Upcoming Dates & Locations
Audit Management Guide to Addressing Cybersecurity Risks - OAM302WEB
New regulations, increasing IT security threats and staff shortages challenge audit management ability to address the enterprise’s increasing IT risks. This webinar covers security breaches to extract lessons learned and help develop an audit strategy. It is designed to help audit management meet today’s challenges. It provides IT terms and concepts in straightforward language, and helps students establish a strategic response to cybersecurity risks.
Who Should Attend
Audit Management and Staff including Audit Directors, Financial / Operational Audit Managers, IT Audit Managers, Compliance management.
What You’ll Learn
You will learn how to identify IT threats and risks, how to assess the business impact and costs of breaches and their commonalities, how to establish audit strategy, the key control areas to assess and available resources.
- Identifying IT threats, risks and exposures
- Understanding the business impact and costs of a breach
- Data breach commonalities
- How hackers are hacking
- The attacker has the advantage
- Threat & vulnerability management
- Establishing the audit strategy
- Key control areas that need to be addressedli>
Resources to help management establish an audit strategy include:
- Center for Internet Security - 20 Critical Security Controls
- NIST Cybersecurity Framework
- NIST Guide for Conducting Risk Assessments (NIST 800-30)
- OWASP - Open Web Application Security Project
- ISO-27002 - IT Security Standard
- FISMA - Federal Information Security Modernization Act (NIST 800-53)
- And more!
Why You Should Attend
You should attend because IT and cybersecurity are impacting how organizations operate and we must have sufficient knowledge of these dynamics to perform our duties effectively.
ACI Learning is registered with the National Association of State Boards of Accountancy (NASBA) as a sponsor of continuing professional education on the National Registry of CPE Sponsors. State boards of accountancy have final authority on the acceptance of individual courses for CPE credit. Complaints regarding registered sponsors may be submitted to the National Registry of CPE Sponsors through its website: www.nasbaregistry.org.