Loading...

How to Test (Audit) Your People, Processes and Technology

There are three phases to creating an Information Security Program (ISP) for any organization: 1) planning and preparation, 2) implementation, and 3) testing and verification.

OnDemand
Recorded Thursday,
November 13th, 2025
Presented by Christy Thomas
1h 30m total length
$299.00 or 1 Token

Includes: 30 Days OnDemand Playback, Presenter Materials and Handouts

  • Technology/Security
  • Board Member
  • Branch Manager
  • Internal Auditor
  • IT Professional
  • Risk Manager
  • Security Officer
  • Senior Management
  • Training Manager
  • Trainer

Save on annual training costs with our Webinar Subscription Service and share webinars across your entire organization.

Become a subscriber

Learn about upcoming events, webinars and discounts.

Sign Up For Email Notifications

When it comes to testing your ISP, one of the big questions you should ask – both of yourself and your auditor(s) – is, “Where does our risk really live?” Are you testing your ISP because you have to, or are you testing it because you really want to protect your organization and your customers’ data from a cyber attack?

What You'll Learn

  • People, Process, and Technology
  • Minimum Requirements for Testing Your ISP
  • Best Practices for Testing Your ISP
  • Reactive Testing vs. Proactive Testing
  • Additional Security Testing to Consider

Who Should Attend

This session is ideal for internal auditors, IT operations, and IT management personnel.

Christy Thomas

Instructor Bio

Christy Thomas is the Auditor Manager at SBS CyberSecurity (SBS), a company dedicated to helping organizations identify and understand cybersecurity risks to make more informed and proactive security decisions.

Christy maintains her Certified Public Accountant (CPA) license, as well as Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), Certified Data Privacy Solutions Engineer (CDPSE), and Certified Banking Security Manager (CBSM) certifications. She received her Bachelor of Science in Accounting from Southeast Missouri State University.

Christy has over 15 years of risk management and operations experience in the financial services industry, holding a variety of roles that include: Information Security Officer, Internal Auditor, Bank Secrecy Act Officer, and IT Auditor. Christy joined the SBS team in 2017 and has transitioned into a senior management role as manager of the Audit Team.

Print this page