Homepage Slideshow
[Earn 1 CPE] Best Practices for GRC Implementation and Enterprise Security
Join our panel of experts on June 5th and gain 1 CPE Credit by attending this complimentary webinar!
Digital GRC: Innovations for Early Identification and Management of Risk
On-Demand!
Critical Actions to Finalize Your GDPR Compliance Program: Part 2
Now available for viewing on-demand!
White Paper: Taking Command of Your GRC Journey
Download Now!
Gain a Birds Eye View of Enterprise GRC
GRC Evolution in Digital Enterprises as ERM and Cyber Security Converge. Watch Now On-Demand!
Key Steps to Implement & Maintain PCI DSS Compliance in 2017
Now On-Demand!
White Paper: Effectively Managing Privacy Risk in Processing Personal Data
Download Now!
Evolving an Enterprise Risk Management Program
Watch this 5 Star Rated webinar Now On-Demand!
Striving for Data Security in the Cloud
IT Security & Privacy Governance in the Cloud.
http://www.executiveitforums.org/index.php?option=com_content&view=article&id=7247:rsvp&catid=438
Latest News
- BofE pushes for minimum service level from banks hit by IT failures
- Dixons Carphone breach compromises 5.9m customer cards
- FS-ISAC sets up global cyber forum for central banks and regulatory authorities
- Australian banks shut down career pages after data breach at supplier
- Cyberthreats Increasing But Shifting, With Ransomware Attacks Down 17 Percent
- ICA Audit sets out to innovate solutions for the risk management market by paving the way for standardisation and the global promotion of best practice
- BMO and Simplii say fraudsters may have accessed customer data
- Updates to our Privacy Policy and Terms of Use
- US G-SIB goes live on AxiomSL’s regulatory platform to meet multi-jurisdictional capital and statistical reporting
- US tech firms form alliance to drive bank data sharing
- Hackers steal millions from Mexican banks
- Securities regulators to set up Fintech Network and ICO framework
- Bank of Canada seeks to improve collaboration in fight against cyberattacks
- Fiserv partners Rippleshot on early data breach detection system
- FS firms ramp up cybersecurity investment
- CBA lost tape drives on 19.8 million accounts, but decided not to notify customers
- Mexican banks moved to alternative network as hackers target real-time payments system
- UK cryptocurrency bodys calls for regulatory intervention to legitimise the market
- Draft US Faster Payments Council governance framework released
- Former SunTrust employee may have stolen information on 1.5m customers
On-Demand
-
Enabling Cybersecurity: Ignite Your ERM ProgramRecorded: March 22 | 2018 Attend
Effective risk management is critical for every organization, especially in the current era of increasingly frequent and complex cyber threats. Organizations with the ability to detect changes across global IT environments in real time can better prevent and respond to malicious acts such as ransomware/malware attacks and configuration tampering.
-
GDPR Compliance MasterClassRecorded: April 24 | 2018 Attend
The GDPR is the most significant change in data privacy regulation in more than 20 years. It comes into force on 25 May 2018 and will impact all businesses that process personal data or businesses that process personal data of EU citizens even if they are not in the EU. Obligations for compliance will affect both controller and processors and regulators will get increased enforcement powers and the right to impose fines of up to 4% of global turnover for both data breaches and infringements of the law.
-
Critical Actions to Finalize Your GDPR Compliance Program: Part 2Recorded: January 30 | 2017 Attend
The new EU General Data Protection Regulation (GDPR) rule looms and will take affect in May 2018, but only a third of companies are on track to be compliant by the due date. GDPR is the most significant change in data privacy regulation in more than 20 years. It represents an extraordinary shift in the way businesses will be expected to operate when they gather, process, maintain, and protect customer data. Any organization that retains information of EU citizens must be in compliance or face huge fines of up to 4% of worldwide turnover.
-
A Tactical Guide to Reducing Your Data Breach RiskRecorded: August 29 | 2017 Attend
Over 90% of the world’s data has been generated in the last few years. Accompanying this rapid growth in data comes exponential risks, as witnessed by the spike in cyber attacks of which no organization seems immune. The financial rewards gained by the perpetuators of cyber attacks is blatant, and this is driving continued attacks on companies containing massive amounts of consumer data. For these companies securing data is only half the battle. The risks can be greater when data is transmitted externally, hence it is critical that organizations know where sensitive data is going, how it is being transmitted, and how it is being handled and stored.
-
A Data Security Survival Guide in an Interconnected WorldRecorded: October 25 | 2017 Attend
As the number of internet-connected devices skyrockets into the billions, a data security strategy is an increasingly important part of any organization’s ability to manage and protect critical information. Enterprises are migrating to the cloud in droves, however, protecting data in the cloud remains a challenge as employees push to access cloud apps from any device, anywhere. In the last year alone, 1 in 3 organizations were hacked more than 5 times, and with the increased number of attacks the financial cost of security incidents is also rising.
-
Digital GRC: Innovations for Early Identification and Management of RiskRecorded: November 16 | 2017 Attend
Digitization has become deeply embedded in enterprise strategy, as nearly all businesses and activities have been slated for digital transformations. The significant advantages of digitization, with respect to customer experience, revenue, and cost, have become increasingly compelling, and we are starting to see digital transformations in risk create real business value by improving efficiency and the quality of risk decisions.
-
Critical Actions to Finalize Your GDPR Compliance Program: Part 1
Recorded: December 12 | 2017 Attend
The new EU General Data Protection Regulation (GDPR) rule looms and will take affect in May 2018, but only a third of companies are on track to be compliant by the due date. GDPR is the most significant change in data privacy regulation in more than 20 years. It represents an extraordinary shift in the way businesses will be expected to operate when they gather, process, maintain, and protect customer data. Any organization that retains information of EU citizens must be in compliance or face huge fines of up to 4% of worldwide turnover.
-
Orchestrating Effective IT Risk Management Across the Lines of Defense
Recorded: August 8 | 2017 Attend
Today’s IT risk environment is more threatened than ever thanks to the growth in sophisticated cyber attacks and security vulnerabilities. Now, complex, hard-to-detect attacks could bring down not just a single institution but also large parts of the internet and the financial markets. Organizations need an intelligent approach when it comes to assessing IT risk and managing compliance.
-
Data-Centric Security for GDPR ComplianceRecorded: June 27 | 2017 Attend
In today’s threat landscape, traditional approaches to securing data are falling short. Since 2015 we have seen some of the largest data breaches ever and it is clear that no industry or organization is immune from cyber attacks. The threat landscape is increasingly dangerous, while new technologies are distributing sensitive data farther across locations, devices and repositories. Starting in May 2018, enforcement will kick in on the European Union’s General Data Protection Regulation (GDPR), a move that could have a stronger privacy/security standardization effect than any technological effort has to date. Globalization efforts will make GDPR compliance essential for global companies wherever they are located.
-
Strategies for Effective 3rd Party Risk Management
Recorded: May 23 | 2017 Attend
The challenges that organizations face today are increasingly more complex than in the past. The constant change of the global economy, dynamics of business risks and opportunities, and an increased threat of cyberattacks add complexities we’ve never faced. As organizations rely on more and more third parties to grow and thrive, they’re exposed to higher levels of risk, and regulators are focused on the need for organizations to manage 3rd party risk more effectively.
-
Streamlining Your Data-Security Program to Meet Regulatory Change
Recorded: April 4 | 2017 Attend
Data security and the challenge of data protection is increasing in scope and difficulty. The massive volume of data that businesses are collecting is growing exponentially, and managing compliance delivery is a daunting task with huge negative consequences for getting it wrong. While organizations have long needed to safeguard intellectual property and confidential information, changes in information technology and business models introduce new threats, and new regulations. Governments and industry bodies are imposing new regulations to motivate organizations to protect the privacy and confidentiality of information. Responsibilities can vary widely by region and by industry, and staying on top of an ever-shifting regulatory landscape is complex and challenging, but it isn't impossible.
-
Key Steps to Implement & Maintain PCI DSS Compliance in 2017
Recorded: Feb. 28 | 2017 Attend
In today’s digital landscape, it’s much easier for criminals to access sensitive payment card data, not only gaining direct access to a consumer’s available funds, but also their personal identity. With cyber attacks becoming much more advanced, the PCI DSS standard has been forced to adapt to address these new threats.
Visionaries
-
Steve Durbin is Vice President of the Information Security Forum (ISF). His main areas of focus include the emerging security threat landscape, Cyber ...
-
Adrian Lane is the CTO and Security Analyst at Securosis. He is a Senior Security Strategist with 25 years of industry experience. He brings...
-
Rebecca Herold, CISM, CISSP, CISA, CIPP, FLMI. Rebecca is an information privacy, security and compliance consultant, author and instructor who has pr...
-
Ed Ferrara is Principal Analyst for Security and Risk at Forrester Research. He contributes to Forrester's offerings for the Security & Risk Profe...
-
Chris McClean contributes to Forrester's offerings for the Security & Risk professional, leading the company's coverage of governance, risk, and c...
-
Derek Brink is the Vice President and Research Fellow at Aberdeen group. He is a senior high-tech executive experienced in strateg...
-
John Kindervag is a Senior Analyst at Forrester serving Security & Risk professionals. He is a leading expert on wireless security, network s...
-
Branden Williams has over fifteen years of experience in technology and information security with a formidable background in the majority of the techn...