How to Successfully Implement and Sustain Exceptional IT Governance

Seminar

Sponsored By:

Date: Tuesday, February 26, 2013Time: 12:00 p.m. - 2:00 p.m.Location: Bennett Jones LLP - 1 First Canadian Place, 100 King Street West, 34th Floor, Toronto, ON M5X 1A4Lunch Cost: $20 per person

Speakers:Jeff Curtis, CISSPRichard Cartwright, CGEIT, ISP.ITCP, ITIL, PMPDuncan Card, BA (Hons.), LLB., LLMLisa Abe-Oldenburg, B.Comm., JD

Introduction:Information technology (IT), if not at the core of every business and organization, is certainly one of the critical success factors underpinning effective and responsive management, optimum allocation of resources, developing and sustaining competitive advantage and cost containment. Managing IT entails addressing the recurring or day-to-day tactical and operational requirements and evaluating IT’s overall contribution. Governing IT encompasses the Board’s corporate risk management responsibilities, ensuring that strategic long term planning and preparedness are addressed, defining the strategic role, organizational structure and accountability of IT within the organization, as well as ensuring business operational risk, compliance risk, liability risk, reputational risk, intellectual property infringement risk and security risk are properly assessed, managed and mitigated. Directors are expected to address the question of what circumstances and events could cause harm to the corporation, and must satisfy themselves that reasonable steps have been taken to understand and balance the risks appropriately against the prospects for gain. Legally, Directors must have direct oversight of the “big risks” affecting the enterprise and need to discuss and monitor these regularly with senior management.

Most C-suite executives understand viscerally the need for IT governance and study after study shows a positive correlation between exceptional IT governance, bottom line performance and stakeholder satisfaction. However, many of these same executives are unclear about the details of effective IT governance: where to start, what to expect, how to transition and how to sustain.

In this presentation, the speakers will address:

What is the role of senior management and Directors in IT governance and risk management? What steps are required to successfully implement and sustain IT governance? How to assess IT infrastructure governance and the risks? What are the key risk drivers and business (core) value issues? What issues and roadblocks could develop? What training is required within an organization?

Presenters:

Jeff Curtis, CISSP is the Chief Privacy Officer for Sunnybrook Health Sciences Centre, a large acute care, research and teaching hospital in Toronto and is a Director in the hospital’s Information Services group responsible for information privacy assurance, access to information compliance, IT risk management, and corporate strategic planning activities. Jeff has an MBA from the University of Toronto and an MSc. from the University of Reading, U.K. and is a doctoral candidate in information security research at the University of Reading.

Richard Cartwright, CGEIT, ISP/ITCP, ITIL, PMP is the Director of IT Governance and PMO Services with MZP Solutions. He has over twenty years’ experience in IT governance, service management and project management, including serving as the manager of the CIO Office’s Project Management Office with Enbridge and Program Manager with the Hospital Diagnostic Repository Services (HDIRS). Richard is a member of the Institute of Corporate Directors and is presently completing his MBA from Heriot Watt University.

Duncan Card, BA (Hons.), LLB., LLM, is a Senior Partner of Bennett Jones LLP, Co-Chair of the Technology, Procurement and Sourcing Practice Teams. Ranked as one of the leading IT and technology lawyers in Canada, Duncan also teaches the “IT Governance: Oversight of Information Management” sessions at the Rotman School of Management and Institute of Corporate Directors, ICD.D Certification Program, for each of the University of Toronto and University of Edmonton. He has also written numerous papers and is a contributing author of Chapter 25, “Information Technology Risk Management”, in Barry Reiter’s book, Directors’ Duties in Canada, 5th Edition, 2012, CCH Publishing.

Lisa Abe-Oldenburg, B.Comm., JD, is a Partner of Bennett Jones LLP’s Information Technology Law Group, and on the Board of CIPS (Ontario). Lisa is also ranked as one of the leading IT and technology lawyers in Canada and a contributor to Chapter 25, “Information Technology Risk Management”, in Barry Reiter’s book, Directors’ Duties in Canada, 5th Edition, 2012, CCH Publishing.

Please RSVP by February 22, 2012. Space is limited. If you have any questions, please contact Stacey Nichols at nicholss@bennettjones.com or 416.777.4883.

We look forward to seeing you.