This session will attempt to lift the veil on the mystery surrounding the simple statement “this system lacks adequate control” and will address the possible impact of the programming language used.

--------------------------------------------------------------------------------

SPEAKERS 
John Mitchell
Dr John Mitchell, Managing Director, LHS Business Control

--------------------------------------------------------------------------------

AGENDA
18:00 - Tea, coffee, juice & biscuits
18:30 - Talk
19:30 - Networking, including food and wine
21:30 - Close

--------------------------------------------------------------------------------

SYNOPSIS
Java, C, or COBOL? Does the choice of computer language for commercial developments matter for information security when what is really important is the internal and external operational control of the delivered solution? Indeed, internal and external control of the final deliverable is often an afterthought and is seldom considered at the requirements and design phases.

What is this control stuff? Are there different types of control? How do they operate? Can we measure their effectiveness? Are some languages better for imposing control than others? Many Infosec controls are invisible, either because they are in the code, or are operating on transactions which are themselves invisible to the observer. How can assurance professionals help design well-controlled systems? Is there a link between risk and control? What is the process for designing strong controls at the design phase?

This session will attempt to lift the veil on the mystery surrounding the simple statement “this system lacks adequate control” and will address the possible impact of the programming language used.

--------------------------------------------------------------------------------

SPEAKER BIOGRAPHIES
Dr John Mitchell is managing director emeritus of LHS Business Control, a consultancy which he founded in 1988 to specialise in corporate governance and risk management. He is an international authority on corporate governance, the control of computer systems, the investigation of computer crime and the impact of regulatory and compliance issues on the delivery of IT services.

John has been an expert witness in some high-profile UK criminal cases and has featured in a major British computing publication as The IT Detective. He has previously been a member of BCS Council, a member of its Risk Audit and Finance Committee and Chair of its Information Risk Management and Assurance specialist group. He is currently a member of the Community Board Finance Committee and holder of the John Ivinson medal for services to the institute. His doctorate in risk analysis techniques was awarded by City University, London, England. His MBA in financial control was awarded, with distinction, by Middlesex University, England.

--------------------------------------------------------------------------------

Please register for Advanced Programming SG - March 2020 Meeting on Mar 12, 2020 6:00 PM GMT at:
https://attendee.gotowebinar.com/register/8603875705237813261
After registering, you will receive a confirmation email containing information about joining the webinar.

Our events are for adults aged 16 years and over.

For overseas delegates who wish to attend the event, please note that BCS does not issue invitation letters.

--------------------------------------------------------------------------------

THIS EVENT IS BROUGHT TO YOU BY:
BCS Advanced Programming SG
Visit https://apsg.bcs.org/

Controlling Information Security - Does the Programming Language Matter? - Advanced Programming SG
Date and time
14 May, 6:00pm - 9:30pm
Location
BCS, The Chartered Institute for IT
Ground Floor
25 Copthall Avenue
London
England
EC2R 7BP
Price
Free