Strengthening Your Organization's Cybersecurity Resilience - In-Person
Strengthen Your Organization's Cybersecurity Resilience
CCS understands the critical importance of cybersecurity in today's digital landscape, and we invite you to join our exclusive in-person training event: "Strengthening Your Organization's Cybersecurity Resilience."
Cybersecurity is undeniably one of the most significant internal control areas that demand attention from executives, boards, business unit heads, IT/ security professionals, and auditors. Unfortunately, countless organizations have experienced the devastating consequences of cyber breaches, as evidenced by recent events.
Imagine if we had audited our cybersecurity program and controls before the ransom demand! We might have avoided the distressing situation we currently find ourselves in. The truth is, cybersecurity breaches happen daily, and many remain undisclosed. Not even the most "secure" government agencies, financial institutions, or public utility companies are immune to such threats. It is now more crucial than ever to establish and maintain a comprehensive cybersecurity program as a fundamental element of internal control.
During this interactive training, our expert instructor will guide you in assessing the effectiveness of your organization's cybersecurity program and processes. We will provide the necessary knowledge and insights to enhance the overall security resiliency of your organization. We will discuss the cybersecurity deficiencies and equip you to proactively address potential vulnerabilities and improve your program.
Who Should Attend:
- Internal Auditors
- Compliance Analysts
- Security Officers and Administrators
IT Management and Support Staff
Join us for this in-person event, where you will gain invaluable insights into fortifying your organization's cybersecurity resilience.
Don't miss this opportunity to learn, grow, and enhance your organization's cybersecurity effectiveness. Secure your spot now and be better prepared to tackle this most crucial challenge of our digital age.
Each attendee will receive 8 NASBA CPE hours. Government attendees will satisfy their Yellow Book (YB) requirements. A Certificate of Completion will be provided at the conclusion of the class.
Details on Event Presentation
The sessions will be as follows:
Fridays – 9:00 a.m. to 5:00 p.m.
Offered in-person in various cites each month on Fridays.
CPE Event Highlights
- Identifying and Assessing Cybersecurity Controls
- Understanding the Importance of Security Resiliency
- Best Practices for Evaluating Cybersecurity Processes
- Enhancing the Effectiveness of Your Cybersecurity Program
- Implementing Internal Controls and ERM Programs
- Discover the Interplay of Risk, Control, and Audits
- Gain Profound Insight into Key Aspects of an Efficient Cybersecurity Program
- Thoroughly Assess Risks Arising from Insider and Outsider Threats
- Uncover the Intricacies of Account Management Processes
- Devise Strategies to Mitigate the Impact of Privileged Accounts
- Recognize the Phases Involved in a Cybersecurity Attack
- Master Tools and Techniques for Ongoing Security Event Monitoring
- Pinpoint Effective Approaches to Address Security Vulnerabilities
Key Issues on the Agenda
Section 1 Introduction and Learning Objectives
Section 2 Overview, Definitions and Concepts
Section 3 Components of Cybersecurity Programs
Section 4 Internal Control and Cybersecurity Frameworks
Section 5 Cybersecurity Risk Assessments
Section 6 Security Certifications
Section 7 Security and Privacy Laws and Regulations
Section 8 Breach Disclosure Requirements
Section 9 Evaluating a Cybersecurity Risk Assessment
Section 10 Security Policy Development, Administration and Auditing
Section 11 Data Classification and Protection Methods
Section 12 Protecting the Physical Equipment
Section 13 Assessing Controls in Network Components
Section 14 Account Authentication
Section 15 Controlling Your Endpoints
Section 16 DevOps Application Security
Section 17 Configuration Management
Section 18 Vendor Management
Section 19 Command, Communication and Control
Section 20 Summary and Wrap-Up
NASBA Program Disclosure
Program Level of Understanding: Intermediate
Prerequisites: Basic understanding of auditing and IT security
Advance Preparation: None
Delivery Format: On-site Training (Group-Live); Seminar (Group-Live)
NASBA Field(s) of Study: "Auditing" and "Information Technology"
CPE Credits: 8, based on 50 minutes of instruction per hour
Summary of the Subject Matter
The "Strengthening Your Organization's Cybersecurity Resilience" is an concentrated in-person CPE training event hosted by CCS. This comprehensive training aims to equip security, compliance, and audit professionals with the essential knowledge and tools to enhance their organization's cybersecurity resilience.
The event focuses on three fundamental aspects: risk, control, and audits. Participants will gain a deeper understanding of how these elements intertwine and contribute to a robust cybersecurity program. Key topics covered include assessing risks posed by both insider and outsider threats, identifying effective account management processes, and implementing strategies to limit the impact of privileged accounts.
Attendees will also delve into the stages of a cybersecurity attack, enabling them to better recognize and respond to potential threats. Additionally, the event emphasizes continuous monitoring of security events and familiarizes participants with various tools and techniques for proactive security event tracking.
By the end of the training, attendees will be able to identify and remediate security vulnerabilities effectively, bolstering their organization's overall cybersecurity posture.
Throughout the training, attendees will have the opportunity to interact with an industry expert and network with other professionals in the cybersecurity field. The CPE event is designed for individuals working in IT, internal audit, risk management, and compliance roles. It is also designed for anyone looking to improve their knowledge and skills in cybersecurity auditing.
Attendees will learn about the fundamental concepts of cybersecurity and how to assess the effectiveness of cybersecurity programs and controls. The program covers topics such as risk management, security governance, incident management, and compliance with industry standards and regulations.