In this webinar, you will learn core principles and proven techniques to successfully safeguard your organization from cyberattacks and effectively deal with breaches when they occur. You will also learn how to comply with financial reporting and SEC disclosure requirements.

• Recent cybercrime history and statistics
• Risks and risk alignment
• Artificial Intelligence (AI)
• Data classification
• General Data Protection Regulation (GDPR)
• Role of the Board of Directors
• SEC disclosure requirements
• Disclosure examples
• Public relations and crisis management
• Cloud computing
• Types of clouds and levels of services
• IT vendors
• SOC reports
• Strategies for when SOC-1 is incomplete

This self-study webinar is designed to show financial and accounting professionals the best ways to deal with today’s toughest cybersecurity issues. You’ll learn core principles and proven techniques to successfully safeguard your organization from cyber attacks and effectively deal with breaches when they occur. It also emphasizes how to build communications, share information, and get everyone in the company focused on the same goals and working together.

DETAILED LEARNING OBJECTIVES

• Identify the overall key to minimizing damages from cyber breaches

• Recognize recent cyber security statistics applicable both globally and within the US

• Recognize current forms of cloud exploitation

• Recognize the common characteristics of high profile cyberattacks

• Recognize direct and indirect US cybersecurity regulators

• Identify the goal of risk mitigation

• Identify the role or potential role of Artificial Intelligence (AI) in a cybersecurity context

• Recognize an overall approach to cybersecurity risk

• Identify the characteristics of the Common Vulnerability Scoring System (CVSS)

• Identify the role of compensating controls within a cybersecurity system structure

• Recognize both US sourced and non-US sourced cybersecurity compliance programs

• Recognize the overreaching goal of Sarbanes-Oxley

• Recognize the characteristics of the PCI Security Standards Council

• Recognize the characteristics of the General Data Protection Regulation

• Recognize the potential penalties associated with noncompliance with the GDPR

• Identify the characteristics of penetration testing and penetration testing vendors

• Identify approaches to threat elimination following an incident containment

• Recognize options to protect against the risk associated with third parties

• Identify the role of insurance in protecting against cybersecurity breaches

• Identify various policy characteristics of insurance against cybersecurity breaches

• Recognize the role of compensating controls in cybersecurity

• Recognize the primary characteristics of SEC Release #2023-52

• Identify the potential impact of a cybersecurity breach on an organization

• Identify the optimal approach to cybersecurity crisis management

• Identify suggested public relation strategies for dealing with a beach

• Recognize the role of cloud computing and IT vendors and the cybersecurity implications of their use

• Identify the cyber risks and align your cybersecurity program with the company’s goals
• What questions you can expect from the Audit Committee
• How to deal with the latest SEC and other cybersecurity disclosure regulations
• Public Relations and Cybersecurity: striking the balance of not creating fear while still being accurate
• The flow of Objectives to Risks, to Controls, to Audit plans
• Dealing with multiple divisions and corporate structures
• Methods for preventing cyber events
• Techniques for responding to incidents to contain the damage
• Jurisdictional issues:
  – China data location requirements
  – The new European Union GDPR
  – California consumer protections and other US state requirements
• How cloud computing affects compliance and controls
• How IT outsourcing impacts cybersecurity
• Best practices for organizing staff and vendors
• Real-World Incident Response Success Strategies