ondemand Role of ISO LP Header.png

In today's threat environment, an Information Security Officer's (ISO) role is a challenge for all organizations. Often, financial institutions struggle with independence, prioritization of risks, organizational support and time constraints with regard to defining the Information Security Officer's role.

The solution: utilize an independent, knowledgeable ISO to secure your organization's network environment, customers and reputation. 

In this webinar, speakers Michael A. Morris and James H. Rumph of the accounting and advisory firm Porter Keadle Moore (PKM) discuss the importance of utilizing an independent ISO, the fundamental documents needed to define the ISO function, the activities an ISO should perform, and how to package these activities for reporting to senior management and the board of directors.

They also share a link to download their ISO Cheat Sheet, which outlines the documents, activities and reporting requirements you’ll need to better define the ISO function at your institution.

In this webinar, we highlight the following:

  • The benefits of utilizing an independent and knowledgeable ISO with proper supporting resources and personnel.
  • How and why everyone should be involved in information security, not just the ISO!
  • High priority items that every ISO needs to tackle.
  • How and what to report to senior management and the Board of Directors. 
Watch today using the form provided. 



Systems Partner, Porter Keadle Moore

Mike is a graduate of the University of Florida with a Bachelor of Arts in Economics and a minor in Business Administration. He also has a Masters of Business Administration with a major in Computer Information Systems from Georgia State University.

His previous experience includes three years as an Information Management Consultant with Millican and Associates, Inc. Since joining the firm in 1999, he has overseen projects including Sarbanes-Oxley IT 404 testing, network vulnerability and penetration testing, Service Organization Control (SOC) reports, and IT general control reviews for data processing companies, banks, and insurance companies.

Mike is a member of the Information Systems Audit and Control Association (ISACA) and is an active member of the Technology Association of Georgia (TAG), serving on the steering committee of the financial technology (FinTech) society.

Mike is also involved in speaking engagements for the Georgia Bankers Association (GBA), including their annual Southern Operations and Technology School. In addition, he has recently led a variety of seminars and webinars as well as served on panels relating to: Internal Fraud, Preparing for an IT Audit, Vendor Management and Social Media & Risk Management.

Senior Manager, Porter Keadle Moore

Jim is a graduate of the University of Georgia with a Bachelor of Business Administration in Accounting and has over eleven years of experience in technology audit and internal controls consulting.

Since joining PKM in February of 2006, he has performed information technology general controls and security assessments for a variety of financial services companies and now leads these projects for the firm’s largest and most complex clients.

Jim is a frequent speaker and trainer on Information Security topics and privacy, and has developed IS programs for a number of organizations. He manages both assurance and consulting engagements for financial statement audits, Service Organization Control reports and Sarbanes Oxley compliance in a wide range of complex information technology environments in a variety of frameworks including Control for Information and Related Technology (CoBIT) and National Institute of Standards and Technology (NIST), as well as industry-specific best practices.

Jim is also a member of the Information Systems Audit and Control Association (ISACA).