Performing a Risk Analysis in Accordance with NIST - Understanding Your Organizations Risks Associated with a Cybersecurity Incident

Why Should You Attend:

Cyber breaches have become common place in today’s business and social environment. Regulators, government authorities, customers, business partners and shareholders expect information to be safe and if a breach occurs that the damage inflicted is minimal, remediation quick and notification complete and swift.

In order for an organization to fully understand and prepare for an information security event they must first conduct a comprehensive cybersecurity risk assessment. Using materials developed by the National Institute of Standards and Technology (NIST) and ISACA, we will cover the process required to develop a risk assessment and produce a ‘risk register’ for your organization.

Learning Objectives:

Learn the fundamentals of risk management as it relates to information security and how to identify risks associated with information security. Learn what the purpose of a risk assessment is and how to conduct a risk assessment in accordance with NIST and ISACA protocols. Learn how to mitigate risk and who should be responsible for measuring and monitoring risk. Learn the purpose of a risk register and who should maintain the risk register.

Areas Covered in the Webinar:

• Learn the objective of a risk assessment
• Learn the elements of a comprehensive risk assessment
• Understand the different types of risk associated with information security
• Learn how to conduct a risk assessment in accordance with established protocols (NIST, ISACA)
• Understand how to determine acceptable risk
• Identify the key controls associated with cyber security / information risk
• Learn who should be responsible for the risks identified
• Learn how to manage the risk assessment process
• Understand the purpose of risk register

Who Will Benefit:

• Board members
• CEO
• COO
• CFO
• CIO
• CISO
• Lawyers
• Internal Audit
• Communications
• Human Resources
• Supply Chain
• Sales/Customer Service
• Public Accountants

Jack Healey
Founder and CEO, Bear Hill Advisory Group LLC

Jack P. Healey is an expert in cyber incident preparation, response and recovery with over 30 years of business risk mitigation experience. He has performed risk assessments and developed risk based cyber incident response plans tailored for the Fortune 500 to small medical groups. He authored the Business Crisis Diagnostic and Prevention Model™ which provide businesses with the framework necessary to identify impending business crises before they occur. He is a Certified Public Accountant Certified in Fraud and Forensics, Cybersecurity SOC and Services and Certified Fraud Examiner.

Follow us :