Return to: MIS Research Center : Carlson School : U of M

Gold University of Minnesota M. Skip to main content.University of Minnesota. Home page.
One Stop | Directories | Search U of M  
 
MIS Research Center
what's inside image
About>
Academics>
IDSc Courses>
Connections
Event Calendar
News
Overview
History
Corporate Partners
Directions and Parking
Contact
Overview
EABC
IDSc Faculty
IDSc Degree Program Overview
IDSc Programs
IDSc MBA Program
IDSc PhD Program
IDSc Courses
Overview
Course Sponsporship Program
Course Sponsors
Outreach>
People>
Ph.D. Job Market
Publications
Overview
Seminar Series
Student Initiatives
EABC
Course Sponsorship
MISRC Leadership
IDSc Faculty
IDSc Staff
IDSc Doctoral Students
Research Associates
EABC
Research>
Seminar Series>
RFID Forum
Working Papers
Overview
Research Projects
Research Symposia
Research Interests
Friday Workshop Series
Working Paper Series
Overview
Slides
Registration
Webcast>
Overview
Chat
Archive
Live

 

Site Map

Event Calendar for the University of Minnesota Software Engineering Center

 
Home > Seminar Series > October 3, 2003

MIS Research Center Seminar Series

Sharon O'Bryan

Date:  October 3, 2003

Speaker:  Sharon O'Bryan, O'Bryan Advisory Services, Inc.
Topic:  "Information Security and Privacy: An Issue at the Heart of Business and Technology Convergence"
http://www.csoonline.com/read/020103/account.html

Abstract:

Consumers and business leaders are stepping up efforts to ensure that their personal, confidential, and business critical information is protected from unauthorized access and use. Concerns regarding identity theft and terrorism have significantly escalated the issue information protection. Technology controls are at the center of the issue. Have businesses adequately made the transition from manual operational controls to controls that properly protect information dissemination enabled by technology? Have the cost savings of implementing technology been partially due to the elimination of adequate control process engineering?

This seminar will cover privacy and information protection issues from multiple perspectives. We will analyze the Gramm-Leach-Bliley Act (Section 501b) and the Health Insurance Portability and Accountability Act of 1996. Participants will also have an opportunity to proposed and explore hypothetical case studies. The seminar will engage the participants as individual citizens, business leaders, and investors therefore the seminar will be valuable to a wide audience rather than an industry focus. While G-L-B-A and HIPAA will be used to focus the group on key issues of information protection, the seminar will be highly focused on identifying “critical” and “sensitive” information and the risks associated inadequate controls.

Biography:

Sharon O'Bryan, MBA, MMIS, CISA
Sharon is the President and CEO of O’Bryan Advisory Services, Incorporated -  a company she established as she transitioned out of her role as Senior Vice President and Chief Information Technology Security Officer (CITSO) with ABN AMRO North America.  O’Bryan Advisory Services, Inc. focuses on providing technology risk advisory services to “C-Level Executives”, Boards and Board members.  These services enable the executive management team to identify viable options and direct effective implementation of risk management solutions that appropriately balance the business strategy, use of technology, feasibility of traditional risk management processes, and compliance with new regulations and laws such as Gramm-Leach-Bliley and Sarbanes-Oxley.

During her career Sharon has been a highly visible and active participant in executive strategy, operations oversight, and governance committees.   At ABN AMRO she was a lead member of global and regional Policy and Standards Committees as well as the Chief Privacy Officer of the ABN AMRO Services Company.   Sharon’s role at ABN AMRO also included notable tenure as the department head of the Technology Risk Management Group delivering ground-up integrated solutions for technology control architecture, engineering,  operations and provisioning of  technology-related controls,  technology recovery and business continuity.  

In addition,  Sharon has been a leader in the Financial Services Industry through her initiation, and Co-Chair role, in developing the BITS Outsourcing Risk Management Framework.   She was also a member of the Microsoft CSO Working Group teaming with Microsoft in their efforts to establish a heightened focus and delivery of secure products.   Sharon was also a contributor to the Banking and Finance Sector National Strategy for Critical Infrastructure Assurance coordinated by BITS in response to Presidential Decision Directive 63 (PDD-63).  She has been quoted in Database Trends and Applications, InformationWeek, and Bank Systems & Technology magazines.  Sharon has also been part of the select BITS team to brief Richard Clarke, President Bush’s Advisor on Cyber Security,  on matters associated with IT Service Provider relationships in the Financial Services Industry.

Sharon has over twenty years of experience in information technology controls design and implementation.  She has four years of IT audit experience and three years of consulting experience both with public accounting organizations.   Seventeen years of Sharon's IT experience has been with financial institutions.   

Sharon has a Masters of Business Administration with a Concentration in Organizational Behavior, a Masters in Management Information Systems and is a Certified Information Systems Auditor.  She also has a Certification in eCommerce Law and is currently pursuing a Masters in Theology.

Pre-reading:

Standards for Safeguarding Customer Information
Final Rule issued by the Federal Trade Commission May 23, 2002.
A pdf version of the rule can be obtained here.

Health Insurance Portability and Accountability Act of 1996.
http://aspe.hhs.gov/admnsimp/pl104191.htm
(focus on sections 1171 and 1172)
 
©2008 Regents of the University of Minnesota. All rights reserved.
The University of Minnesota is an equal opportunity educator and employer.
Last modified on Thursday, January 24, 2008 		Web Site Comments? | Contact Us | Privacy

Printer-Friendly Version