Chapter Meeting, Friday, September 21, 11:30-1:00, Arden-Dimick Library

What: Sacramento ISSA Chapter Meeting

Where: Arden-Dimick library meeting room, 891 Watt Ave, Sacramento, CA 95864, USA

When: Friday, September 21, 2018, 11:30a-1:00p

Topic: Security Principles in Practice: Does Your Implementation Stand Up to an Audit?

           We will also be having a ratifying vote to amend our current chapter Bylaws.

            See our 'Current' and 'Proposed' Bylaws for details.

Who: Jill Feagans

Please Register (see the tab above) by Wednesday, September 19, so we can order enough food for this event.

A full security audit is a daunting exercise. In NIST 800-53 there are 18 control families. Most security practitioners focus only on the control families that seem directly related to technology; such as Access Control (AC) or Audit (AU). In a full security audit your organization will be asked to walk through all 18 control families including sub-controls. NIST 800-53 is a starting point for security controls and best practice. For those of us in specialty industries such as health care or banking we may be subject to controls such as MARS-E, FISMA, IRS 1075, PCI or others. Having just wrapped up being the lead in a full healthcare security audit, Jill will bring you details from the trenches. Knowing what to expect from the audit experience can help not just with external audits but in conducting control-based internal assessments and reviews as well.


Jill Feagans is a Senior Security and Infrastructure Architect for Optum. As an IT professional for more than 25 years she has worked in many diverse environments. Projects she has developed and implemented include everything from firewall rules for online voting systems in the 2004 elections to wireless emergency control systems for the Department of Homeland Security and FEMA. Jill has broad experience as an infrastructure architect, security designer and implementation engineer. She has spoken at RSA and ISSA International on topics ranging from Ethics in Security to Cross-Organizational Implementation of Federated Identity. Jill is a current CISSP, CCSP, HCISSP, CISM

Jill has also been a long-time member and past President of the ISSA Sacramento Valley Chapter.

Friday, September 21, 2018 - 11:30am to 1:00pm