Name: Best Practices for Developing a Vendor Risk Questionnaire
Start: 2022-02-02T17:30:00Z
End: 2022-02-02T17:30:29.000Z
Location: BrightTALK
Rating: 4.75

Webinars, panels, and commentary for cutting-edge CISOs, cybersecurity teams, IT compliance professionals, and risk management experts.

CyberStrong empowers customers to leverage the FAIR model for financializing cyber risk. Customers can use FAIR to benchmark and track financial impacts in cybersecurity while understanding their organization’s loss exposure in dollars and cents to transparently communicate their risk posture to C-suite executives and Boards.

Join us for an insightful discussion on how the FAIR risk model empowers organizations to navigate the complexities of cybersecurity with clarity, precision, and transparency. Whether you're a cybersecurity professional seeking to enhance risk management practices or a leader striving to make informed decisions, this webinar offers practical insights into leveraging FAIR for improved cybersecurity outcomes.

Key Takeaways:
- Gain a comprehensive understanding of the FAIR risk model.
- Discover practical applications of FAIR in assessing and financializing cyber risks.
- Explore how FAIR enhances transparency and facilitates informed decision-making in cybersecurity.

Live Demo: Empowering Cyber Risk Analysis with the FAIR Risk Model - EMEA

This webinar comprehensively explores the NIST CSF Version 2.0. We'll break down the critical updates and enhancements, guiding you through the core structure of functions, categories, subcategories, profiles, and tiers.

Here's what you'll gain:

- A clear understanding of NIST CSF 2.0: We'll explore the evolution of the framework and the driving forces behind its update.
- Implementation roadmap: Learn how to leverage NIST CSF 2.0 to identify and prioritize cybersecurity risks, ultimately strengthening your organization's defense.
- Practical guidance: Discover how to utilize the framework to improve your cybersecurity posture and achieve a more robust risk management strategy.
- Focus on supply chain security: We'll delve into the new Supply Chain Risk Management (SCRM) practices introduced in NIST CSF 2.0, equipping you to address vulnerabilities within your vendor ecosystem.
- Potential challenges for NIST CSF 2.0 implementation.

Demystifying NIST CSF 2.0: Updates, Implementation, and Supply Chain Security

Live Demo: Empowering Cyber Risk Analysis with the FAIR Risk Model - APAC

Join CyberSaint and Snowflake to discuss Snowflake's inaugural Next-Generation Cybersecurity Apps Report. As the cybersecurity landscape continues to evolve, the need for solutions and platforms that operationalize the wealth of security data flowing within an organization becomes increasingly paramount. Leveraging the data from security data lakes like Snowflake allows CyberSaint users to achieve real-time insight into their compliance and risk posture. We're proud to be featured as a leader in risk and compliance in Snowflake's report.

Learn about the scope and methodology of the inaugural Next-Generation Cybersecurity Apps Report, how CyberStrong leverages security data lakes to power its Continuous Control Automation (CCA) capabilities, and how your program can benefit from real-time cyber risk insight.

Dive In: Snowflake's Next-Generation Cybersecurity Apps Report - APAC

Dive In: Snowflake's Next-Generation Cybersecurity Apps Report - EMEA

Cybersecurity teams are fundamentally challenged; lack of support from the business, lack of budget from IT, and insufficient resources, the challenges are real. As organizations seek to leverage digital transformation to be able to serve new customers, offer new services to existing customers, and cut costs, there is a sobering reality. The increase in digital business directly increases digital business risk. Success in a modern digital world requires value creation and protection, integration with organizational capabilities, and a focus on innovation to create adaptive, resilient organizations. 

In this STRONGER 2023 session, Patrick Von Schlag introduced the notion of a Digital Value Management System and an overlay model that dramatically increases leadership buy-in, allows for the assessment and prioritization of gaps, and drives dramatic improvements in an organization's ability to survive in the face of chaos.

STRONGER 2023: Moving from Cybersecurity to Digital Value Management

In recent years, the role of CISOs has witnessed a profound evolution, marked by a significant expansion in their responsibilities and a heightened level of interest from Boards. This heightened attention has resulted in a more rigorous examination of their performance and actions in safeguarding organizations against cyber threats. Additionally, the introduction of the SEC Cyber Rules has further accentuated the need for CISOs and security leaders to adapt to a new landscape of mandated cyber reporting, effective disclosure practices, and the alignment of cyber strategies with the stringent guidelines set forth by the SEC.

Our upcoming webinar offers a unique opportunity to delve into the core dynamics of this shifting paradigm. Presented by John Wheeler, a former Gartner Analyst, and Padraic O'Reilly, Co-founder and CPO of CyberSaint, this webinar promises to be an invaluable resource for CISOs, security leaders, and anyone interested in the evolving landscape of cyber risk reporting and management.

Our presenters will draw from their wealth of experience and expertise to explore the nuances of navigating the complex realm of mandated cyber reporting. They will also provide indispensable guidance on crafting presentations tailored specifically for Boards—informative and defensible presentations in the context of evolving cyber risk landscapes.

A central feature of this webinar will be utilizing real-world examples, demonstrating how organizations have successfully navigated the intricate terrain of board reporting using the cutting-edge CyberStrong platform.

Cyber Risk Reporting to the Board: A Step by Step Playbook - APAC

Reputational damage has long been a source of contention when understanding business risk. We know the consumer cares, but how much? 

In this STRONGER 2023 breakout session, Steven Switz demonstrated how to view risk from the perspective of the consumer and what a data breach or non-compliance in data processing activities means to them. This can strongly indicate the reputational brand damage impact a business may be undertaking. Businesses often look solely at the impact of various risks to themselves and fail to consider the impact on the individual, which can be a generous source of information to understand the actual risk when making these decisions properly.

STRONGER 2023: Understanding Brand Damage Using Privacy Harm Taxonomy

Cyber Risk Reporting to the Board: A Step by Step Playbook - EMEA

This session from STRONGER 2023 examined the process, substance, and possible outcomes of Attorneys General and OCR investigations. The states vary widely; however, there are a few consistencies that businesses can always expect and plan for. To that end, planning for a regulatory investigation begins well before a business experiences a cyber incident and can significantly impact the outcome of any investigation.

STRONGER 2023: Preparing for Regulatory Investigations of Cyber Incidents

This discussion from STRONGER 2023 centered around understanding emerging technologies and their associated risk. This talk provided strategies for managing cyber risk and reviewed practical and real-world case studies. Additionally, this session provided a recap of takeaways and actionable steps.

STRONGER 2023: Managing Cyber Risk in the Age of Emerging Technologies

Challenges abound in the complex realm of cyber risk management, and historical solutions have proven to be inflexible and unscalable, demanding extensive configuration with a band-aid approach. But, amidst the challenges lies a groundbreaking opportunity. 

CyberSaint is changing the narrative of cyber risk management by offering a transformative approach that cuts through the confusion and noise of the industry. Our vision is to create a world where a resilient cyber posture is crucial to every organization's performance, and our mission is to make this vision a reality by leading the way in cyber risk management, driven by data and first principles. Learn more about the CyberSaint approach in this webinar with our Co-Founder and Chief Product Officer.

CyberSaint’s Manifesto: Becoming The Leader in Cyber Risk Management - APAC

Diving headfirst into the rapidly advancing generative AI brings unique cyber risks and challenges. This session from STRONGER 2023 unveiled the undercurrents of risk, from unintentional data leaks to unforeseen adversarial exploits. The speakers highlighted the potential risks and offered takeaway strategies for fortifying your company's defenses.

This session was led by Dheeraj Gurugubelli, Senior Director of Cybersecurity at EY-Parthenon, and Shraddha Patil, Director of Product Management at Palo Alto Network.

STRONGER 2023: Cybersecurity and AI: Unraveling the Gordian Knot

Live Demo: Empowering Cyber Risk Analysis with the FAIR Risk Model

CyberSaint’s Manifesto: Becoming The Leader in Cyber Risk Management - EMEA

This session from STRONGER 2023 explored the gap between IT professionals and everyday users and details non-technical mitigations for successful user cyber education.

STRONGER 2023: Beyond Tools and Policies: Securing Together

Developing a cyber risk management strategy can be a difficult task. One of the hallmarks of the NIST CSF is the flexibility and adaptability of the framework with other standards and guides professionals to build a proactive and mature cyber risk process. Discover best practices for using the NIST CSF to guide your cyber risk management program and identify efficiencies by standardizing on this comprehensive framework and leveraging CyberStrong to develop a transparent and insightful narrative around cyber risk.

Maximizing Efficiency for NIST CSF and Executive Reporting Using CyberStrong

In the rapidly evolving landscape of cybersecurity, organizations face an ever-growing array of threats that demand proactive risk management strategies. This webinar delves into the critical importance of cyber risk remediation, emphasizing the need for a comprehensive approach to safeguarding digital assets. Participants will explore the advantages of leveraging risk modeling as a powerful tool for identifying, assessing, and prioritizing potential threats.

The session will walk through the CyberStrong platform and review the simple and intuitive process of modeling cyber risks in the platform based on your selected model. In today’s webinar, we will focus on the NIST 800-30 model and deliver insights into how this framework serves as a practical guide for systematically assessing and managing cybersecurity risks.

By the end of this session, you’ll see in real-time how easy it is to assess your risks in CyberStrong with patented automation that equips you to identify, manage, and remediate cyber risks effectively.

Mastering CRQ: A Deep Dive into NIST 800-30 and CyberStrong

If events like Solarwinds have taught the cybersecurity community anything it is that businesses are no longer islands, they’re ecosystems and vendor risk management cannot be ignored in the digital age. The challenge for many organizations is not whether to assess vendors, but how to go about it. Join CyberSaint VP of Solutions Architecture, Steve Torino, as he dives into the best practices for developing vendor risk assessment questionnaires and how best to assess your vendor ecosystem.

Best Practices for Developing a Vendor Risk Questionnaire

Cyber Security

Risk Assessment

Supplier Risk

Vendor Risk

Vendor Risk Management

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

Enterprise applications have become a crucial piece of infrastructure for many businesses. The enterprise applications community on BrightTALK features the latest insights in enterprise application integration, enterprise application architecture and EAS software. Join the community to gain access to thousands of videos and webinars presented by recognized enterprise information systems experts and arm yourself with the knowledge you need to succeed.

Enterprise Applications

The IT project management community on BrightTALK includes thousands of IT project and portfolio management professionals. Find relevant webinars and videos on agile methodologies, scrum strategy, project management processes and more. Attend live webinars or view on demand content presented by recognized thought leaders in the IT project management industry.

IT Project Management

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Best Practices for Developing a Vendor Risk Questionnaire

Presented by

About this talk

More from this channel