1. Home › 
  2. › 
  3. Cyber security for Risk Managers

Cyber security for Risk Managers

Verwijderen Favoriet Opslaan

The goal of this course to:

Niveau Expert
Type opleiding Klassikaal

Totale prijs *
Leden: € 530
Niet-leden: € 640
Partner BZB: € 530
Incompany: op maat, prijzen op aanvraag

* Heeft u recht op subsidies?
* Prijs: prestatie in het kader van permanente beroepsopleiding, vrijgesteld van BTW

Beschikbare data

05/11/2019 - Cyber security for Risk Managers

Ik schrijf mij in

Geef ons uw interesse door indien er geen datum beschikbaar is, de geplande datum voor u niet past en/of deze sessie volzet is. Van zodra een vijftal personen ingeschreven zijn op de interesselijst stellen wij u een nieuwe datum voor. Uw inschrijving op de interesselijst is kosteloos en zonder enige verplichting.

Schrijf u in op de interesselijst

Doelgroep

This course brings value to junior risk managers, internal and external auditors, treasurers and corporate financial professionals.

Vereiste voorkennis

Expert level: This training will provide advanced characteristics on a specific topic. In order to grasp the concepts of this training, thorough knowledge is required (enhancement).

Programma

Content

Review of key threats for the financial sector, based on industry reports and incidents made public.

We will apply the concepts explained previously to a specific scenario, which participants will need to solve in a crisis management game. The scenario features a realistic attack. Round after round, participants (which each have to take on a defined management role) act as the executive committee of the company and must process the information received and make the decisions, hoping that these will help control the attack and minimize business impact. At the end of the game, an explanation of the attack and the related mechanisms is given, and a brief summary of the counter measures that are recommended is provided – so that participants gain a concrete set of examples of how security controls can juggle an attack.​

Introduction to the different external compliancy requirements for the Financial sector as well as tips & tricks on how to ensure (internal) compliance. We will also touch upon the impact of the EBA guidelines, the GDPR and the NIS on Cyber Security.

Starting from the ISO27005 framework, we will introduce a typical methodology for information security risk assessments, as well as briefly touch upon other known methodologies.

We will complement this theoretical introduction with two examples of risk assessment methodologies, one for a web application, and another for a third party supplier. There, we will introduce key security frameworks available to the risk manager to design an approach that addresses state of the art security controls exhaustively (e.g. ISO27002, CSA questionnaire, …) or select key controls to address most prominent risk areas (e.g. 20 critical security controls).

This session will focus on how to integrate Information Security in the overall Operational Risk Management process, from a methodology and governance point of view.

Practical information

Duration: 1 day training

Hours: 9AM-5PM (6 training hours per day)

Location: Febelfin Academy, Aarlenstraat/Rue d'Arlon 80, 1040 Brussels

Additional information: This training course will be given in English

Methodologie

Form: Classroom

Teaching materials: Powerpoint presentation (slides)