Overview
Organizations’ risk exposure is constantly changing due to changes in business, technology, regulatory requirements, and the cyber threat landscape. In this environment, it is important for organizations to obtain an understanding of their current risk and controls profile by conducting ongoing cybersecurity risk and controls assessments. This webinar will enable organizations to better understand risks for their highest criticality assets, establish an effective and sustainable risk and control assessment program, adhere to applicable regulations, and establish the foundation to drive a risk-aware culture.
AGENDA HIGHLIGHTS
• COVID-19 Impact
– Risk profiles
– Password sharing
– Disabling accounts
– Log alerts
– Compliance deadlines
– Inability to complete on-site audit and assessments
– Introducing home computers into a business network
– Stalled software development projects
– Department freezes and lost expertise
• Types of Risk Assessments
– Sarbanes-Oxley
– Payment card industry PCI-DSS Standard
– General data protection regulation
• Risk Officer
– Fiduciary obligations of board members
• Data Classification
– Confidential: restricted and sensitive
– Internal and public use
• Risks & Risk Alignment
– Definitions
– IT risk policy
– Mitigation process (inherent and residual risks)
– Focusing on cybersecurity most relevant to your business
• Disposition
– Resolving an issue
• Public Relations
• General Data Protection Regulation
• SOC-1 Additions Due to Cloud
– Testing
– Improvements to system descriptions
– EU-US privacy shield
– Computing environment
– Router and firewall administration
– Virtual console authorization
– Nested outsourcing
– Business continuity planning
• Strategy for Incomplete SOC-1
– Pass-through conduit
– Examples
• Critical Files in a Public Storage Service
LEARNING OBJECTIVE This session will help you establish a sustainable risk control assessment program to protect your organization
from cyber threats.
PREREQUISITE None. ADVANCE PREPARATION None. PROGRAM LEVEL Update. NASBA FIELD OF STUDY Accounting.
DELIVERY METHOD Group Internet-Based.
Speakers
SPEAKERS
Sarah Levine, Partner, Jones Day
Susan Markel, Managing Director, AlixPartners
Workshop
No results found.
Forum
No results found.