JavaScript seems to be disabled in your browser. For the best experience on our site, be sure to turn on Javascript in your browser.

Information Security Risk Assessment 101

This presentation will provide an approach for developing an enterprise-wide information security risk assessment and a framework that can be adapted to the other numerous risk assessments now required.

OnDemand

DATE

Recorded Monday,
November 20, 2023

INSTRUCTOR

DURATION

2 Hours

FORMAT

Webinar

$279.00 or 1 Token

70BWUS236256G

Includes: 30 Days OnDemand Playback, Presenter Materials and Handouts

Available Upgrades i To upgrade your registration:

Add a webinar to your cart.

Select the desired upgrade(s).

12 Months OnDemand Playback
12 Months OnDemand Playback
- Extend your OnDemand playback access from 30 days to 12 months
$110.00
12 Months OnDemand Playback + Digital Download
12 Months OnDemand Playback + Digital Download
- Extend your OnDemand playback access from 30 days to 12 months
- Plus, get a digital copy of the OnDemand recording
$140.00

Topics

Compliance
Risk Management/Legal
Technology/Security

Roles

Board Member
Branch Manager
Compliance Officer
Deposit Operations Manager/Specialist
IT Professional
Privacy Officer/Information Security Professional
Risk Manager
Security Officer
Senior Management

Subscribe & Save on Webinars

Save on annual training costs with our Webinar Subscription Service and share webinars across your entire organization.

Become a subscriber

Risk assessments are an essential element of overall risk management along with providing the basis for many of your policies, plans, and programs like your information security program, audit program, and business continuity plan. The basis for the risk assessment mandated by GLBA in 2000 was initially thought to be oriented to IT, thus the requirement for an IT Risk Assessment after all it is the IT examiners that are evaluating it. However, today the focus has shifted to an enterprise-wide information security risk assessment that encompasses the entire organization where IT is a key component. Needless to say the change in nomenclature and focus has created some confusion and the fact that the regulators do not prescribe to any specific format, only content, many organizations are finding their assessment being criticized during their exams and audits. A properly structured enterprise-wide information security risk assessment will not only help you focus your resources and budget dollars where they are needed, but also provide the basis for your information security program and audit program. The right approach will also get you off to a running start on your business continuity risk assessment as well.

What You'll Learn

Who Should Attend

Senior Management, Information Security Officers, Compliance Officers, Risk Managers, IT Managers, Operations Managers.

Susan Orr

Instructor Bio

Susan Orr is a leading financial services expert with vast regulatory, risk management, and security best practice knowledge and expertise.

As an auditor and consultant, Susan is dedicated to assisting financial institutions in implementing appropriate policies and controls to protect confidential information and comply with regulatory mandates and best practices. Her expertise as an auditor and former examiner provides her the knowledge and expertise to conduct comprehensive IT general control and data security reviews and assist de novo institutions in the vendor selection process, preparing policies and procedures, and instituting controls. She also consults for numerous security providers and vendors helping them align products and services to meet institution regulatory mandates. Susan is a Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), Certified in Risk and Information Systems Control (CRISC), and Certified Risk Professional (CRP).

Print this page