Practical IT GRC Workshop including King IV

We can help you to do it practically and effectively. What must an organisation comply with? What should you consider? What IT legal risks you should address? What laws relate to information, communication and technology (ICT)? What could happen to you if you don’t comply?

We offer a presentation, seminar, workshop, or executive briefing on this topic by an expert with practical experience. We also offer an eCourse on request.

Outcomes

• Apply the King Report and King Code from an IT perspective by knowing the difference between King III and King IV, and knowing what action to take.
• Know what IT (and data protection) laws exist and which ones are most applicable to your organisation.
• Be up-to-date with the latest law and find quick answers to your questions.
• Identify some practical action items to focus on.
• Know how you can monitor, evaluate, and assess compliance with external legal and regulatory requirements related to IT.

What do we cover?

• Why IT GRC is important. What is IT or ICT anyway?
• The relationship between the three sisters – governance, risk and compliance.
• The Regulatory Road Ahead – a road map of the next few years. The King IV effective date.
• An update on and overview of the King Report. The differences between and transitioning from King III to King IV.
• An overview of the IT Governance Practices in King IV and how it differs from King III.
• Guidance on the disclosures you will have to make for King IV.
• An overview of IT risk, including IT legal risks like the risk of non-compliance.
• What must your organisation comply with? The governing bodies responsibility regards legal compliance as set out in King IV and how it differs from King III.
• An overview of IT laws and data protection laws, rules, codes and standards (both global and South African) – an analogy with a plumbing system, a matrix and dealing with overlaps.
• The practical application of IT GRC to real issues (like electronic signatures, contracts, email disclaimers, cybercrime law, social media, and cloud computing).
• Who is responsible – getting governance structures right. An assessment of your organisation.
• The latest developments, including recent South African case law and King IV Code.
• Tips for successful projects. Some quick wins and factors for success. Using frameworks – like an IT Legal Framework.
• Take home points and action items

Please email us and ask for the programme if you would like details. This is not an academic workshop for students. It is for people dealing with these issues in their organisations.

“Legal experts were brilliant” delegates at an IT Governance, Risk and Compliance conference

Course Material on IT GRC

We will give you:

• Our comprehensive presentation covering IT GRC.
• A King III to King IV Comparison Table for IT governance setting out the difference between King III and King IV, and what actions need to be taken.
• A King Planning Tool to help you to outline the areas of governance that you have focused on in the previous financial year (or reporting period), and what you plan to focus on in the next one.
• A King Disclosure Tool for IT Governance.
• A Compliance Action Plan template.
• A hardcopy of the List of IT Laws.
• The IT Legal Framework Top 10 Issues and a 10% discount off the full IT Legal Framework.

Public workshops

Our 2017 dates are now available. The cost of one delegate is R3,920 (excluding VAT). Our next public workshops:

• Johannesburg: 23 May 2017 from 09:00-16:00. Book your seat.
• Johannesburg: 12 October 2017 from 09:00-16:00. Book your seat.

Watch a short video with John in action and talking about the topic at a recent GRC conference in 2016. The other speakers included Mervyn King and Clem Sunter.

Who should attend and Why?

• IT Governance officers and specialists – to govern IT
• Compliance officers – to effectively comply with IT laws
• Information (protection) officers – to balance access to information and protection of personal information
• Legal advisors (corporate lawyers or in-house lawyers) – to provide good legal advice on IT issues
• Information Security Officers – to secure IT
• CIOs and IT Managers – to manage IT
• CAEs, auditors and assurance providers (internal and external) – to audit and provide assurance regards IT
• CROs and Risk Managers – to address IT legal risks
• IT Operators – to ensure that IT operates
• Directors (executive and non-executive, CEOs and FDs) – to discharge their legal duties and direct the course of the organisation
• Consultants – to advise and provide solutions on IT related issues

What sets us apart?

• We have significant practical experience dealing with these specific areas.
• Our sessions are interactive – you are able to ask questions, have your specific issues dealt with, and influence what gets discussed.
• Our sessions are tailored to the attendees – we ask you questions in advance so that we know what your issues are and your existing level of knowledge.
• We do not give sales pitches, which is unfortunately so often what speakers do at conferences.
• We provide insight and simplify the issues, which can only be done after practically applying IT laws to real business issues.
• We empower you and do not try to entrench ourselves in your organisation.
• The topic gets covered more comprehensively when one person leads the discussion for a day, than many different people covering the same ground. It is not different people covering the same issues superficially in different ways.
• We cover the same ground in one day, rather than two. This saves you time and money. We tell you what you need to know, not everything.

Who is the presenter?

A practical attorney from Michalsons. We will ensure the attorney is the best person to present the course depending on the type of course, the date, the specific issues and the attendees. For example, John Giles often presents on this topic. John is a trusted independent legal adviser, who is a practising attorney. He is currently helping many organisations govern IT, address IT legal risks, and comply with IT laws, rules, codes and standards. He has also presented over 20 times on the topic. He has 16 years of practical experience applying his knowledge to organisations to help them grow and avoid legal problems, difficulties, and disputes. He was one of the people who drafted the IT Governance chapter of King III™.

How long is it?

We provide this IT GRC course in different formats. Public and private sessions can last for anything from 45 minutes, half a day or a full day. We also provide eCourses that can be done via the Internet at your convenience. We welcome enquiries for more information and details.

Venue

Our public workshops are at various venues around the country. We choose venues that are central so you can get to it easy, that have adequate parking, good food, and that ensure you are comfortable.

We are happy to give the seminar, workshop or executive briefing at your venue.

Interested?

If you are interested, please complete the form on the right or enquire now. We will contact you to find out more about your requirements and give you a quote.

Note: The Institute of Directors in Southern Africa NPC (IoDSA) owns the copyright to all four of the King reports or codes on governance (including the latest version namely the King IV Report™) and owns various trademarks in relation to King IV (including King IV™, King IV Report™, King IV Report on Corporate Governance™ and King IV Code™). All of the IoDSA’s rights are reserved. All views are our own and we are not associated or endorsed in any way by the IoDSA.