Need CPE credit? A-LIGN’s webinars cover a broad range of topics from compliance to security across all of the services that we offer. A-LIGN is also a registered sponsor for Group-Internet Based Programs and is listed on the National Registry of CPE Sponsors. We are able to provide CPE credit through these live instructor-based webinars to professionals that register and sign up to receive credit. Below, check out upcoming webinars, or watch our previous webinars. Watch, learn, and contact us if you have any questions.
Do you and your employees know how to identify a social engineering attack? As hackers become increasingly savvy at breaking into accounts through social engineering, organizations need to better understand how to avoid becoming another target. A-LIGN Partner, Gene Geiger, has 20 years of security and compliance experience assisting organizations in defending against and identifying attack vectors.
In this webinar, Gene will provide examples of recent social engineering attacks, identify the types of social engineering attacks that your organizations could face, and discuss the different security assessments that your organization can conduct to protect your organization.
Please click on the title of our past webinars to view the recordings.
- The Survival Backpack: Gearing up for Compliance in 2017
In 2016, as many standards and methodologies, such as PCI DSS, FedRAMP and HITRUST were met with revisions, we look at how to appropriately implement these changes for your organization. Our compliance trail guides consider how new standards, such as the EU – U.S. Privacy Shield, and upcoming changes to SSAE 16 and SOC 2 standards, will affect your organization in the upcoming year. A-LIGN Partners, Scott Price and Gene Geiger, will review the security and compliance landscape in 2016, consider how new standards will affect your organization in the upcoming year, and prepare you to achieve compliance in 2017.
- The Song Remains the Same: A Decade of Unchanged Security Vulnerabilities
A decade of security innovation and awareness, combined with maturing compliance standards such as PCI DSS, ISO 27001 and SOC 2 have improved our security culture. However, the same vulnerabilities found in 2006 continue to appear today in standard penetration testing. Industry veteran and Vice President of Business Development at A-LIGN, Greg Johnson, will address the data breach landscape, the top vulnerabilities still present, and review how your organization can avoid them.
- Going for Gold: Becoming ALTA Best Practices Certified
As Michael Phelps and Katie Ledecky make their way home from the Olympics in Rio, A-LIGN’s experienced assessors consider the journey that organizations take to “Go for the Gold” and become ALTA Best Practices certified. A-LIGN Managing Consultant, Blaise Wabo, will explain what ALTA Best Practices is, how to “train” for an assessment, and why you should become ALTA Best Practices certified.
- Preparing for a PCI DSS Audit: Top 10 Key Issues
Does your organization know how to successfully prepare for a PCI DSS assessment? Without proper preparation, a PCI DSS audit can become more time and resource intensive than necessary. In this webinar, participants will learn why PCI DSS audits can become such a lengthy, drawn-out process and how to remedy this issue by preparing appropriately. A-LIGN’s Vice President of Business Development, Greg Johnson, will explain audit preparation techniques, review segmentation issues, and expand on other pertinent PCI DSS audit pitfalls.
- SOC 1 and/or SOC 2: Weighing Your Compliance Options
Organizations are constantly asking A-LIGN’s experienced assessors about the audit options that make sense for their organization. During this webinar, Managing Consultant, Stephanie Oyler, takes an in-depth look at the differences between SOC 1 and SOC 2, highlights which SOC audit applies to different organizational situations, and explains how to leverage SOC audits within your existing compliance framework.
- Breached: Now What?
Data breaches are on the forefront of our minds as they occur with increased frequency and severity. From the theft of minimal information like email addresses, to the full disclosure of social security and credit card numbers – data breaches can be disastrous for not only the victim organization, but for an entire chain of affected entities. A-LIGN Managing Consultant and Lead Penetration Tester, Jeff Sweetwood will explain what a breach is, recent trends, and how to prepare your organization.
- Keeping E-commerce Safe: Key PCI DSS Requirements
Every day, card data is pilfered from both Point-of-Sale (POS) and web-facing merchants. This presentation will focus on key, and often ignored, PCI requirements that provide greater safety to your business. A-LIGN’s VP of Business Development, Greg Johnson, will share his knowledge gained through years of experience working with compromised merchants.
- Active Shooters in the Workplace: Are You Prepared?
Violence in the workplace has always been a concern for companies. With the dramatic rise of shooting incidents in the workplace over the last few years, companies are realizing that their current employee safety procedures have not kept up with the times. Your company most likely has procedures and drills for fires and tornadoes, but not for violent acts from employees. In this session, A-LIGN guest presenter, James Green, will teach you how to incorporate active shooter awareness into your life safety program.
- Putting the Pieces Together: What is HITRUST and how does it fit into the compliance puzzle?
HITRUST is the sum of multiple audit standards and serves as a comprehensive certification for those in the healthcare industry. A-LIGN Partner Gene Geiger will explain what HITRUST is, how these overlapping standards fit together, and how leveraging current audits can reduce the time, money, and effort necessary to achieve HITRUST certification. Furthermore, Gene will discuss how to integrate HITRUST into your current compliance program.
- Implementation to Certification: Practical Discussion on ISO 27001
A-LIGN Partner Gene Geiger and OrangeParachute Founder Travis Hyde hold a discussion in which they answer questions regarding the current state of information security, the relevance of the international standard ISO 27001, and the top-down approach benefits of becoming certified.
- SSAE 16 or SOC 2? Knowing what path is right for your company
Managing Partner Scott Price and Managing Consultant Steve Simmons will take a comprehensive look at SOC1 / SSAE 16 and SOC 2 audits, the advantages and disadvantages of each, and answer the question of which audit companies should undergo.
- Defend Your Data: Cybersecurity Lessons Learned from 2014
Learning from the security incidents of 2014, Gene Geiger, Partner at A-LIGN will host a webinar during which Marc Rubbinaccio, Senior Consultant at A-LIGN, will review the incidents, identify common themes, and discuss how organizations can strengthen their information security.
- Security Awareness Boot Camp: Train Employees to be Your First Line of Defense
Partner Gene Geiger hosts the A-LIGN Security Awareness Boot Camp! Our boot camp is designed to take viewers through rigorous course objectives that will strengthen their knowledge of information security and improve their reaction to potential threats.
- Preparing for the COSO Framework Deadline: What Do I Need to Update Prior to December 15, 2014?
By December 15, 2014, all organizations utilizing the COSO Framework will need to complete their updates. The concepts underlying the 5 COSO components have now been codified as principles and must be satisfied as part of your framework. During our presentation, Sara McLane, Senior Consultant at A-LIGN, will walk you through the updated principles and points of focus, as well as highlight common controls that will meet the updated principles.
- ISO 27001 Certification: An All-Access Pass
As a globally recognized security standard, the ISO 27001 certification is gaining traction in the U.S. as more companies are pursuing the certification to meet contractual obligations or to gain a competitive advantage. Gene Geiger, Partner at A-LIGN, will outline the steps required to become ISO 27001 Certified.
- Audit Survival Kit: How to Plan, Prepare and Achieve Compliance
From this discussion, you will learn how to determine the right security or compliance assessment for your organization, select the right audit firm that best fits your individual needs, prepare for a successful assessment, conduct an assessment with multiple audit considerations, leverage on-going status discussions regarding exceptions or potential issues, and handle future business considerations — while keeping compliance in mind.
- Countdown to Compliance: What you need to know for PCI 3.0
The goal of this discussion is to provide highlights of the changes in the standard from Version 2.0 to 3.0, discuss the required implementation timeline and how organizations should approach these changes.
- CFPB Examination – Getting Your Agency Ready!
The goal of the discussion is to provide a high-level overview of the key areas that Collection Agencies should focus on as they prepare for the CFPB Examination.
- PCI Data Security Standard Implementation Challenges – An Industry Perspective
The goal of the discussion is to provide a high-level overview of the Payment Card Industry Data Security Standard (PCI DSS), outline implementation challenges, and provide real-world examples of industry specific hurdles.
- Compliance Alphabet Soup
The goal of the discussion is to distinguish the various compliance standards in the industry. (Please contact us if you would like a copy of the presentation material)
- The a-b-c of SOC
Discussion is directed on helping organizations understand the new SOC standards which were established by the AICPA effective June 15, 2011.
- Happy Birthday ‘SOC’ – Farewell SAS 70
The goal of the discussion is to outline the lessons we have learned as service auditors and service organizations over the last year.
- Reducing Audit Impact by A-ligning PCI DSS, SOC 1 & 2 Requirements
The goal of the discussion is to equip organizations that undergo multiple compliance audits annually with guidance on how to better prepare for, schedule, and undergo audits from external auditors.