As data breaches continue to make the headlines, financial institutions are challenged to maintain consumer confidence in their ability to recognize, react, and respond to intrusions to safeguard accountholder financial information and transactions. A core component of cybersecurity risk management is a well-designed incident response program that supports the institution’s needs. This session will summarize the latest information about cybersecurity risks and breaches and explore regulatory guidance and current practices, so institutions can define and manage an incident response program.
- Latest developments in ransomware attacks
- Case studies and lessons learned from recent intrusions and breaches
- Key risks and controls to mitigate and respond to breaches in Office 365
- Aspects of the “cybersecurity kill chain”
- Key strategies to test your incident response program
- Examples of cybersecurity incident response table-top exercise
- Resources and examples to build an incident response program policy document
- Resources and references for hardening and monitoring cloud services and applications
- Employee training log
- NEW – Interactive quiz
WHO SHOULD ATTEND?
This informative session is designed for IT and cybersecurity risk management staff, internal auditors, and individuals responsible for governance and oversight of the institution’s cybersecurity and incident response program.
PLEASE NOTE: The live webinar option allows you to have one internet connection (from a single computer terminal). You may have as many people as you like listen and watch from your office computer.
ABOUT THE PRESENTER – Randall J. Romes, CliftonLarsonAllen LLP
Randy Romes has been a cybersecurity consultant at CliftonLarsonAllen since 1999 and brings a strong background in computer technology, physics, and education. As a Principal in the Information Security Services and Financial Institutions groups, Randy leads a team of technology and industry specialists and is responsible for the continuing development of the open-source, Unix, and Windows applications used in security audits.
Randy has been involved in developing numerous leading-edge hacking/testing methods and security service offerings. A featured speaker at national information and security management conferences, Randy holds multiple certifications, a Master’s in Educational Technology from the University of Saint Thomas, and a Bachelor’s in Education from the University of Wisconsin – Madison. In addition, he is an instructor at the Graduate School of Banking at the University of Colorado in Boulder.