Skip Ribbon Commands
Skip to main content

GRC Call for Speakers 

Start Your ProposalCall for Speakers

2021 Governance, Risk, and Control Conference

August 9–11, 2021
Denver, CO | Virtual

The IIA and ISACA need you! Are you an industry expert, thought leader, or passionate professional willing to share your experiences, insights, and knowledge with colleagues and peers?

The IIA and ISACA are joining forces again to host the 2021 Governance, Risk, and Control (GRC) Conference. This hybrid conference brings together members from two international professional organizations to present world-class education that delivers success stories, challenges, opportunities, tangible action items, and valuable takeaways to apply in a practice setting.

We are now accepting proposals for the 2021 GRC Conference educational sessions that will be held August 9–11. Attendees have the option of joining virtually or in person at the Gaylord Rockies in Denver, Colorado. We are looking for dynamic speakers on industry-leading GRC topics to provide the best possible experience for attendees. This is a great opportunity for you to give back to your profession by sharing your knowledge and insights!

The 2021 GRC Conference topics of interest include, but are not limited to:

Assess Risks

  • Agile auditing
  • Artificial Intelligence
  • Assessing Third Party Risk - For Formally Approved Vendors and End-User Acquired Systems.
  • Assessing The Privacy Policy From the Regulatory, Business Process, and Technical Controls Perspective
  • Automation
  • Connected Devices (home and work)
  • Connections to External Networks, including Services and APIs
  • Mobile Technology
  • Risk intelligence and threat management
  • Social media and digital presence
  • Voice-enabled Technology


  • Auditing data
  • Business Application Inventory Metadata
  • Data protection versus data privacy (roles/responsibilities within the organization)
  • Designing information dashboards and performance reports
  • Global data flow (e.g. Schrems II)
  • Privacy compliance
  • Surveillance and data privacy


  • Automation and AI Governance
  • Corporate Governance
  • Data Governance
  • Governance and management of Machine Learning
  • GRC integration across the organization
  • Implementing Cloud Governance
  • Information Security Governance
  • IT Governance

Maintain Regulatory Compliance

  • Developing a Compliance Strategy For Multiple Regulations
  • Managing regulatory complexity
  • Operational/Regulatory Resilience


  • Adoption of emerging technologies
  • The Blockchain Trilemma: scalability, decentralization, security
  • Digital Transformation
  • Edge Computing
  • IT Hardware Lifecycle Management
  • Micro-computers
  • Quantum computing


  • API threats
  • Auditing System Account Authorization and Reauthorization Processes
  • Cloud Securities
  • Ethical Hacking
  • IT-InfoSec Project Portfolio Management and Resource Allocation Prioritization
  • Measuring and improving your security effectiveness
  • Microsegmentation
  • Penetration testing versus vulnerability assessment
  • Secure Software Development
  • Zero Trust


  • Addressing ethical issues
  • Artificial Intelligence Ethics
  • Automation Ethics
  • Computer Ethics
  • Cybersecurity Ethics
  • Data Ethics

Incident Response

  • Anatomy of a cyber breach and response
  • Cloud incident response planning
  • Communication planning for data breaches
  • Evolution of attack vectors and threat actors
  • Forensics for IT auditors

Personnel: Development, Awareness and Risks

  • Building Insider Threat Programs
  • Business stakeholder engagement strategies
  • Creating corporate presence through personal branding
  • Cross-functional collaboration
  • Fostering a diverse workforce (skillset, experience, education)
  • IT-IS Service Delivery and Staffing Models
  • Translating geek speak to business speak

Important timeline milestones include:

Deadline for submission of proposals February 8, 2021
Abstracts reviewed by Conference Subject Matter Experts ​February 15–April 2, 2021
Program finalized Week of April 5, 2021
Notifications sent to speakers/submitters April 12–30, 2021

Submissions received after 11:59 p.m. ET on Monday, February 8, 2021, will not be considered for the 2021 GRC Conference program.

To ensure the quality of the conference program, submissions will be evaluated based on the following criteria. Speakers are required to:

  • Demonstrate a proven track record as a speaker. The proposal form will include space where we encourage you to enter any additional comments, past speaker scores, or speaking references.
  • Include up-to-date data, case studies, and resources.
  • Provide practical strategies (real-world examples), tools, and/or take-home messages for implementation in the practice setting for successful outcomes (emphasize how to, what works, and why).
  • Address an issue critical to the internal and/or information systems audit profession.
  • Define the level of interaction the session will provide for attendees, including Q&A, polling technology, case studies, and takeaway tools.
  • Refrain from sales or self-promotions of products and services.
  • Specify how many speakers or panelists will participate. Each session is limited to a maximum of four participants, including the moderator.

Service providers and/or consultants are required to provide a current practitioner with whom they will be co-presenting. It is highly encouraged for service providers to include their co-presenter’s information in their submission, as this will be taken into consideration during the review process. If this information is not already identified in the submission and the proposal is accepted, the co-presenting practitioner will need to be identified within two weeks after proposal acceptance.

Speaking at the conference is a volunteer opportunity. Compensation for speaking fees and travel is not provided unless otherwise indicated. If you will need assistance with travel, please indicate that in your submission. All speakers receive a complimentary, non-transferable full registration for the 2021 GRC Conference. Registration for pre-conference workshops is not included with the complimentary conference registration.

Access the proposal submission portal and review additional instructions for submission.

Please review the Speaker Proposal Guidelines document in advance of submitting your proposal. This document outlines all the key information you must provide to ensure your proposal meets our requirements, and it also includes a sample submission form for reference.

Do you want to know more about presentations from the 2020 GRC Conference?

View the GRC 2020 Program Guide!


If you have questions regarding the 2021 GRC Call for Speakers or have technical difficulties with the proposal submission form, please email for assistance.

The Benefits of Speaking at GRC 2021

Two international professional organizations with more than 300,000 combined constituents worldwide.

  1. The IIA is the internal audit profession's global voice, recognized authority, acknowledged leader, chief advocate, and principal educator. Generally, members work in internal auditing, risk management, governance, internal control, information technology audit, education, and security.
  2. ISACA is a leading provider of knowledge, certifications, community, advocacy, and education on information systems audit, security, governance of enterprise IT, and IT-related risk and compliance. ISACA education is recognized throughout the industry.

Speakers associated with the education events of both organizations are similarly recognized as industry leaders and subject matter experts.

Speakers who are selected to present at the conference will also receive the following benefits:

  • Complimentary registration* for the conference — a $1,550 value! This includes the opportunity to earn up to 18 CPE hours for conference participation.

*Complimentary registration is not transferable or able to be used as a credit. Registration for pre-conference workshops is not included with complimentary conference registration.