Events - Event View

ACFE Washington Metro Chapter & ISACA GWDC

IT Fraud (3 NASBA CPEs)

Date: June 11, 2026 (Thursday; 2:00 to 5:00 PM EDT)

Location: 333 John Carlyle Street, Alexandria, VA 22314 
• Enter off John Carlyle Street and check in at the security desk. Conference Room is straight back from the security desk. 
• Parking is the responsibility of the attendees. Below are parking options, but attendees can park anywhere there is public parking. 
     - Colonial Parking: 551 John Carlyle St, Alexandria, VA 22314
     - SP+ Parking: 1925 Ballenger Ave, Alexandria, VA 22314

Cost:
- $20 for ACFE DC and ISACA GWDC Members (Chapter membership is separate from ACFE Global membership)
- $100 for non-ACFE DC and non-ISACA GWDC members.

Agenda:

2:00 - 3:00 PM: AI-Powered Fraud and How to Fight Back with Biometrics 
3:00 - 4:00 PM: Governance, Resilience, and the New Fraud Landscape  
4:00 - 5:00 PM: Fraud Controls as Models

See www.acfedc.org/Q2HH_2026 for post-event happy hour.

AI-Powered Fraud and How to Fight Back with Biometrics 

- Presenter: Simon Marchand, CFE
Fraudsters run a business. They’re nimble, agile, and creative, and their fraud toolkit never ceases to expand. From stolen credentials to synthetic identities, location and IP spoofing, VPNs built of thousands of infected devices, deepfakes and GenAI-powered tools, they have hundreds of ways to circumvent traditional fraud prevention strategies. Fraud-as-a-service platforms, coaching and mentoring services, comprehensive guides and Agentic AI make it easier than ever for everyone to start attacking various organizations, at scale. Many of these methods don’t require technological knowledge, are now more accessible than ever, shared in forums or messaging apps, facilitating fraud for non-professionals, and making it ever-so-difficult for fraud strategists to prevent many new attack types. With these rapid shifts in technology, it is essential fraud professionals understand the most recent technology available to them. 
Learning Objectives:
- Identify emerging technologies leveraged by fraud perpetrators and explain the associated risks posed by generative AI and deepfake capabilities to organizational operations.
- Describe how large organizations currently implement biometric technologies within their security and authentication frameworks.
- Explain how biometric solutions can be applied to prevent fraud, support investigative activities, and enhance collaboration with law enforcement agencies.

Governance, Resilience, and the New Fraud Landscape  
- Presenter: Simon Burton (CrossCountry Consulting) and Zach Walker (CrossCountry Consulting)
Cybersecurity is no longer solely an IT concern, it is an organizational resilience issue that demands attention at every level, from the boardroom to operations. Yet many organizations continue to approach cyber risk through a narrow, controls-first lens, leaving critical gaps in oversight, escalation, and decision-making when it matters most. As AI accelerates the speed and sophistication of cyber-enabled fraud, the stakes for getting this right have never been higher.
This session moves beyond technical checklists to examine what it truly means for an organization to be cyber resilient. Drawing on the IIA's newly effective Cybersecurity Topical Requirement as a framework anchor, presenters explore how governance, risk management, and controls must work together, not in isolation, to protect critical operations, enable timely responses, and support recovery from disruption. Particular attention is given to how gaps in governance and risk escalation create the conditions in which fraud thrives.
Learning Objectives:
- Evaluate cybersecurity governance structures to determine whether board oversight, accountability, and reporting mechanisms are sufficient to support informed decision-making and timely risk escalation, including risks arising from AI-enabled fraud.
- Assess an organization's cyber risk management processes to identify whether significant threats are appropriately prioritized, escalated, and linked to business impact, with consideration for how cyber vulnerabilities can serve as entry points for fraudulent activity.
- Analyze the relationship between preventive, detective, and recovery controls to form a resilience-centered conclusion about an organization's ability to withstand and recover from a cyber event or cyber-facilitated fraud scheme.

Fraud Controls as Models
- Presenter: Bea Young (Crowe) and Neha Rajput (Crowe)
Organizations increasingly rely on fraud detection and prevention controls that function as both analytical models and operational tools, making it essential to understand when model-risk principles apply. This session clarifies the regulatory definitions that distinguish models from tools and explains how those distinctions influence validation expectations across financial and non-financial environments. Participants will learn how to adapt banking model-validation standards into practical, right-sized approaches suitable for organizations without formal regulatory oversight. The session concludes by demonstrating how a risk-based validation strategy can confirm whether fraud controls are designed and operating effectively.
Learning Objectives:
- Differentiate between fraud controls that qualify as models versus tools by applying regulatory definitions and identifying characteristics that trigger validation requirements.
- Translate model-validation expectations from banking regulatory guidance into practical validation approaches appropriate for organizations without formal regulatory mandates.
- Design risk-based testing procedures to evaluate whether fraud detection and prevention controls are operating effectively across various industries and oversight environments.

 

Field of Study: TBD

Prerequisites:  None

Advanced Preparation:  None

Program Level:  Basic

Delivery Method:  Group Live

Who Should Attend?
Fraud, financial, risk management and IT professionals including accountants, attorneys, auditors, and fraud examiners.

NASBA Group Live CPEs:
- Attendees must be registered prior to the event. Attendees not registered may not be eligible for NASBA CPEs.
- Attendees must sign the sign-in sheet when distributed after the session.  Attendees that do not sign may not be eligible for NASBA CPEs.
- Thank you for your understanding and participation so ACFE DC community members can continue to receive NASBA-eligible CPEs on ACFE DC group internet-based training.


Cancelation Policy:  
Full refunds are available anytime when requested prior to 3 days of the event. No refunds will be made for “No Shows” (a “No Show” is a person who registers for a program but who does not cancel registration or attend the program).  A registered person may elect to transfer the registration to another person at any time. Cancellations can be made only by email at chapter@acfedc.org.  Payments can be electronically made any time prior to the event starts. Unfortunately, we are unable to accommodate "pay at the door" or payment by checks or cash.

The Association of Certified Fraud Examiners (ACFE) is the world's largest anti-fraud organization with nearly 85,000 members with the mission of reducing the incidence of fraud and white-collar crime. The ACFE Washington Metropolitan Chapter aims to promote fraud detection and deterrence through educational training programs in the National Capital Region.
For additional information regarding Association of Certified Fraud Examiners (ACFE), please visit http://www.acfe.com.

The Washington Metropolitan Association of Certified Fraud Examiners is registered with the National Association of State Boards of Accountancy (NASBA) as a sponsor of continuing professional education on the National Registry of CPE Sponsors. State boards of accountancy have final authority on the acceptance of individual courses for CPE credit. Complaints regarding registered sponsors may be submitted to the National Registry of CPE Sponsors through its website: www.nasbaregistry.org.