Name: What Every IT Pro Needs To Know About Cyber Risk Insurance
Start: 2022-09-22T02:00:00Z
End: 2022-09-22T02:00:40.000Z
Location: BrightTALK
Rating: 0

Compliance is hard. But you can reduce the risk, complexity and costs associated with IT compliance and information security. Our presenters and resources are here to help you learn how you can shield your organization against compliance violation fines, lawsuits, and monetary loss. And how you can automate compliance and security without adding more staff.

In this presentation, Max Pruger, General Manager, Compliance Manager GRC. is joined by Jon DePerro, Former NSA counterintelligence special agent, to share their insights on how to strengthen your IT security and compliance program. Jon specializes in risk assessments, mitigation development, compliance and security. He is also an expert on mitigating risks associated with IT/cyber, money laundering, VIP protection, travel and physical security/anti-terrorism.

During the webinar, Max and Jon will discuss how to:

* Compile all of your IT Policies and Procedures in a single document
* Define the IT requirements needed to execute the policies
* Identify what common control set is needed to meet all of your IT requirements
* Create a gap analysis between what you are doing, and what you should be doing
* Automatically generate a dynamic action plan to address the gaps
* Create an Auditor’s Checklist for internal or external oversight
*Produce complete evidence of compliance on-demand, with the click of a button

We will also give you a brief tour of Compliance Manager GRC — an affordable and easy-to-use platform. It provides an integrated approach to information privacy and security assurance. It even allows you to track and manage all of your IT requirements at the same time and in the same place.

Compliance Management: The Cornerstone to Security Assurance

HIPAA (the Health Insurance Portability and Accountability Act) is a complex regulation with tons of IT policies and procedures you must follow to meet all the requirements. And, maintaining HIPAA compliance is a "team sport" that also includes company stakeholders who are gatekeepers of needed information or subject matter experts.

Whether you outsource it, or handle it in-house, properly managing the IT requirements of HIPAA can consume enormous resources . . . unless you manage it as part of an overall Information Security Assurance program.

In this special briefing, noted HIPAA compliance guru Mike Semel, will talk about HIPAA through the lens of the IT professional. He'll explain why it is so essential to be on top of your game to avoid costly fines and lawsuits. And, show you how many of the HIPAA IT policies and procedures overlap with the requirements with other standards you must comply with, including your cyber liability insurance policy terms, other government or industry standards, or your own internal IT policies and procedures.

We'll then talk about Compliance Manager GRC -- the first affordable compliance platform that is purpose-built to drive more efficiency into your IT organization. You'll see how quick and easy it is to:

-- Identify the IT controls required to meet all your IT requirements
-- Conduct rapid baseline assessments
-- Generate dynamic plans of actions and milestones to achieve compliance
-- Produce evidence of compliance literally at the click of a button

How To Stop Managing HIPAA Compliance In A Vacuum

Max Pruger, GM of Compliance, discusses the ins and outs of PCI compliance. Learn how you can address the many steps and procedures to achieve and maintain PCI compliance for your organization or your clients.

During this live webinar, we’ll cover:
• An introduction to the PCI (Payment Card Industry) Data Security Standard
• The issues and challenges organizations face to remain compliant with these standards
• Potential risks and penalties you face in the event of a breach
• A brief demo of Compliance Manager GRC and how it can help you master PCI at the same time as you manage any other compliance standards

Supercharge Your PCI Compliance Process as Part of Your IT Security Program

IT professionals who work in small to medium sized organizations are under increasing pressure – and scrutiny – to comply with IT requirements coming down from multiple fronts.

For most multi-functional IT professionals, it's nearly impossible to keep track of it all – to say nothing about producing evidence of that compliance in the event of an audit, lawsuit or breach. 

The good news is that the next generation of IT compliance management software is affordable, easy-to-use, and takes an integrated approach to information privacy and security assurance. You can track and manage all of your IT requirements at the same time, and in the same place. And, you can automatically generate the evidence you need to document your compliance in the event of an audit, lawsuit or data breach. 

In this session we will show you how to get it all done with less headaches and in a faction of the time using Compliance Manager GRC:

• Compile all of your IT Policies and Procedures in a single document
• Define the IT requirements needed to execute the policies
• Identify what common control set are needed to meet all of your IT requirements
• Create a gap analysis between what you are doing, and what you should be doing
• Automatically generate a dynamic action plan to address the gaps
• Create an auditor’s checklist for internal or external oversight
• Produce complete evidence of compliance on-demand, with the click-of a button.

There’s even built-in guidance for every requirement, and a built-in procedure for every control – it’s like having your own virtual compliance officer in a box. Watching this session could be a game-changer . . . even a life-changer for multi-functional IT pros who are sitting on the security and privacy hot seat.

New Advances in Information Security Assurance and Compliance for IT Departments

This webinar is designed for IT Professionals who are struggling to keep up with corporate demands for:

• Tighter security controls
• Better visibility on active network risks and issues
• Updated policies and procedures manuals
• Compliance with ever-changing government and industry IT requirements
• Adherence to IT requirements from cyber risk policies and other contracts
• Oversight of vendor risk management
• Employee Security Awareness Training

The modern IT department has evolved well beyond simple computer network reliability, availability and end-user support. 
Today, every part of your organization – from HR, to Finance, to Operations, to Sales & Marketing – has separate demands that are eating away at your IT Department resources. Collectively, they create a complex and growing beast of demands that can easily get out of control – creating increased risk of network failure, declined productivity and worst of all, loss of data due to a security breach.

In this webinar we’ll show you how to get control of the beast, and emerge as the master of your IT environment, by using a purpose-built platform to execute the Cybersecurity Framework (CSF) developed by the National Institute for Standards and Technology (NIST). 

As part of this live presentation, we'll share important IT security best practices, and the tools and procedures that will ensure – and document – that you are meeting every IT requirement that your organization throws at you.

Tame The IT Compliance Requirements Beast Growing Inside Your Organization

The question is not IF one the networks you manage get hacked -- it's which network, when, and how much the breach will cost. That's why it's so essential that anyone responsible for IT security understands what kind of cybersecurity risk insurance they have, and what specific IT requirements are included in the policy terms.

Insurance companies will rigourously audit your network after a breach, and if you can't prove that you've been meeting every requirements in their policy agreement,  they won't pay out on the claim! . . .And it could be your neck on the line!

Our guest presenter is cyber insurance expert Kirsten Bay, CEO of Cysurance, who discusses :

• What are the different types of cyber risk insurance policies that are available
• What types of IT disasters can be covered beyond just cyber crime
• What are the typical IT requirements that you can expect to find in almost any cyber risk policy
• What "gotchas" to look out for that can be buried in cyber risk policies
• How to explain to key decision-makers the need for a cyber risk policy if none exists.

The presentation also includes a quick demonstration the Compliance Manager GRC, an affordable and automated compliance management platform that can be used to track insurance policy compliance automatically as you manage all of your other IT requirements, regardless of source.

What Every IT Pro Needs To Know About Cyber Risk Insurance

Compliance

Cyber Risk Management

Cyber Insurance

Cyber Attacks

cyber risk

IT Security

Cyber Crime

Cyber Security

Risk Management

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

What Every IT Pro Needs To Know About Cyber Risk Insurance

Presented by

About this talk

More from this channel