPE: 1 hour

Field of Study: Auditing

Knowledge Level: Basic

Prerequisites: None