NEW YORK, NY / ACCESSWIRE / May 22, 2015 / The economy continues to display immense uncertainty with deteriorating economic indicators as higher highs in major indexes are obtained with declining volume and with great caution, experiencing insignificant breakouts that usually do not accompany healthy markets. These factors have forced the Fed to move the goal post once again for its decision to raise rates, as announced by the FOMC Minutes on Wednesday. This uncertainty has confused both analysts and investors.

The quandary comes as no real surprise to us; nor should it surprise our newsletter members. We had anticipated this delay and in fact told our readers that not only would there not be a rising of rates, but there will be a new round of quantitative easing in the near future. In our most recent coverage of the economy we emphasized the following: “we continue to hold a negative outlook on equity markets as overvalued conditions present limited upside opportunity with significant downside risk, making long-term equity holdings a very risk bet.” We stand by that sentiment and can’t help but suggest that there exists significant risk for downside volatility.

To receive Free Market Forecasts along with NASDAQ/NYSE Trade Alerts CLICK HERE.

On May 6th, 2015 our NASDAQ/NYSE Investor Service alerted MagneGas Corporation (NASDAQ: MNGA) (VIEW ALERT HERE) to our readers resulting in a one day maximum gain opportunity of 27% from an alert price of $0.74 to a day high of $0.94. Realizable gains attainable from the alert that day to the majority of our members was 16%. After the initial alert we stated the following: “MNGA closed Wednesday’s trading session at 0.82, above its open, at a level that could be an area of support for a potential next wave of gains. We believe MNGA could possibly provide investors with further upside opportunity.“ Yesterday, MNGA reached a market valuation of $1.58, up more than 113% from our initial alert price. Despite multiple opportunities to realize these gains (as many of our readers were able to) our gain tracker on our newsletter only accounts for 16% gains. The reason for this is because at the time of our alert the rally exhausted the full gain potential indicated in the due diligence. We are continuing monitoring MNGA for future entry opportunities and will alert our free members at that time.

To Receive Alerts Like MNGA Before They Rally CLICK HERE.

Prima Biomed Ltd. (PBMD) has showcased its momentum in recent sessions with a recent pullback that has only served to highlight the tremendous upside opportunity inherent in the company. PBMD has reached as high as 6.48 on Wednesday which means that current pricing of around 3.05 after yesterday’s massive slide of more than 48% presents investors with potentially a great opportunity for a swing trade for upside opportunity. The company recently released positive data from its Phase II CAN-003 ovarian cancer clinical trial which sparked the initial momentum and rally. This sent the stock soaring 268%, pushing valuation to more than $6. We are continuously monitoring PBMD for our free members and will alert PBMD once an entry opportunity is presented that pinpoints increased risk-adjusted opportunity for gains.

Is PBMD Going Higher? To Receive Updates On PBMD CLICK HERE.

RADA Electronic Industries Ltd. (RADA) continues to show explosive daily volatility with recent trading pushing daily volume well over 138,000 shares, as of Thursday. This could be the start of the great run by RADA which has seen strong consolidation below 3.00 since the end of March. The stock put on a spectacular show on March 23rd, opening at 1.71 and rallying to a day high of 3.20 for a one-day gain opportunity of 87%. This was one of the biggest one-day rallies for RADA and the play has been building up strong upward momentum since from what could be a level of strong support. RADA was alerted to our free members on Friday at 9:35 AM ET.

To Receive Alerts Like RADA Before They Rally CLICK HERE.

AVEO Pharmaceuticals, Inc. (AVEO) recently delivered 90% maximum gain opportunity after opening at 1.84 and subsequently rallying to a day high of 3.50. This was a breakout performance that had surpassed the established 12-month ceiling of 2.17. The strong trading day also created new milestones for other technicals, including a 94 million share volume breakout. AVEO’s 90% gain opportunity came on May 21st, two full days after the company announced the final results from its TIVO-1 extension study involving patients with advanced renal cell carcinoma. The positive results have resulted in a progression to the next step in the company’s Phase 3 TIVO-1 first-line RCC study which will be presented at the 2015 American Society of Clinical Oncology (ASCO) Annual Meeting.

As always, we encourage readers to keep abreast of our updates. AVEO’s 90% gain opportunity could experience a near-term consolidation. We are closely following AVEO and will alert our free members once the company presents a potential entry opportunity to witness risk-adjusted gains.

What’s Next For AVEO? To Receive Updates OnAVEO CLICK HERE.

CLICK HERE To Learn More About Our NASDAQ/NYSE Alert Service

About UltimateStockAlerts.com

UltimateStockAlerts.com covers NASDAQ and NYSE listed companies that are overlooked and undervalued by Wall Street. Investors can choose to receive trading strategies via text message (SMS) or email. To receive free text message alerts, on your phone, compose a new text message to the number 555-888 with the message ULTIMATE. For more information visit www.UltimateStockAlerts.com.

Disclosure: Information, opinions and analysis contained herein are based on sources believed to be reliable, but no representation, expressed or implied, is made as to its accuracy, completeness or correctness. The opinions contained herein reflect our current judgment and are subject to change without notice. We accept no liability for any losses arising from an investor’s reliance on or use of this report. This report is for information purposes only, and is neither a solicitation to buy nor an offer to sell securities. UltimateStockAlerts.com has not been compensated nor expects to receive any compensation for distribution of our opinions and publicly available information for PBMD, RADA, nor AVEO as of 05/22/2015. Our holding company has been compensated forty-five thousand dollars via bankwire for distribution of our opinions and publicly available information for MNGA by ACS Financial Consulting. Certain information included herein is forward-looking within the meaning of the Private Securities Litigation Reform Act of 1995, including, but not limited to, statements concerning manufacturing, marketing, growth, and expansion. Such forward-looking information involves important risks and uncertainties that could affect actual results and cause them to differ materially from expectations expressed herein. Please visit www.UltimateStockAlerts.com website, for complete risks and disclosures.

SOURCE: UltimateStockAlerts.com

ReleaseID: 429165

ST. PETERSBURG, FL / ACCESSWIRE / May 22, 2015 / Sylios Corp (PINKSHEETS: UNGS), a holding corporation with operations engaged in the exploration and development of oil and natural gas properties, real estate development, equity investments and the development of products utilized for the medical and recreational marijuana industry announced today that its Board of Directors has approved an increase to its January 2011 Share Repurchase Plan.

On May 21, 2015, the Board of Directors of the Company voted, at the request of Management, and approved an increase and extension to the January 11, 2011 Share Repurchase Plan. The Company was previously authorized to repurchase up to Two Hundred Fifty Thousand No/100 Dollars ($250,000) of its common stock in the open market or in privately negotiated transactions. The Company is now authorized to repurchase up to Five Hundred Thousand and NO/100 Dollars ($500,000) for a period of two years from the date of the May 21, 2015 resolution. The repurchase program will be funded by the Company’s available cash and may be commenced or suspended at any time or from time to time. The plan will continue as long as periodic management reviews determine it to be fiscally feasible and may be discontinued at any time.

Certain covenants within the Company’s previously issued Convertible Notes limited the amount and timing of shares available to be purchased under the Share Repurchase Plan. Now that these Convertible Notes have been retired, the Company’s options for repurchases have been expanded.

About Sylios Corp

Sylios Corp, based in St. Petersburg, FL, is a holding corporation with operations engaged in the exploration and development of oil and natural gas properties, real estate development, equity investments and the development of products utilized for the medical and recreational marijuana industry. More information can be found at the Company’s corporate website at www.sylios.com.

Safe Harbor Statement

Matters discussed in this press release contain forward-looking statements within the meaning of the Private Securities Litigation Reform Act of 1995. When used in this press release, the words “anticipate,” “believe,” “estimate,” “may,” “intend,” “expect” and similar expressions identify such forward-looking statements. Actual results, performance or achievements could differ materially from those contemplated, expressed or implied by the forward-looking statements contained herein, and while expected, there is no guarantee that we will attain the aforementioned anticipated developmental milestones. These forward-looking statements are based largely on the expectations of the Company and are subject to a number of risks and uncertainties. These include, but are not limited to, risks and uncertainties associated with: the impact of economic, competitive and other factors affecting the Company and its operations, markets, product, and distributor performance, the impact on the national and local economies resulting from terrorist actions, and U.S. actions subsequently; and other factors detailed in reports filed by the Company. Additional risks and uncertainties are set forth in the Company’s Unaudited Annual Report for the year ended December 31, 2014, which can be found on the OTC Markets website, www.otcmarkets.com.

Contact:

Sylios Corp
(727) 821-6200
info@sylios.com

SOURCE: Sylios Corp

ReleaseID: 429167

WASHINGTON, DC / ACCESSWIRE / May 22, 2015 / The International Association of Risk and Compliance Professionals (IARCP) today announced a major revision of the Certified Information Systems Risk and Compliance Professional (CISRCP) certification program.

“The CISRCP update is designed to keep pace with evolving job roles and new requirements for risk and compliance management after the financial crisis and the increasing shortage of cyber security, IT security and information security experts,” said George Lekatis, president of the IARCP.

George continued: “According to President Obama, economic prosperity, national security, and individual liberties depend on our commitment to securing cyberspace and maintaining an open, interoperable, secure, and reliable Internet. Critical infrastructure continues to be at risk from threats in cyberspace, economies are harmed by the theft of intellectual property and organizations face challenges to protect their infrastructure. Janet Napolitano, the head of Homeland Security has also said that we need people who are experienced in intelligence as it relates to the cyber-universe.”

The revised CISRCP program covers international standards, principles and best practices in IT risk management and IT security, including the critical infrastructure protection principles in the USA and the EU, the Executive Order 13587, the Executive Order 13636, the Presidential Policy Directive (PPD) 21 – Critical Infrastructure Security and Resilience, the NIST Cybersecurity Framework, the Cybersecurity Strategy of the European Union, the Directive 2008/114/EC on the identification and designation of European critical infrastructures and the assessment of the need to improve their protection and much more.

Objectives:

The seminar has been designed to provide with the knowledge and skills needed to understand international standards and best practices in IT risk management and information security. Also, to provide with the knowledge and skills needed to pass the CISRCP exam and become a Certified Information Systems Risk and Compliance Professional (CISRCP).

Target Audience:

The CISRCP certification program is beneficial to:

– IT managers, employees, auditors and consultants
– Information security managers, employees, auditors and consultants
– Risk and compliance managers, employees, auditors and consultants
– Network, systems and security administrators
– Incident handlers and incident response professionals
– Threat analysts
– Vulnerability assessment personnel
– IT and information security operations engineers and analysts
– IT and information security vendors, suppliers and service providers

This course is intended for employers demanding qualified IT and Information Security professionals that meet the fit and proper requirements in risk and compliance management.

Course Synopsis:

Part 1 – Information Technology and Information Security

Information Technology: The engine that drives the economy
Information security risk
Managing information security risk
The dark side of the threat landscape
Types of threat information: Strategic (S), Tactical (T), Operational (O)
Threat intelligence is becoming more important
Malware (worms/trojans and Potentially Unwanted Programs – PUPs)
Web-based attacks
Web application attacks / Injection attacks
Botnets
Denial of Service
Spam
Phishing
Exploit Kits
Data Breaches
Insider threat
Information leakage
Identity theft/fraud
Cyber espionage
Ransomware, Rogueware, Scareware
Strategic web compromise (watering hole attack)
Cyber-opportunity makes the thief

Overview of Threat Agents
Cybercriminals
Online Social Hackers
Hacktivists
Nation States
Corporations
Employees (current, ex, internal and external)
Cyber Fighters
Cyber Terrorists
Script Kiddies

Emerging Threat Landscape (ETL)
Explaining Information Security to employees and end users
Information Security Awareness

Part 2 – Critical infrastructure protection: International standards, principles and best practices

In the USA
Introduction
Executive Order 13587 – Structural Reforms to Improve the Security of Classified Networks and the Responsible Sharing and Safeguarding of Classified Information
Executive Order 13636 – Improving Critical Infrastructure Cybersecurity
Presidential Policy Directive (PPD) 21 – Critical Infrastructure Security and Resilience
NIST Cybersecurity Framework

In the European Union
EU Cybersecurity plan to protect open internet and online freedom and opportunity
European Cybercrime Centre (EC3)
Cybersecurity Strategy of the European Union
1. Achieving cyber resilience
2. Drastically reducing cybercrime
3. Developing cyberdefence policy and capabilities related to the Common Security and Defense Policy (CSDP)
4. Develop the industrial and technological resources for cybersecurity
5. Establish a coherent international cyberspace policy for the European Union and promote core EU values
Directive 2008/114/EC of 8 December 2008 on the identification and designation of European critical infrastructures and the assessment of the need to improve their protection

Part 3 – Risk Management and Compliance

Introduction
Regulatory Compliance and Risk Management
Definitions, roles and responsibilities
The role of the board of directors, the supervisors, the internal and external auditors
The new international landscape and the interaction among laws, regulations and standards
The difference between a best practice and a regulatory obligation
Basel Committee, corporate governance principles for banks (2014)
Financial Stability Board, Thematic Review on Risk Governance
OECD Principles of Corporate Governance
Benefits of an enterprise wide compliance program
Compliance culture: Why it is important, and how to communicate the obligations
Policies, Workplace Ethics, Risk and Compliance
Policies, procedures and the ethical code of conduct
Privacy and information security
Handling confidential information
Conflicts of interest
Use of organizational property
Fair dealings with customers, vendors and competitors
Reporting ethical concerns
The definition of Governance, Risk and Compliance
The need for Internal Controls
Understand how to identify, mitigate and control risks effectively
Approaches to risk assessment
Qualitative, quantitative approach
Integrating risk management into corporate governance and compliance
IT, Information Security, business risk and compliance
Case Study: IW-130, Security Measures of Information Warfare
Australia/New Zealand Standard 4360
Risk Management Guide for Information Technology Systems, NIST Special Publication 800-30
Threats and Vulnerabilities
Outsourcing and Risk Management

Part 4 – The Frameworks: COSO, COSO ERM, COBIT

Internal Controls – COSO, The Internal Control Integrated Framework by the COSO committee
Using the COSO framework effectively
The Control Environment
Risk Assessment
Control Activities
Information and Communication
Monitoring
Effectiveness and Efficiency of Operations
Reliability of Financial Reporting
Compliance with applicable laws and regulations
IT Controls
Program Change
Deterrent, Preventive, Detective, Corrective Controls
Recovery, Compensating, Monitoring and Disclosure Controls
Layers of overlapping controls
COSO Enterprise Risk Management (ERM) Framework
Is COSO ERM necessary for compliance?
COSO and COSO ERM
Internal Environment
Objective Setting
Event Identification
Risk Assessment
Risk Response
Control Activities
Information and Communication
Monitoring
The two cubes
Objectives: Strategic, Operations, Reporting, Compliance
ERM – Application Techniques
Core team preparedness
Implementation plan
Likelihood Risk Ranking
Impact Risk Ranking
COSO 2013 Internal Control Integrated Framework
What is different now?
Components and Principles

Significant changes to the original framework

COBIT – the framework that focuses on IT
Is COBIT needed for compliance?
COSO or COBIT?
Corporate governance, financial reporting
COBIT, Executive Summary
Management Guidelines
The Framework
The 34 high-level control objectives
What to do with the 318 specific control objectives
COBIT Cube
Maturity Models
Critical Success Factors (CSFs)
Key Goal Indicators (KGIs)
Key Performance Indicators (KPIs)
How to use COBIT for compliance
The alignment of frameworks
COSO and COBIT
COSO ERM and COBIT
ITIL and COBIT
ISO/IEC 17799:2000 and COBIT
ISO/IEC 15408 and COBIT
Software and Spreadsheets
Is software necessary for risk and compliance?
Is software needed?
When and why
How large is your organization?
Is it geographically dispersed?
How many processes will you document?
Are there enough persons for that?
Selection process
Spreadsheets
Certain spreadsheets must be considered applications
Development Lifecycle Controls
Access Control (Create, Read, Update, Delete)
Integrity Controls
Change Control
Version Control
Documentation Controls
Continuity Controls
Segregation of Duties Controls
Spreadsheets – Errors
Spreadsheets and material weaknesses
Third-party service providers and vendors|
Redefining outsourcing
Key risks of outsourcing
What is needed from vendors and service providers
SAS 70
Type I, II reports
Advantages of SAS 70 Type II
Disadvantages of SAS 70 Type II

Part 5 – NIST Special Publication 800-39

Components of risk management
Multitiered risk management
Tier 1 – Organization view
Tier 2 – Mission / business process view
Tier 3 – Information systems view
Trust and Trustworthiness
Organizational Culture
Relationship among key risk concepts
Framing risk
Assessing risk
Responding to risk
Monitoring risk
Glossary
Governance models
Trust models

Part 6 – Assessing security and privacy controls

Security and Privacy Control Assessment
Assessments within the System Development Life Cycle
Strategy for conducting control assessments
Building an effective assurance case
Assessment procedures
Conducting effective security and privacy control assessments
Preparing for security and privacy control assessments
Developing security and privacy assessment plans
Determine which security or privacy controls are to be assessed
Tailor assessment procedures
Assessment method and object-related considerations
Depth and coverage-related considerations
Common control-related considerations
Reuse of assessment evidence-related considerations
Changing conditions associated with security controls and privacy controls
Amount of time that has transpired since previous assessments
Degree of independence of previous assessments
External information system-related considerations
Optimize selected assessment procedures for maximum efficiency
Finalize assessment plan and obtain approval to execute plan
Analysing assessment report results

Part 7 – CERTs (Computer Emergency Response Teams) and Security Incident Response

Introduction
Incident Handling Process
Incident report
Registration
Triage
Incident verification
Incident initial classification
Incident assignment
Incident resolution
Data analysis
Resolution research
Actions proposed
Action performed
Eradication and recovery
Incident closure
Final classification
Archiving
Post-analysis

Processing actionable information
Collection
Sources of information: internal vs. external
Level of automation
Recurrence
Consumption model
Granularity
Evaluation of data sources
Collection
Preparation
Parsing
Normalization
Aggregation
Enrichment
Automation
Storage
Retention time
Scale
Dataset management
Technologies
Triage and results
Metrics
Distribution

Part 8 – The Sarbanes Oxley Act: New international standards

The Need
The Sarbanes-Oxley Act of 2002: Key Sections
SEC, EDGAR, PCAOB, SAG
The Act and its interpretation by SEC and PCAOB
PCAOB Auditing Standards: What we need to know
Management’s Testing
Management’s Documentation
Reports used to Validate SOX Compliant IT Infrastructure
Documentation Issues
Sections 302, 404, 906: The three certifications
Sections 302, 404, 906: Examples and case studies
Management’s Responsibilities
Committees and Teams
Project Team
Steering Committee
Disclosure Committee
Certifying Officers
Audit Committee
Report to the Board of Directors
Control Deficiency
Deficiency in Design
Deficiency in Operation
Significant Deficiency
Material Weakness
Is it a Deficiency, or a Material Weakness?
Reporting Weaknesses and Deficiencies
Examples
Case Studies
Public Disclosure Requirements
Real Time Disclosures on a rapid and current basis?
Whistleblower protection
Rulemaking process
Companies Affected
International companies
Foreign Private Issuers (FPIs)
American Depository Receipts (ADRs)
Employees Affected
Effective Dates
IT and Information Security Control Objectives and Control Framework

Part 9 and 10 – Basel II and the Basel III amendment

Realigning the regulation with the economic realities of the global banking markets
New capital adequacy framework replaces the 1988 Accord
Improving risk and asset management to avoid financial disasters
“Sufficient assets” to offset risks
The technical challenges for both banks and supervisors
How much capital is necessary to serve as a sufficient buffer?
The three-pillar regulatory structure
Purposes of Basel
Pillar 1: Minimum capital requirements
Credit Risk – 3 approaches
The standardized approach to credit risk
Claims on sovereigns
Claims on banks
Claims on corporates
The internal ratings-based (IRB) approaches to credit risk
Some definitions:
PD – The probability of default,
LGD – The loss given default,
EAD – Exposure at default,
5 classes of assets
Pillar 2: Supervisory review
Key principles
Aspects and issues of the supervisory review process
Pillar 3: Market discipline
Disclosure requirements
Qualitative and Quantitative disclosures
Guiding principles
Employees Affected
Effective Dates
Operational Risk
Legal risk
Information Technology operational risk
Operational, operations and operating risk
The evolving importance of operational risk
Quantification of operational risk
Loss categories and business lines
Operational risk measurement methodologies
Identification of operational risk
Operational Risk Approaches
Basic Indicator Approach (BIA)
Standardized Approach (SA)
Alternative Standardized Approach (ASA)
Advanced Measurement Approaches (AMA)
Internal Measurement Approach (IMA)
Loss Distribution (LD)
Standard Normal Distribution
“Fat Tails” in the normal distribution
Expected loss (EL), Unexpected Loss (UL)
Value-at Risk (VaR)
Calculating Value-at Risk
Stress Testing
Stress testing and Basel
(AMA) Advantages / Disadvantages
Operational Risk Measurement Issues
The game theory
The prisoner’s dilemma – and the connection with operational risk management
Operational risk management
Operational Risk Management Office
Key functions of Operational Risk Management Office
Key functions of Operational Risk Managers
Key functions of Department Heads
Internal and external audit
Operational risk sound practices
Operational risk mitigation
Insurance to mitigate operational risk
IT and Information Security in the Basel framework and projects
Basel II and other regulations
Capital Requirements Directive (CRD)
Aligning Basel II operational risk and Sarbanes-Oxley 404 projects
Common elements and differences of compliance projects
New standards
Disclosure issues
Multinational companies and compliance challenges
Basel III: The New Risk Management and Corporate Governance Standards
Introduction to the Basel III Amendments
Sound corporate governance principles
Financial Stress Testing
Use of stress testing and integration in risk governance

Part 11 – Designing and implementing an enterprise wide Risk and Compliance Program

Designing an internal compliance system
Compliance programs that withstand scrutiny
How to optimize organizational structure for compliance
Documentation
Testing
Training
Ongoing compliance with laws and regulations
Compliance Monitoring
The company and other stakeholders
Managing change in regulations
International and national regulatory requirements
Regulatory compliance in Europe
Regulatory compliance in the USA
What is different
The GCC countries
The Caribbean
The Pacific Rim
Common elements and differences of compliance projects
New standards
Disclosure issues
Multinational companies and compliance challenges

Part 12 – Reference: Threat Landscape and Good Practice Guide for Smart Home and Converged Media

Smart home infrastructure including converged media and television
Valuable assets in smart homes and
converged media
Threats
Smart home assets exposure to cyber threats
Threat agents

To learn more about the CISRCP program you may visit:

http://www.risk-compliance-association.com/Certified_Risk_Compliance_Training.htm
http://www.risk-compliance-association.com/CISRCP_Distance_Learning_and_Certification.htm

Media Contact:

George Lekatis
President of the IARCP
General Manager, Compliance LLC
1200 G Street NW Suite 800
Washington, DC 20005, USA
Tel: (202) 449-9750
Email: lekatis@risk-compliance-association.com
Web: www.risk-compliance-association.com
HQ: 1220 N. Market Street Suite 804
Wilmington, DE 19801, USA
Tel: (302) 342-8828

About The International Association of Risk and Compliance Professionals:
The International Association of Risk and Compliance Professionals (IARCP) offers standard, premium and lifetime membership, weekly updates, training, certification, Authorized Certified Trainer (ACT) programs, advocacy and other services.

SOURCE: The International Association of Risk and Compliance Professionals

ReleaseID: 429162