 |
Corporate Compliance Seminars - Left Menu, General Pages
|
Cybersecurity Risk Program Training Academy- Risk Management Strategies
New cybersecurity risk regulations for all organizations are approaching faster than you might think.
"Computers, software, programming and algorithms are all parts of a cybersecurity risk program, but it is the interaction with the "humans" that makes all the difference in world."
An effective cybersecurity risk program requires an organization to have everything from program policies to incident response plans to specific breach notification procedures. Banking and insurance organizations also have to certify compliance to their regulators. It is important to learn how to approach cybersecurity risks on a holistic basis and what you can do now to start managing cyber risk before a risk event occurs.
This training program focuses on describing the effective components of a modern cybersecurity risk management program. The attendees will be prepared to start the evaluation of an existing program. They will then be able to discuss with senior management, the audit committee, and the board of directors how to proceed in improving cybersecurity risk management. Five main components of an effective program are reviewed: data, control implementation, verification, breach preparedness and risk management.
This comprehensive training course is for anyone who wants to have a strong base of knowledge and understanding of the essentials of cybersecurity risk management. We cover an overview of ten principles that need to be considered within a Cybersecurity Risk Management Program in a short video available on YouTube. Here is a link to it:Cybersecurity Risk Management Principles
This timely, two day CPE training seminar is designed for the project director, project leader and individuals who have to create effective cybersecurity program and the related documents.
Follow the below links for further detail information:
. Seminar Highlights
. Learning Objectives
. Key Issues on the Agenda
Each attendee will receive 16 CPE Hours. A certificate of completion will be provided.
The retail cost of this CPE seminar is $1,195.00 per attendee.
To reserve your space, click on the "SIGN-UP NOW!" link in the right margin, complete the registration form, and use the corresponding "Submit Registration Form and Move to Payment Options Page" button for filing the registration and moving to the payment page.
Testimonials:
Course Duration: 2 Days; CPE Credits: 16; Knowledge Level: Basic; Field of Study: Information Technology, Risk Assessment, Audit; Delivery Format: Group-Live Presentation; Prerequisites: None; Advance Preparation: None.
Upcoming Cybersecurity Risk Program Training Academies:
| City |
Date |
Timing |
|
|
|
Charleston, SC |
Thursday-Friday, April 4-5, 2019 |
Monday & Tuesday 9:00a to 4:45p |
... |
Signup Now |
Regus Office Suites, 170 Meeting Street, 1st, 2nd and 3rd Floors, Charleston, SC 29401 |
Bethesda, MD |
Monday-Tuesday, April 8-9, 2019 |
Monday & Tuesday 9:00a to 4:45p |
| ... |
Signup Now |
Regus Office Suites - Bethesda Metro, 3 Bethesda Metro Center, Suite 700, Bethesda, MD 20814 |
Houston - Downtown, TX |
Monday-Tuesday, April 8-9, 2019 |
Monday & Tuesday 9:00a to 4:45p |
... |
Signup Now |
Regus Office Facility - Pennzoil Place, 700 Milam, Suite 1300, Houston, Texas 77002 |
Portland, OR |
Monday-Tuesday, April 8-9, 2019 |
Monday & Tuesday 9:00a to 4:45p |
| ... |
Signup Now |
Portland - Regus Office Facility, 1001 SW 5th Avenue, Suite 1100, Portland, OR 97204 |
Walnut Creek, CA |
Monday-Tuesday, April 8-9, 2019 |
Monday & Tuesday 9:00a to 4:45p |
... |
Signup Now |
Regus Office Suites, 2121 North California Boulevard, Suite 290, Walnut Creek, CA 94596 |
Cincinnati, OH |
Monday-Tuesday, April 22-23, 2019 |
Monday & Tuesday 9:00a to 4:45p |
| ... |
Signup Now |
Regus Office Suites, 201 East Fifth Street, 19th Floor, Cincinnati, Ohio 45202 |
Boston, MA |
Monday-Tuesday, April 29-30, 2019 |
Monday & Tuesday 9:00a to 4:45p |
... |
Signup Now |
Spaces Newbury Street, 359 Newbury Street, 3rd/4th/5th Floor, Boston, MA 02115 |
San Antonio, TX |
Monday-Tuesday, April 29-30, 2019 |
Monday & Tuesday 9:00a to 4:45p |
| ... |
Signup Now |
Regus Office Facility, 300 Convent Street, Suite 1330, San Antonio, Texas 78205 |
Washington, DC |
Monday-Tuesday, April 29-30, 2019 |
Monday-Tuesday - 9:00a to 4:45p |
... |
Signup Now |
Regus Office Suites, 2200 Pennsylvania Avenue, N.W. 4th Floor East, Washington, DC 20037-1701 |
Los Angeles - Woodland Hills, CA |
Monday-Tuesday, April 29-30, 2019 |
Monday & Tuesday 9:00a to 4:45p |
... |
Signup Now |
Woodland Hills, CA - Regus - Trillium Towers Center, 6320 Canoga Avenue, 15th Floor, Woodland Hills, CA 91367 |
Irving, TX |
Monday-Tuesday, May 6-7, 2019 |
Monday & Tuesday 9:00a to 4:45p |
| ... |
Signup Now |
Regus Office Suites - Las Colinas - The Urban Towers 222 West Las Colinas Boulevard, Suite 1650, Irving, Texas 75039 |
Radnor - King of Prussia, PA |
Monday-Tuesday, May 6-7, 2019 |
Monday & Tuesday 9:00a to 4:45p |
... |
Signup Now |
King of Prussia - Regus Office Suites, 201 King of Prussia Road, Suite 650, Radnor, PA 19097 |
Seattle, WA |
Monday-Tuesday, May 6-7, 2019 |
Monday & Tuesday 9:00a to 4:45p |
| ... |
Signup Now |
Regus Office Facility, Columbia Tower, 701 Fifth Avenue, 42nd Floor, Seattle, Washington 98104-5119 |
Chicago, IL |
Monday-Tuesday, May 13-14, 2019 |
Monday & Tuesday 9:00a to 4:45p |
... |
Signup Now |
Regus Office Suites, 30 S. Wacker Drive, 22nd Floor, Chicago Illinois 60606 |
Austin, TX |
Monday-Tuesday, May 28-29, 2019 |
Tuesday-Wednesday 9:00a to 4:45p |
| ... |
Signup Now |
Regus Office Suites, 111 Congress Avenue, Suite 400, Austin, Texas 78701 |
Orange, CA |
Monday-Tuesday, June 3-4, 2019 |
Monday & Tuesday 9:00a to 4:45p |
... |
Signup Now |
Regus Office Facility - 1100 Town & Country Road, Suite 1250, Orange, CA 92868 |
Richmond, VA |
Monday-Tuesday, June 3-4, 2019 |
Monday & Tuesday 9:00a to 4:45p |
| ... |
Signup Now |
Regus Office Facility, 7400 Beaufont Springs Drive, Suite 300, Richmond, Virginia 23225 |
Los Angeles - Woodland Hills, CA |
Monday-Tuesday, June 3-4, 2019 |
Monday & Tuesday 9:00a to 4:45p |
... |
Signup Now |
Woodland Hills, CA - Regus - Trillium Towers Center, 6320 Canoga Avenue, 15th Floor, Woodland Hills, CA 91367 |
Indianapolis, IN |
Monday-Tuesday, June 10-11, 2019 |
Monday & Tuesday 9:00a to 4:45p |
... |
Signup Now |
Regus/ HQ Office Center, 201 North Illinois Street, Suite 1600 South Tower, Indianapolis, IN 46204 |
Denver - Downtown, CO |
Monday-Tuesday, June 10-11, 2019 |
Monday & Tuesday 9:00a to 4:45p |
| ... |
Signup Now |
Denver - Downtown - Spaces: 2301 Blake Street, Denver, Colorado, 80205 |
Atlanta - Buckhead, GA |
Monday-Tuesday, June 17-18, 2019 |
Monday & Tuesday 9:00a to 4:45p |
... |
Signup Now |
Regus Office Facility, 3340 Peachtree Rd, Suite 1800, Atlanta, GA 30326 |
Denver - Downtown, CO |
Monday-Tuesday, July 29-30, 2019 |
Monday & Tuesday 9:00a to 4:45p |
| ... |
Signup Now |
Denver - Downtown - Spaces: 2301 Blake Street, Denver, Colorado, 80205 |
|
|
|
| |
|
|
Refer to our Seminar Cities Index for a list of our seminar locations. The individual city
pages provide a listing of topics being presented. Our Seminar Cities by Week provides a
guide to the locations during a calendar week.
top of page
Seminar Highlights
. What are the goals of a cybersecurity risk program?
. What is the definition of "cybersecurity event".
. What is contained in an "Information Security Program".
. What is nonpublic information under an information security program?
. What is "publicly available information"?
. How do you approach creating a cybersecurity risk assessment?
. What does continuous monitoring mean?
. What Board of Director's oversight is required?
top of page
Learning Objectives
- Attendees will see how cybersecurity risk management is an evolving art.
- Attendees will understand risk assessment from the cybersecurity viewpoint.
- Attendees will have examples of cybersecurity risk management best practices.
- Attendees will know the components in an effective information security program.
- Attendees will have an approach to issues at third party providers.
- Attendess will have an example incident reporting and notification plan.
top of page
Key Issues on the Agenda
Introduction and Overview
. About Us and About Your Instructors
. Who are You?
. What are Your Needs?
. What is "Cybersecurity Risk"?
. This is War!
. Myths!
. Key Players in Cyber Risk Standards
Section 1 - Concepts and Definitions
. What is "Information Technology"?
. Risk Appetite
. Risk Tolerance
. What is an "Information Security Program"?
. What is "Non-Public Information"?
. Principles of Cybersecurity Risk Management
. SIFMA Principles of Cybersecurity Regulation
Section 2 - Initiating the Improvement of an Information Security Program (ISP)
. Implementation of an ISP
. SLCA - Creating the Appropriate Environment
. Where did the "Current State" come from?
. How good is our Risk Assessment?
. Objectives of an ISP
. What questions do you start with?
. Cyber Threats by the Numbers
. Oversight by the Board of Directors
. Key Principles of Cyber Risk Oversight per the NACD
. Oversight of Third-Party Service Providers
. Incident Response Plan
Section 3 - Define the Problems and Opportunities
. The Effects of "Moore's Laws"
. SLCA - Program Management
. The Usual Suspects - Cyber Security Issues
. Measuring the Maturity of Internal Controls
. Internal Breaches
. External Breaches
. Business Alignment Issues
. Governance and Leadership Issues
. Extended Ecosystem Issues
Section 4 - Deep Dive into The Issues
. Oversight by the Board of Directors
. Mission Statement - Explicit Values - Business Model
. Ethics
. Authorized Individuals
. User Access and Passwords
. Desktop Management
. Email Management
. Mobile Device Management
. "WiFi"
. Cyber Attacks
Section 5 - The Effective Information Security Program Management
. Program Adjustments
. How do we manage the Program?
. Project Scoping
. Governance
. Cybersecurity Domains
. Resources
Section 6 - The Information Security Program
. Risk Management
. Strategic Management Elements
. Tactical Management Elements
. Operational Management Elements
. Data Assets
. Security Policies
. Physical Security Items
. Personnel Security Items
. System & Application Items
. NIST System Security Plan Standards
. System & Software Life Cycle
. Configuration Management
. Training & Awareness Program
. System Documentation
. Disaster Recovery & Business Continuity
Section 7 - Review The Effectiveness
. Business Objective - Risks - Controls
. Program Adjustments
. Annual Certification
. What is Effectiveness?
. The InfoSec Maturity Model
. FFIEC Cybersecurity Assessment Tool
. Maturity Levels of the Internal Controls
. Inherent Risk Profile
. Technologies & Connection Types
. Online & Mobile Products & Technology Services
. Organizational Characteristics
. Inherent Risk Profile
. The Five Risk Response Domains
. How is your Cybersecurity IC Maturity?
. Cyber Risk Management & Oversight Domain
. Threat Intelligence & Collaboration Domain
. Cybersecurity Controls Domain
. External Dependency Management Domain
. Cyber Incident Management & Resilience Domain
. Innovative - Advanced - Intermediate - Evolving - Baseline Levels
. Cybersecurity Inherent Risk & IC Maturity Relationship
. Management Assessment Results
. Certification & Accreditation Program
Section 8 - Incident Response to a Cybersecurity Event
. Incident Response Plan
. Who is on the "Team"?
. Key Layers of Management's Response
. What are the "Goals" for the Team?
. The Skills - The World Class Response Team
. Preparation
. The Observe - Orient - Decide - Act (O.O.D.A.) Methodology in Detail
. Incident Response Procedures
. SANS Institute "Jumpbag" Recommendations
. Post-Event Recommendations
Section 9 - SOC for Cybersecurity - AICPA Standards and Guidance
. AICPA's Three Key Components
. AICPA - SOC for Cybersecurity Resources
. Difference Between Cybersecurity and Information Security
. AICPA Objectives
. Three Reporting Levels - Entity - Service Provider - Supply Chain
. Two Sets of Criteria
. Cybersecurity Program Descriptive Criteria
. Cybersecurity Program Control Criteria
. Trust Services Approach to COSO 2103
. Trust Services Additional Points of Focus within COSO 2103
. Trust Services Supplemental Criteria
. Components of the Cybersecurity Report
. Management's Description
. Management's Assertion
. The Practitioner's Opinion
Section 10 - Summary and Wrap-Up
. "Information Security Program" Defined
. "Reactive" or "Proactive"
. Your Keys to Success!
|
top of page
Seminar Schedule
Experts Providing CPE Training Seminars
Corporate Compliance Seminars has been created by experts who enjoy providing CPE classroom training, workshops and consulting on internal controls, internal auditing, information technology and accounting related subjects. We have focused on SOX, COSO, PCAOB, COBIT, GRC, IFRS, AICPA, GAO and IIA Standards.
Our programs are CPE for professionals with CPA, CGA, CIA, CFE, CISA, CMA, PMP and CA designations.
Corporate Compliance Seminars presents CPE to auditors, compliance staff, engineers, and IT professionals, Boards of Directors and Audit Committees. We examine the details of risk management, Sarbanes-Oxley Act compliance, Model Audit Rule compliance, auditing, internal controls, IT security and compliance, project management, and fraud prevention and detection.
Corporate Compliance Seminars allows the attendee to earn Official NASBA CPE credit.
Our seminars focus on the details of the Institute of Internal Auditor's IPPF, Committee of Sponsoring Organizations of the Treadway Commission (COSO) Internal Control Frameworks, ISACA's Control Objectives over Information Technology (COBIT), Information Technology Infrastructure Library (ITIL), Open Compliance & Ethics Group's (OCEG) Governance, Risk & Compliance (GRC) methodology, PCAOB's Auditing Standard 5 (AS5), AICPA auditing standards, Sarbanes-Oxley Act of 2002 (SOX), NAIC Model Acts, and the future conversion from GAAP to the International Financial Reporting Standards (IFRS).
Our seminars provide CPE for the CPA, CFE, CIA, CISA, auditors and others with effective and engaging training.
|
|
 |
