Executive – РИСК-АКАДЕМИЯ – АНО ДПО ИСАР

Cybersecurity in the post Covid workplace – stress testing your defences – Technology

riskacademy — Thu, 10 Dec 2020 04:35:01 +0000

To print this article, all you need is to be registered or login on Mondaq.com.

WHO SHOULD READ THIS

Business Owners, CEO’s, CFO’s, CIO’s, CISO’s,
Executive Managers, Insurance and Risk Managers.

THINGS YOU NEED TO KNOW

Cybersecurity must be addressed in the same way as any other
business risk to protect critical processes and functions and to
ensure business continuity.

A robust cybersecurity framework should be supported by a
carefully selected policy of cyberinsurance.

Stress testing your cybersecurity framework is essential to
ensure that your response plans will work in a crisis.

WHAT YOU NEED TO DO

Act now to review your cybersecurity framework and
cyberinsurance policy.

The emergence of the Covid pandemic in early 2020 has had a
profound effect on the way we work and that effect looks set to
continue with more businesses allowing staff greater flexibility to
work outside of the traditional workplace.

This has given rise to a range of Cybersecurity issues that all
modern businesses going down that path must address in order to
remain successful and build customer trust in the digital…

Managing an Underperformer Who Thinks They’re Doing Great

riskacademy — Wed, 02 Dec 2020 15:53:35 +0000

Executive Summary

An underperformer on your team may not realize they have an inflated view of their own less-than-stellar performance. Clearer feedback or stronger supervision may help them thrive, but it’s also possible that they’re not able to recognize that they’re struggling. In any case, managers who fail to address these unaware underperformers risk losing what could be valuable team members or worse, demotivating the rest of their team. Determining the cause of their lack of awareness will either help you figure out what support they need in order to improve, or…

APRA Unveils Details of New Cyber Security Strategy

riskacademy — Fri, 27 Nov 2020 00:26:01 +0000

Starting next year, APRA will be asking boards to engage an external auditor to comprehensively review their compliance with CPS 234 on information security.

APRA has announced a new Cyber Security Strategy for 2020 to 2024, aimed at lifting cybersecurity standards and introducing heightened accountability where companies fail to meet the requirements.

The new Cyber Security Strategy is designed to complement Australia’s Cyber Security Strategy 2020, released in August, and builds on existing prudential requirements including those under CPS 234 on information security, which came into force in July 2019.

“Our mission is to make a step change in Australia’s financial system cyber resilience. Our vision is for a financial system that can stand firm against cyber-attacks,” said APRA Executive Board Member Geoff Summerhayes in an industry forum on Thursday (26 November).

Last November, Summerhayes indicated that APRA had plans to take a tougher approach to ensure financial firms remained resilient to cyber threats, including through additional guidance on service provider management, among other measures.

To date, no APRA-regulated bank, insurer or…

Cyturus Technologies Announces The Launch Of New Website And Branding Campaign

riskacademy — Tue, 24 Nov 2020 07:09:38 +0000

The new branding and website from Cyturus highlight its unique Adaptive Risk Model (ARM), including its greatly expanded platform capabilities and features. In addition, Cyturus is also promoting The Cyber Risk Tracker (CRT), which enables users to continuously manage cyber risk while providing visibility to the executive suite.

Fremont, CA: Cyturus, a top-rated risk assessment firm, has partnered with Cyber Theory, a full- service cybersecurity marketing advisory firm, so as to introduce its bleeding-edge risk management platform to IT professionals tasked with managing cyber risk as well as keeping their organizations safe. Cyber Theory offers deep marketing expertise in the world of cybersecurity, providing a network of relationships encompassing all aspects of cybersecurity, in addition to the related fields of fraud, compliance, audit, and risk management.

How to Safely Restart Elective Surgeries After a Covid Spike

riskacademy — Thu, 19 Nov 2020 16:36:09 +0000

Executive Summary

The pandemic has wreaked havoc with health care systems’ surgical staffs. Some clinicians are fatigued and stressed, and many are out of practice. They are having to contend with large backlogs of procedures that were postponed. And they have to contend with the ongoing pandemic, with all its uncertainties. To keep surgical staffs and patients safe during these difficult times, health systems should take four steps: make risk visible; ensure that staffs are abiding by existing procedures and protocols and adopting new ones when the need arises; double down…

Cyturus Technologies, Inc. launches new website and branding campaign to reflect cutting-edge approach to cyber risk quantification

riskacademy — Wed, 18 Nov 2020 00:29:54 +0000

DALLAS, Nov. 17, 2020 /PRNewswire/ — Top-rated risk assessment firm, Cyturus has partnered with Cyber Theory, a full- service cybersecurity marketing advisory firm, in order to introduce its cutting-edge risk management platform to IT professionals tasked with managing cyber risk and keeping their organizations safe. Cyber Theory provides deep marketing expertise in the realm of cybersecurity, providing a network of relationships spanning all aspects of cybersecurity, in addition to the related fields of fraud, audit, compliance, and risk management.

The new website and branding from Cyturus highlights its unique Adaptive Risk Model (ARM), including its greatly expanded platform features and capabilities. In addition, Cyturus is also promoting The Cyber Risk Tracker (CRT) which allows users to continuously manage cyber risk while providing visibility to the executive suite.

“Our Platform allows users to gain visibility into ever-changing cyber security risks while simultaneously managing the maturation process.” – Robert Hill, founder and CEO

Today Cyturus (risk management as a service) offers the industry’s only subscription mitigation service designed to remediate high-risk…

Making Sense of the AI Landscape

riskacademy — Tue, 17 Nov 2020 14:23:25 +0000

Executive Summary

As more and more companies incorporate AI tools into their operations, business leaders need to find ways to adapt. But the term “AI” in fact covers a huge spectrum of different things. How can leaders start to make sense of this vast array of new systems? The authors analyzed over 800 different AI tools and found that the problems they solved fell into four distinct categories: rote tasks, simple tasks that require ethical decision-making, creative tasks with limited ethical implications, and tasks that require both creativity and ethics. Armed with…

When Managing Through Ambiguity, Develop a Clear Vision

riskacademy — Mon, 16 Nov 2020 18:19:50 +0000

Executive Summary

With so much up in the air during the Covid pandemic, leaders are being asked to simultaneously navigate uncertainty (when we don’t have the information we need) and ambiguity (when the best outcome is a matter of interpretation). We can’t reduce uncertainty to zero, but we can arm ourselves with as much information as possible to help us make a decision. With ambiguity, however, there is no “right” or “wrong” decision; our choice ultimately depends on our values. So when you need to navigate ambiguity, the best thing to do is to start with…

[Virtual Event] Executive Roundtable Series in Canada: Digital Transformation after COVID-19: Compliance, Security and the Cloud – December 10th, 10:00 am – 11:30 am EST | Epiq

riskacademy — Wed, 11 Nov 2020 17:58:29 +0000

December 10th, 2020

10:00 AM – 11:30 AM EST

Participate in thoughtful discussions with Epiq and Microsoft on challenges, learnings and best practices on privacy, risk and compliance.

Epiq and Microsoft would like to personally invite you to join a 90-minute Risk & Compliance Executive Roundtable session. We’re bringing together the top Privacy, Risk and Compliance leaders in your segment to share best practices, learnings and experiences, while exploring how to best navigate these uncertain climates.

Sessions will be led by senior leaders at Epiq & Microsoft, Kevin Magee, Chief Security & Compliance Officer at Microsoft Canada, and Tom Bonk, Vice President of Information Governance at Epiq.

Secure your seat now to participate and engage in discussions with your peers on challenges, learnings and…

Audit committee best practices for understanding and acting on cyber-threats | Article

riskacademy — Thu, 05 Nov 2020 21:28:49 +0000

Disclosures related to the audit committee’s responsibility for cyber-security risk oversight have increased significantly over the past five years. Thirty-nine percent of S&P 500 companies made such disclosures in 2020, up from 19 percent in 2018 and 11 percent in 2016. Further, 28 percent of S&P 500 companies disclosed whether their board has a cyber-security expert in 2020, up from 14 percent in 2018 and 7 percent in 2016. There were also significant increases in these disclosures over the same timeframe for S&P mid- and small-cap companies.

“Traditionally, corporate cyber-security programs were primarily the responsibility of the chief information security officer (CISO), and boards only had a fundamental understanding because it was somewhat a ‘black box.’ But the need for visibility into the cyber-security spectrum by the executive team and board is increasing as boards are facing questions from investors, customers, and regulators, and they have to educate themselves.”

David Kessler, VP and Associate General Counsel, IT and Cyber-Security, BAE Systems

The barometer includes specific examples of best practice cyber-security disclosures, which provide…