An Introduction to Cyber Risk and Technology Awareness
The cost of Cyber Crime to the UK was estimated at £27 billion by the cabinet office in 2011. In 2012 one London based business lost £800 million alone. One SME lost £1million in one month and nearly closed due to the losses. Proposed fines of £183 and £99 million have been made by the Information Commissioner’s Office. Whilst these figures are headline grabbing and can be open to interpretation, it can be seen that Cyber Crime and fines for Cyber Breaches are a significant risk to any business.
Cyber Security is often portrayed as complicated and difficult. This course demystifies Cyber Security as a business risk to be managed and how to build a culture that understands and addresses the threats to their information from cyber attack. This course will provide you with comprehensive and practical tools to apply in your day to day role as a specialist across cyber risk.
Without a strong Cyber Security Culture, management of Cyber Risk will be challenging.
Suitability - Who should attend?
Who should attend:
- Head of Information Security
- Information Security Manager
- Information Risk Manager
- Any cyber security or cyber risk professionals who protect company information
Choose this course when:
- Looking to improve cyber protection policies and procedures
- Developing learnt responses to critical situations
- Improving knowledge & awareness around cyber risk management
- Creating the desired behaviours within your organisation
- Applying robust controls and functions within their organisation
- Improving organisation and team culture
Outcome / Qualification etc.
Attendance of this course awards up to 6 CPD hours where considered relevant to your professional development needs.
- Culture: The FCA regulator has identified cyber risks as “a threat to consumers and markets”. We will review the definition of Cyber Risk Culture and the link between firm values, attitudes and belief. We will understand the relationship between Risk Culture and Cyber Protection.
- Solutions & Ideas: Using a group think approach to generate ideas and solutions to implementing a positive cyber risk culture and management framework.
- Modelling best practice cyber risk management: workshop-based exercise to focus on attainable improvements to cyber risk culture in your organisation.
- Cyber Risk Modelling: How to implement the business risk appetite to cyber threats and identifying which risks to prioritise
Training Course Content
- Introduction to Cyber Risk
- Measuring Cyber Risk Culture
- No blame, no shame
- Reporting Cyber Issues – are you prepared for the unintentional consequences
- Workshop – Cyber engagement programs
- Understanding risk appetite with the business
- Cyber risk frameworks – aligning with corporate risk framework
- Workshop – creating a cyber risk framework that works for you covering
- People – Social engineering (phishing etc.), Insider threat
- Process – Supply chain, weak processes
- Technological - vulnerability scanning, choice of equipment
- Managing Risk – Options to address (Mitigate, Accept, Transfer or Insure)
- Governance and reporting
- Case Studies and Breakout sessions