Description
COURSE OVERVIEW
This course introduces the concept of GRC in the context of Cybersecurity. This course covers the importance of Governance in Cybersecurity for Financial Institutions, Practical and effective Information Security Risk Management and building a Cybersecurity culture that supports the
COURSE OUTLINE
1. Cybersecurity Governance
- Overview
- Establishing the Cybersecurity Function
- Board and Senior Management Support
- Cybersecurity Roles and Responsibilities
- The Cybersecurity organization and constraints
2. Cybersecurity Program and Strategy
- Information Security Strategic Plan
- Information Security Program
- Establishing Business Alignment
- Program Monitoring and Metrics
3. Information Security Risk Management
- Overview
- Threat Modelling
- Vulnerability and Controls Assessment
- Risk Likelihood and Impact
- Residual Risk
4. Information Security Risk Treatment
- Risk Ownership
- Risk Treatment Options
- Monitoring Techniques
- Risk and Control Reporting
5. Cybersecurity Policies and Compliance
- Policies, Standards and Baselines
- The Information Security Policy
- Standards Management
- Baseline selection and enforcement
6. Cybersecurity Culture Building
- Security Awareness Training
- Policies Enforcement
- Internal and External Collaboration
Resource Speaker:
Mr. Jan Martin Encina
Associate Director, Head of Information Security
Governance & Operations of Maya PH
Jan brings with him 16 years of combined experience in Information Security, Risk Management, Compliance, Data Privacy and Audit. He has held various technical and leadership roles in fintech, banking, software, and telecommunications. Early in his career, he was part of two Big Four Accountancy Firms namely KPMG R.G Manabat & Co. and PwC Isla Lipana & Co. He topped multiple I.T. Audit and Security certification exams of Information Systems Audit and Control Association (ISACA) Philippines landing top 3 in the Certified Information Security Manager (CISM), Top 2 in the Certified Information Systems Auditor (CISA) and Top 1 in the Certified in Risk and Information Systems Control (CRISC). He is also a Certified Public Accountant (CPA). He was recently awarded by the Information Security Officers Group as the Best Senior Head for Security of the Year in Fintech Industry. He is currently affiliated with Maya Philippines Inc. as an Associate Director and Head of Information Security Governance Operations.
Schedule:
December 15, 2023
(Friday)
9:00 AM – 5:00 PM
Training Fee per Participant:
Member Institution – P 2,800.00
Non-Member Institution – P 3,920.00
**VAT inclusive