Urs Fischer

IT Risk Management und Compliance im Bereich Datensicherheit / Datenschutz bei Off-shoring and Outsourcing Projekten.

The I&T Risk Advisory Group will partner with ISACA Global to identify industry trends and support activities required to appropriately create the necessary information technology risk content to develop products in support of ISACA’s constituents. New product ideas will be discussed, and products will be prioritized in alignment with ISACA global strategy.

The charge of the ISACA Nominating Committee is to prepare a slate of candidates for the ISACA Board of Directors—consisting of an international president and up to 7 vice presidents—for review and approval by the association membership at the Annual Meeting of the Membership.

ISACA's Credentialing Board is responsible for the Certifications CISA (Certified Information Systems Auditor), CISM (Certified Information Security Manager) and CGEIT (Certified in Governance of IT). It controls the subcommittees CISA Test Enhancement, CISM Test Enhancement and CGEIT Test Enhancement as well as the Task Forces CISREM (Certified Information Systems Risk and Exposure Manager) and Cobit Enterprise Certification.

The CISREM (Certified Information Systems Risk and Exposure Manager) Task Force is charged with the development of a certification primarily serving professionals who identify and manage risks through the development and implementation of appropriate IT controls to help enterprises accomplish business objectives, such as effective and efficient use of resources, safeguarding of assets, accurate financial reporting and compliance with relevant regulatory and legislative requirements.

Chair of ISACA/ITGI Audit Committee (member since 2006, chair since 2008).

With Swiss Life since Nov. 1999 in different positions (Head Group IT Audit 1999-2003, Head IT Risk Mgmt & Security 2003-2008, Head IT Governance and Risk Management 2008 - till today: Development and improvement of a sustainable, effective, efficient and documented Risk-Controlling-Process for Information Technology and Logistics. Development and improvement of sustainable, effective and efficient Information Technology Security Processes.

Chairing the Task Force which was responsible for the development of ISACA's & IT Governance Institute's: - Risk IT Framework: Based on Cobit - Risk IT Practitioner Guide Based on CobiT

As member of the Committee responsible for the further development of CobiT. Co-Developer of CobiT 4.0 and CobiT 4.1.

Co-Developer (member of the focus group) of ISACA's publication 'IT Control Objectives for Basel II - The Importance of Governance and Risk Management for Compliance'.

Performance IT Audit within the whole group. Risk Analysis in IT infrastructure- and application-areas. Performance of process orientied system audits. Assessment of information-systems concerning the level of security, quality and internal control. Application of ISACA standards and CobiT Framework. Functional Management IT-Audit for Swiss Life Group. Performing due diligences.

Wirtschaftsprüfung, Unternehmensberatung, Steuerrecht, Recht, Informationstechnologie, Betriebswirtschaftslehre.