Cyber Risk Management Frameworks and Concepts
Instructor:
Lynn Fountain
Product ID: 705885
- Duration: 90 Min
Why Should You Attend:
In today’s tech environment it is critical that organizations be pro-active and prepared when considering cyber risk management. Because of the size, complexity, and constant evolution of attack vectors there is no one-size-fits-all way to respond. it is essential to begin somewhere to establish a baseline for identifying the critical components that must be incorporated into any cybersecurity risk management approach.
Multiple risk management frameworks have been introduced including:
- NIST: National Institute of Standards and Technology (NIST) established by executive order in February 2013.
- ISO/IEC Security Control Standard: developed by the International Organization for Standardization and the International Electrotechnical Commission
- FFIEC Cybersecurity Assessment – developed for Financial institutions by the Federal Financial Institutions Examination Council
- SEC/OCIE Cybersecurity Initiative – developed for brokers by the U.S. Securities and Exchange Commission (SEC) Office of Compliance Inspections and Examinations
- FCC Cyber Security Planning Guide – developed by the Federal Communications Commission for small businesses
- Although their organization and structures vary, all frameworks attempt to address the same basic functions designed by the NIST Cybersecurity Framework:
- Identify
- Protect
- Detect
- Respond
- Recover
In this course we evaluate several attributes critical to the proper establishment of a cyber risk management program. We delve into the concepts and apply thoughts as to how each component should be evaluated for your organization. The course utilizes the NIST framework as a guide for application.
Areas Covered in the Webinar:
- Explore effective cyber frameworks
- Identify the National Institute of Standards and Technology (NIST) cyber framework.
- Evaluate components of the NIST cyber framework and their applicability to any framework.
- Explore the concept of framework tiers.
- Explore the concept of framework profiles.
- Identify steps to implement a framework.
Who Will Benefit:
- Cybersecurity professionals
- IT professionals
- Auditors
- CFOs
- CEOs
- All professionals
- Board Members
Lynn Fountain
Former Chief Audit Executive, Aquila
Lynn Fountain has over 35 years of experience spanning public accounting, corporate accounting and consulting. She has 20 years of experience working in the areas of internal and external auditing. She is a subject matter expert in multiple fields including internal audit, ethics, fraud evaluations, Sarbanes-Oxley, enterprise risk management, governance, financial management and compliance.
Ms. Fountain has held two chief audit executive positions for international companies. Since 2008, she has served in positions where she was responsible for internal audit, enterprise risk management and Sarbanes-Oxley. Ms. Fountain has a private consulting and training business, and she has developed and delivered leading edge training sessions on COSO, internal audit, ERM, accounting, leadership, governance, compliance and ethics. She delivers training for the American Institute of Certified Public Accountants, Institute of Internal Auditors, and multiple seminar and training groups.
Ms. Fountain is the author of two technical books that released in 2015: Raise the Red Flag – The Internal Auditors Guide to Fraud Evaluations; Leading the Internal Audit Function. In addition, Ms. Fountain is a frequent blogger on the LinkedIn platform and has also had numerous articles published in professional and technical publications. She is currently authoring a third technical book on corporate ethics and the internal auditor’s challenge.
She has performed as an adjunct instructor for the School of Business for Grantham University and developed the first internal audit curriculum for the School of Business at the University of Kansas. Ms. Fountain obtained her BSBA from Pittsburg State University and her MBA from Washburn University in Kansas. She has her CGMA, CRMA credentials and CPA certificate (non-active).
More Training By Experts
- Focus on Internal Control - Is your Company Ready for the New COSO?
- Fraud Awareness Programs
- Auditing of Environmental, Health and Safety programs for the non-technical auditor
- Internal Controls - What Every Manager Needs to Know
- Auditing and examining Travel and Entertainment Expenses: Expense Reimbursement Fraud
Refund Policy
Our refund policy is governed by individual products and services refund policy mentioned against each of offerings. However in absence of specific refund policy of an offering below refund policy will be effective.
Registrants may cancel up to two working days prior to the course start date and will receive a letter of credit to be used towards a future course up to one year from date of issuance. ComplianceOnline would process/provide refund if the Live Webinar has been cancelled. The attendee could choose between the recorded version of the webinar or refund for any cancelled webinar. Refunds will not be given to participants who do not show up for the webinar. On-Demand Recordings can be requested in exchange. Webinar may be cancelled due to lack of enrolment or unavoidable factors. Registrants will be notified 24hours in advance if a cancellation occurs. Substitutions can happen any time. On-Demand Recording purchases will not be refunded as it is available for immediate streaming. However if you are not able to view the webinar or you have any concern about the content of the webinar please contact us at below email or by call mentioning your feedback for resolution of the matter. We respect feedback/opinions of our customers which enables us to improve our products and services. To contact us please email [email protected] call +1-888-717-2436 (Toll Free).
