Information Cyber Security Planning for Governance, Risk and Compliance (GRC) Framework - Organization and Responsibilities
Information Cyber Security Planning for Governance, Risk and Compliance (GRC) is essential in this world of new technologies, cyber events, natural and manmade disasters. GRC refers to a company's coordinated strategy for managing the broad issues of corporate governance, enterprise risk management (ERM) and corporate compliance with regard to regulatory requirementsEnterprise IT Governance, Risk, Compliance is a systematic approach to managing Risk so that it remains secure. It includes people, processes, and IT systems by applying a risk management process.Learning Objectives Including a management system into managing Enterprise RiskAreas of Enterprise Risk ManagementISO standards family - for what purpose should each standard be usedImplementation Tips- costs involved, hiring a consultant, how long does it take, using toolsImportant benefits and the ways to present them to managementDocumentation required by the standardBenefits of implementationMS implementation frameworkKey elementsGet an overview of an audit of the implementation strategyAreas Covered Risk assessmentSecurity policyOrganization of information securityAsset managementHuman resources securityPhysical and environmental securityCommunications and operations managementAccess controlInformation systems acquisition, development, and maintenanceInformation security incident managementBusiness continuity managementComplianceCourse Level - IntermediateWhy Should You Attend Attend this session by our expert speaker, Dr. Michael C. Redmond, and learn Principles Effective IT Governance, Risk and Compliance in 2019 and beyond. Michael will help your organization to manage the complexities of Information Cyber Security GRC Planning such as areas covering Risk, Impact Analysis, Resiliency, and more. This session will enable you to gain knowledge about the implementation of a framework. You will receive valuable information that you can implement. This is a must in the new world that is facing new risks every year.
Single
Information Cyber Security Planning for Governance, Risk and Compliance (GRC) is essential in this world of new technologies, cyber events, natural and manmade disasters. GRC refers to a company's coordinated strategy for managing the broad issues of corporate governance, enterprise risk management (ERM) and corporate compliance with regard to regulatory requirements
Enterprise IT Governance, Risk, Compliance is a systematic approach to managing Risk so that it remains secure. It includes people, processes, and IT systems by applying a risk management process.
Learning Objectives
- Including a management system into managing Enterprise Risk
- Areas of Enterprise Risk Management
- ISO standards family - for what purpose should each standard be used
- Implementation Tips- costs involved, hiring a consultant, how long does it take, using tools
- Important benefits and the ways to present them to management
- Documentation required by the standard
- Benefits of implementation
- MS implementation framework
- Key elements
- Get an overview of an audit of the implementation strategy
Areas Covered
- Risk assessment
- Security policy
- Organization of information security
- Asset management
- Human resources security
- Physical and environmental security
- Communications and operations management
- Access control
- Information systems acquisition, development, and maintenance
- Information security incident management
- Business continuity management
- Compliance
Course Level - Intermediate
Why Should You Attend
Attend this session by our expert speaker, Dr. Michael C. Redmond, and learn Principles Effective IT Governance, Risk and Compliance in 2019 and beyond. Michael will help your organization to manage the complexities of Information Cyber Security GRC Planning such as areas covering Risk, Impact Analysis, Resiliency, and more. This session will enable you to gain knowledge about the implementation of a framework. You will receive valuable information that you can implement. This is a must in the new world that is facing new risks every year.