Cyber Risk Register: The Cornerstone for Managing Cyber Risk
Information technology assets and information need to be protected against unauthorized internal or external access and cyber attacks. These attacks may result in data destruction, alteration, unavailability or breach of confidentiality. Developing and maintaining a cyber risk register is a fundamental step toward inventorying, assessing and addressing cyber risks threatening your organization.
Presented by Mario Mosse
Thursday, January 25, 2018
24-hour on-demand access begins at 10:00 am ET
Session length: 90-minutes
About This Course:
Data leaks have plagued large corporations lately resulting in significant financial losses and reputation damage. Understanding existing and emerging threats, your own vulnerabilities and the sources of attack, is the first step toward building an information security program that will protect your company and prevent major data loss. Developing a cyber risk register containing information about the various risks, their probability and potential impact, and how they compare to the firm’s appetite, is the best way to document the risk profile of your organization and decide which action plans are necessary to properly mitigate those risks. This assessment is accomplished through cyber risk workshops attended by subject matter experts and business managers.
Areas to be covered during this session:
• The purpose and value of a Cyber Risk Register
• How to create a Cyber Risk Register
• Asset types, asset valuation, vulnerabilities, scoring of probability, risk appetite and treatment options
• Action plans and time frames
• How to run your own Cyber Risk workshop and engage senior management and function heads
Banks; Asset Managers; Broker/Dealers; Insurance Companies and all other financial institutions; Supervisors; Financial Officers; IT professionals; Risk Officers; Internal Auditors; Operational Risk Managers; Compliance Officers; Board members; General (legal) counsel; Regulators who supervise or examine banks or financial institutions; C-Suite members; CBAs (Chartered Bank Auditors); CIAs (Certified Internal Auditors); CFEs (Certified Fraud Examiners); Team members who have an interest in expanding their knowledge of cyber risk.
How It Works:
This course will be available for a 24-hour period on the starting date and time published, to accommodate your schedule and time zone. During the session you will have the opportunity to submit questions to Mario. He will prepare a customized response to you within 72-business hours. Questions must be submitted during the 24-hour open course period. Included in your purchase is access to the recording for 60 days following the original course date and a PDF of the course handouts.
Registration Fee:
Sustaining Member $89 |Contributing Member $99 |Non-Member $109
About Our Expert:
Mario Mosse is the President of MMosse Consulting, LLC, a company that provides risk management advice and training to the financial services industry. Mosse has significant experience in the areas of enterprise risk management, regulatory compliance, internal audit and project management at major financial services companies. He also has extensive knowledge of U.S. and international financial services and products (retail and corporate banking, securities brokerage, investment banking, asset management and life insurance) as well as risk management and internal control frameworks such as Basel III, Solvency II and COSO.
Mosse spent 18 years with Prudential Financial, Inc. where he was in charge of the company’s operational risk management program. Prior to that, he was the Chief Internal Control Officer for Prudential Securities and Vice President, Management internal Control of Prudential Investments. Prior to joining Prudential, Mosse spent 19 years with The Chase Manhattan Bank, N.A. where he was in charge of risk management and compliance for the Corporate Finance Sector, South America Regional Audit Executive, and Vice President, General Auditing.
Continuing Risk Learning Credits: 1
PRMIA Continuing Risk Learning (CRL) programs provide you with the opportunity to formally recognize your professional development, documenting your evolution as a risk professional. Employers can see that you are not static, making you a highly valued, dynamic, and desirable employee. The CRL program is open to all Contributing, Sustaining, and Risk Leader members, providing a convenient and easily accessible way to submit, manage, track and document your activities online through the PRMIA CRL Center. To request CRL credits, please email [email protected].
Online registration not available.