Managerial Primer for Ensuring Information Security

Website https://www.traininng.com/webinar/-200703live?channel=ourglocal-march_2019_SEO | Edit Freely

Category online training courses for hr professionals,online training programs for hr professionals, HR Training and Development

Deadline: March 27, 2019 | Date: March 27, 2019

Venue/Country: Online Event, U.S.A

Updated: 2019-02-28 16:04:10 (GMT+9)

Call For Papers - CFP

Usually, a formal ISG program is required to promote information assets safeguarding.ISG programs should ensure the Control Objectives for Information and related Technology (COBIT) framework confidentiality, integrity, availability, compliance, and reliability information criteria compromise does not occur through gaps in controls.

Therefore, the information security program and associatedsystems, processes, and activities need regular quality and compliance assessments. Monitoring and evaluating information security drives assurances provided or obtained through due care and due diligence as well as enables managerial fiduciary oversight expectations fulfilment. Planning and organizing are essential to organizational cohesiveness.

ISG usually occurs at different organizational strata, with team leaders reporting to and receiving direction from their managers, with managers reporting up to an executive, and the highest-level executive conferring with and receiving instruction from the entity's oversight committee.

Information that indicates deviation from targets will usually include recommendations for action requiring endorsement by the entity's oversight layer. Transparently, this approach is ineffective unless strategies, objectives, and goals development and deployment occur first within the entity's organizational structure.

Within an enterprise's organizational structure, providing acceptable service delivery necessitates the installation of an effective support system.

Information security service delivery and support may range from operational protection deployment to crisis response training. However, assessing changes in, and maintenance of,existing systems are critical security service components contributing to delivering value.

Required information protection changes and maintenance inducement can occur through various problems encountered by users or deliberate attacks on the established information security architecture.

Why should you Attend

Instituting and sustaining information security governance (ISG) requires comprehensive planning and organizing; robust acquisitions and implementations; effective delivery and support; as well as continuous monitoring and evaluation to address the myriad of managerial, operational, and technical issues that can thwart satisfying an enterprise's declared mission.

Consequently, information security requires an adaptive balance between sound management and applied technology. Sound management enables assuring adequate asset safeguarding while applied technology can introduce efficiencies for addressing potential external or internal threats. Information security design, deployment, and assurance require dedication to continuous improvement to ensure optimum effectiveness and efficiency.

Whereby, confirmation of compliance with legislation, regulations, policies, directives, procedures, standards, and rules enable asserting superior ISG. Nonetheless, monitoring and evaluating the current state of implemented controls may take a variety of forms; including control self-assessments and information technology (IT) audits.

Furthermore, an IT auditor may not be the individual who executes an organization's information security internal control review (ICR). However, an IT auditor may subsequently assess an ICR for effectiveness and/or efficiency. In the regulatory arena, a negative finding, coupled with prompt corrective actions can mitigate civilly and criminal enforcement penalties, thereby potentially reducing or avoiding legal risks.

Areas Covered in the Session

ISG Social Responsibility

Data Protection Management

Alternative ISG Frameworks

Organizational Structure Considerations

ISG Effectiveness Measurement

Information Security Culture

Who Will Benefit

Audit Committee Members

Risk Management Managers

External Auditors

Internal Auditors

Chief Executive Officers

Chief Information Officers

Compliance Managers

Chief Information Security Officers

Information Technology Professionals

Control Self-Assessment Personnel

Speaker Profile

Robert E. Davis MBA, CISA, CICA (an invited Golden Key International Honour Society member) obtained a Bachelor of Business Administration degree in Accounting and Business Law and a Master of Business Administration degree in Management Information Systems from Temple and West Chester University; respectively. In addition, during his twenty years of involvement in education, Robert acquired Postgraduate and Professional Technical licenses in Computer Science and Computer Systems Technology. Robert also obtained the Certified Information Systems Auditor (CISA) certificate — after passing the 1988 Information Systems Audit and Control Association’s rigorous three hundred and fifty multiple-choice questions examination; and was conferred the Certified Internal Controls Auditor (CICA) certificate by the Institute for Internal Controls. Currently, Robert is a Doctor of Business Administration student specializing in Information Systems Management at Walden University.

Contact Info

Event link: https://www.traininng.com/webinar/-200703live?channel=ourglocal-march_2019_SEO

Traininng.com LLC

Email: traininngdotcomgmail.com

Phone: US: (510) 962-8903

Phone: Zurich: +41 - 43 434 80 33

Website : https://www.traininng.com