Cyber Risk Means Disruptive Business Risk
Compliance mandates and cyberattacks are two areas that businesses must address to reduce risk. Compliance requirements should be addressed with the strategic objective of always being audit ready. Are you?
Presenters at this session will walk attendees through these two important subjects. Compliance requirements should be addressed with the strategic objective of always being audit ready. The enterprise security plan must clearly articulate how the business will actively implement and manage security controls to ensure discovery and management of breaches is consistently executed. Organizations are typically ill-prepared to discover breaches on a timely basis, with most taking weeks or even months to discover assets have been compromised by cyberattacks.
Attend this session to learn how to build a credible cyber security program based on the risk businesses face today. Attendees will learn the core components of an actionable incident response plan, identify policies that reflect risk, and learn how to manage an enterprise cyber security program.
After completing this session, participants will be able to:
• Examine how to establish an audit-ready compliance program to address mandates (e.g. GDPR, HIPAA, CCPA, CMMC, NIST, HITRUST).
• Learn how to be prepared to appropriately address federal and state regulations.
• Understand how cyberattacks compromise sensitive enterprise assets.
• Analyze critical areas to address in an enterprise security plan.
• Review threats such as ransomware, phishing, and DDoS that can seriously disrupt business processes and priorities.
Uday Ali Pabrai, MSEE, HITRUST (CCSFP), CISSP (ISSAP, ISSMP)
ecfirst Waukee, IA