FS-ISAC, FFIEC, PII - Cybersecurity for Non-Technical Financial Services Personnel

Why Should You Attend:

Cybersecurity is a well-known risk issue but less obvious is its indirect impact on risk and compliance programs. Examining regulator expectations, including current focus items, can be a first step in ensuring that unseen impacts of this high-risk issue can be identified and anticipated. With an understanding of real and potential threats, cybersecurity impacts can be analyzed and adapted into an existing risk program. Impacts must be measured within your environment; as in all risk, mitigation is as unique as each organization and its needs.

Financial institution leaders know that cybersecurity is an issue but identifying what it means to them, how it impacts their organization and how to respond are a challenge. In this session, cybersecurity and its less realized impacts are highlighted as well as what responses stakeholders expect, and, how planning can be carried out for all aspects of this significant threat.

Learning Objectives:

• Gain a general understanding of cybersecurity topics
• Review malware typologies
• Examine cybersecurity channel threats
• Financial institution response
• Examiner expectations
• Meeting stakeholder expectations: board of directors, shareholders, examiners and personnel

Areas Covered in the Webinar:

• Risk management landscape
• A 2015 compliance needs overview
• Types of risks
• Defining information/data
• Typologies: virus/worm, Trojan Horse, spyware links to cybersecurity threats
• Channels: electronic, product, external, and other
• Responses to threat planning and information sharing (e.g., FS-ISAC)
• Governance topics
• Third party relationships
• Incident response
• Current threats detail
• Costs
• Cybersecurity expectations (FFIEC), assessments and controls
• Stakeholder expectations and action steps

Who Will Benefit:

• Executive Management
• Risk Officers
• Technology/Security Officers
• Compliance and Audit
• Payments Personnel
• Customer Service/Facing Personnel
• Operations Personnel
• Technology Leaders
• Line of Business Owners
• Strategic Planners across the Organization
• Risk Personnel
• Product Leaders

Instructor Profile:

Tony Kaus has been in technology and banking for more than 30 years with experience at three of the current top ten U.S. banks. In the course of his career, he developed multiple areas of expertise: risk and compliance consulting and software design/marketing/implementation, advanced risk analytics and broad financial services experience across wholesale and retail channels and products; from ATMs and POS debit in the late 1980s/early 1990s, mergers and acquisitions in the 1990s, mortgage bank ownership and introduction of the Internet.

He has been a successful trainer across many disciplines: scores of presentations, webinars, professional and non-profit organization memberships and a wide variety of participation in industry events – national and international. His guiding principle in all of these experiences has been the use of a practical approach, making and supporting the business case for activities, and keeping goals and expectations realistic.

Follow us :