Name: Using a Framework to Guide an IT Security Review
Start: 2023-06-07T16:00:00Z
End: 2023-06-07T16:01:01.000Z
Location: BrightTALK
Rating: 0

AuditBoard is the leading cloud-based platform transforming audit, risk, compliance, and ESG management. More than 40% of the Fortune 500 leverage AuditBoard to move their businesses forward with greater clarity and agility. AuditBoard is top-rated by customers on G2, Capterra, and Gartner Peer Insights, and was recently ranked for the fifth year in a row as one of the fastest-growing technology companies in North America by Deloitte. To learn more, visit: AuditBoard.com.

In recent years, the number of privacy regulations has grown across the globe — and shows no signs of stopping. As companies frequently collect data from many sources (i.e., website visitors, employees, consumers, contractors, and/or patients), there is an ever-increasing need to manage and protect this personal data. For many organizations, managing privacy risk can seem daunting. In this webinar, learn how privacy metrics can help determine where the most impactful privacy risks exist. This will demonstrate ways to simplify the complicated landscape of privacy regulations through a privacy framework. Ultimately, you’ll learn how your company can establish a privacy framework and start monitoring privacy risk with metrics.

CPE: This is a webinar recording. Credits are not offered for on-demand viewing.

Establishing a Privacy Framework and Monitoring With Metrics

The Securities and Exchange Commission (SEC) recently adopted new rules to enhance and standardize public companies’ cybersecurity incident reporting and risk management disclosures.

These rules, effective in December of this year, represent a significant shift in the regulatory landscape. Public companies are required to disclose material cybersecurity incidents, their policies and procedures related to risk management, and information security governance, as well as the roles, responsibilities, and qualifications of the board when it comes to cybersecurity matters. 

Companies must act now to ensure they are prepared. See how forward-thinking audit, risk, and compliance teams are preparing for these new requirements.

CPE: This is a webinar recording. Credits are not offered for on-demand viewing.

Decoding the New SEC Cybersecurity Rules

Now more than ever before, IT systems are leveraged to process information relevant to financial statements. IT general controls (ITGCs) are designed to address the risks of inaccurately processing data. Most organizations are looking to gain efficiencies and automate ITGC testing, monitoring, and reporting while reducing the cost of compliance. Learn how to enable IT general control testing automation in this session and leverage technology to streamline these controls.

* CPE: This is a webinar recording. Credits are not offered for on-demand viewing.

How to Automate Testing, Monitoring, and Reporting for IT General Controls

Join us for an informative and insightful webinar as we delve into the rapidly changing world of Environmental, Social, and Governance (ESG) reporting. The Securities and Exchange Commission (SEC) has proposed new ESG requirements, drawing parallels to the impact that the Sarbanes-Oxley Act (SOX) had on financial reporting. As market regulators emphasize the importance of adopting ESG frameworks, companies are recognizing the need to streamline their financial reporting and comply with SEC and Public Company Accounting Oversight Board (PCAOB) control requirements.

This webinar will explore the latest updates from the SEC, including the recently introduced Corporate Sustainability Reporting Directive (CSRD) and other relevant frameworks. Our expert panel will provide valuable insights on how to effectively prepare and integrate existing frameworks and guidelines to meet the evolving regulatory landscape. We will discuss the implications of these changes on financial reporting, internal controls, and overall corporate governance.
    
* CPE: This is a webinar recording. Credits are not offered for on-demand viewing.

Navigating the Evolving Landscape of ESG Reporting: Insights and Best Practices

The EU is setting the global standard for artificial intelligence regulation with the recent unveiling of the AI Act, the world’s first proposal for comprehensive AI regulations. These new rules set a goal of ensuring that AI systems used in the EU are safe, transparent, traceable, non-discriminatory, and environmentally friendly.

The purpose of this regulation is to foster AI innovation while limiting the likelihood of negative outcomes. The penalty for violation is high—fines of up to €40 million or 7% of your company’s worldwide annual turnover. Do you know how your company will be impacted? Join us to break down the act into actionable priorities for your business to be sure you are ready when this law goes into effect.

CPE: This is a webinar recording. Credits are not offered for on-demand viewing.

Navigating the AI Act: Preparing for the Challenges of the Latest EU Regulation

Stay ahead of the evolving world of SOX compliance with this training session focused on emerging trends that are shaping the regulatory landscape. As SEC and PCAOB pronouncements continue to evolve and auditing of internal controls over financial reporting becomes more digitally enabled, it is crucial for organizations to stay informed about the latest developments and adapt their SOX program strategies accordingly. Gain valuable insights into the changing requirements, leading practices, and innovative techniques that can help organizations effectively navigate the complex world of SOX compliance.

CPE: This is a webinar recording. Credits are not offered for on-demand viewing.

Emerging Trends in SOX Compliance: Navigating the Evolving Landscape

For too many years now, we have witnessed untold numbers of self-inflicted failures at organizations around the world. These failures have devastating impacts on employees, investors, customers, suppliers, and communities. One critical common denominator of all these disastrous collapses is a troubled culture that lacks the executive leadership and constructive environment essential to an organization achieving its business goals in a healthy and ethical manner. Based on recent research by Richard Chambers and Cynthia Cooper, this webinar seeks to answer a key question: What role can internal audit leaders play in helping to foster a healthier and more cohesive culture within their organizations?

CPE: This is a webinar recording. Credits are not offered for on-demand viewing.

Internal Audit’s Role in Unlocking Culture as a Corporate Catalyst

As regulations expand amid today’s dynamic risk environment, including the new SEC ruling on cybersecurity disclosures, organizations struggle to stay in compliance and determine the most cost-effective methods to protect their business from emerging threats. Additionally, many organizations are still managing IT risks with an ad-hoc, reactive approach, and are lacking effective mitigating action plans, leaving them at elevated risk of a data breach or privacy violation. 
 
This session explores the benefits of an effective IT risk management program, provide steps teams can take to immediately begin addressing shortfalls and gaps in their program, and will lay out a framework for ensuring the successful implementation of these tactics.
 
Learning Objectives: 
1. Review the foundations of IT risk management including, best practices for identifying, assessing, and addressing risks.
2. Discuss historical and common pain points and bottlenecks and why and how to avoid them in your practice.
3. Learn three key forward-thinking practices to elevate and advance your IT ask management program.


CPE: This is a webinar recording. Credits are not offered for on-demand viewing.

3 Forward-thinking Practices to Manage IT Risk

The average cost of a data breach in the U.S. was over $9 million last year, according to IBM, and it’s only predicted to rise, making IT risk management an urgent issue for audit, risk, and compliance teams. The key to success in an effective IT risk management program is a strong IT control environment. This session will make setting up IT controls less daunting by exploring actionable best practices for conducting an IT risk assessment, including tactics to assess the right areas with greater precision. The expert speakers will also share proven ways to ensure control responsibilities are being performed appropriately to mitigate this critical risk area.


CPE: This is a webinar recording. Credits are not offered for on-demand viewing.

Strong IT Controls: Your IT Risk Program's Strategic Advantage

The operational agility and business resilience necessary to maintain sustainable growth require building a connected IT risk program that integrates GRC and business teams. However, many organizations lack the executive buy-in, shared data platform, and collaboration tools necessary to make this vision a reality. Whether you're a C-suite executive or a risk leader, this session will offer valuable insights and practical tips for building a more resilient and effective risk program at your organization.


CPE: This is a webinar recording. Credits are not offered for on-demand viewing.

Breaking Down Silos: 3 Steps to Build a Resilient IT Risk Program

Risk quantification is one of the biggest buzzwords in the market, but what does it really mean and when does it truly benefit your organization? In order to realize the value of cyber risk quantification, you must first understand the basics of how to leverage it. This session will debunk some of the most common myths about cyber risk quantification and provide you with the tools and knowledge you need to manage cyber risks more effectively at your organization.


CPE: This is a webinar recording. Credits are not offered for on-demand viewing.

Debunking the Myths About Cyber Risk Quantification

Join us for an annual update from the Chairman and CEO of The IIA Global, Anthony Pugliese. During this session, tailored for UK audit professionals, Anthony will share his vision for The IIA moving forward and what it means for all internal auditors. He will be accompanied by Liz Sandwith, Chief Professional Practices Advisor, CIIA, who will provide an update on the draft IIA Global Internal Audit Standards.

Take advantage of a live Q&A session at the end, moderated by David Hill, CEO, SWAP and Piyush Fatania, Head of Audit Risk Assurance and a member of the Council of Directors of the CIIA, to get all your questions answered and receive firsthand information from experts in the field.

CPE: This is a webinar recording. Credits are not offered for on-demand viewing.

Elevating the Impact of Internal Audit: A Glimpse Into the Future

The ability to assess and pivot as new risks are uncovered or emerge is a necessity for today's internal audit departments. Since traditional audit methodologies stifle this ability, agile auditing has become the de facto response for teams looking to be more nimble. Left unmentioned is that while agile methodology is well known within software development circles, many internal audit practitioners are unsure of where to begin with agile. Are scrum and kanban the best project management approaches? Or can we reimagine the possibilities of what agile means to audit? Join Melissa Pici, Senior IT Audit Manager at Syniverse to explore the possibilities of agile and how teams large and small can easily implement the practice to immediately begin delivering additional value and insights to executives and management.


CPE: This is a webinar recording. Credits are not offered for on-demand viewing.

Reimagining the Possibilities of Agile Audit

From war in Europe to surging inflation rates and other economic pressures, major geopolitical events have sent ripples across the globe and left many businesses struggling to keep pace. Despite rising geopolitical risk, this is still an area that internal audit doesn’t spend much time on. In this session, gain an understanding of geopolitical scenarios through six case studies covering the war in Ukraine, conflict involving China, climate change, cybersecurity, US politics, and more.


CPE: This is a webinar recording. Credits are not offered for on-demand viewing.

Navigating Geopolitical Uncertainty

As technology advances and cybersecurity grows in importance, compliance requirements continue to increase. In order to evolve the security compliance profession, we need a new way of performing compliance activities through automation. However, the path to compliance automation is challenging and time consuming — so where do you begin? 

During this session, we will discuss the required steps to build the foundation for continuous monitoring, the challenges security compliance professionals face on their path to success, and tangible best practices forward-thinking compliance teams can leverage as they build out their continuous monitoring program in today's ever-evolving cyber risk landscape.

CPE: This is a session recording. Credits are not offered for on-demand viewing by AuditBoard or ISACA.

ISACA Virtual Summit Session - Best Practices for Compliance Automation

Whether you are just starting to build an enterprise risk management (ERM) program or you have a mature program in place, integrating ERM into your business on a regular basis can be challenging. Learn how to build ERM into your day-to-day processes using technology.

CPE: This is a webinar recording. Credits are not offered for on-demand viewing.

How to Integrate ERM Into Your Business

Ethical resilience is often listed as one of the top attributes of high-performing internal auditors and audit leaders in organizations around the world. To learn and sustain trust in the organizations they serve, internal auditors must conform to the profession’s code of ethics, and they must also bring a strong moral compass to their role. Internal auditors must guard against “blind spots” - a temporary inability to see the ethical aspect of behavior or a decision being made. This session will explore how to identify/navigate blind spots and other challenges and opportunities as they model ethical behavior in their organization.

CPE: This is a webinar recording. Credits are not offered for on-demand viewing.

The Ethical Internal Auditor: Keeping an Eye Out for Your Blind Spots

As the financial services sector navigates an increasingly challenging risk and regulatory landscape, regulatory compliance pressures will continue to compound in 2023. Hosted by AuditBoard and CrossCountry Consulting, internal audit, internal controls, and enterprise risk experts in the financial services industry will discuss best practices for mitigating risk exposure and improving collaboration across the three lines. They will also share results from a recent financial services risk survey conducted to learn more about organizational risk structures, successful collaboration methods and tools, and the industry’s opinions on effectiveness of board oversight.

CPE: This is a webinar recording. Credits are not offered for on-demand viewing.

Finserv Risk: Synchronizing Collaboration to Strengthen Internal Controls

IT security doesn't have to be scary. You can do many controls-based reviews without deep expertise. In this session, you will come along on a real-life journey of how Virginia Tech's internal audit team uses several common IT security frameworks to conduct a basic and intermediate-level security controls review of endpoints, servers, and applications. We will focus on the practical and share the pitfalls we've learned along the way with the goal of providing as many resources as possible to help ensure your success.

CPE: This is a webinar recording. Credits are not offered for on-demand viewing.

Using a Framework to Guide an IT Security Review

IT Security

Compliance

Audit

Internal Audit

Cyber Security

IT Compliance

Application Management

Cyber Defence

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Information Technology

Get powerful emerging technology insights from influential experts. Connect with thought leaders and colleagues to get the most up-to-date knowledge on technologies like 3D printing, pervasive robotics, natural interfaces, connected everything and cognitive systems.

Emerging Technologies

The research and development community on BrightTALK brings together leading professionals in healthcare, technology and manufacturing to present on current topics in their fields. From big data in healthcare to online forensics training and medical research practices, the community is an exceptional resource for those looking to expand their knowledge. Be part of the conversation by joining the community and participating in interactive live webinars.

Research and Development

Internal audit and compliance professionals are facing increasingly stringent regulatory requirements when it comes to compliance reporting and internal control procedures. Join the audit and compliance community to learn best practices from thought leaders on topics such as regulatory compliance, internal audit checklists and audit program strategies.

Audit and Compliance

The accounting and finance community on BrightTALK features presentations from leading accountants and finance professionals. The accounting community includes tax planning strategies, QuickBooks webinars and other accounting webinars, while the finance community features presentations on financial capital regulations and forensic data analytics. Join the conversation by attending live financial and accounting presentations and connecting with industry thought leaders.

Finance

Get powerful insights to run your business. CEOs, CFOs, CMOs, COOs, CTOs and CIOs are among the leaders in this community who connect with peers and experts to grow their businesses.

CxO Strategy

In the business management community, commercial experts will be sharing webinars and videos on an array of subjects. From sales and marketing, to finance, productivity and growth, this content will help you stay up-to-date with the current economic environment and provide timely management insight to drive business growth.

Using a Framework to Guide an IT Security Review

Presented by

About this talk

More from this channel