Homepage Slideshow
Utilizing Security Ratings in TPRM
Earn 1.5 CPE credits by attending on Dec. 14th!
Streamlining GRC Controls to Optimize Cybersecurity
Watch Now On-Demand!
https://executiveitforums.org/10015-cpe-streamlining-grc-controls-to-optimize-cybersecurity#reg
Join us for some Data Privacy Essentials
Watch Now On-Demand!
Enriching Third-Party Risk Processes with Targeted Risk Intelligence
Watch Now On-Demand!
Effectively Communicate Cybersecurity to the Board
Now available on-demand!
Compliance Trends Impacting Risk Management
Watch now on-demand!
Ransomware Attacks: Trends & Compliance Lessons Learned
Watch Now!
Inside the Mind of a Hacker with Rachel Tobac
Watch Now!
Paradigm Shift: Using NIST Cybersecurity Principles to Drive Your Risk Program
Watch now on-demand!
https://executiveitforums.org/it-grc-forum/landing-pages/111621
Cybersecurity Tips for when Working from Home
Watch Now On-Demand!
https://executiveitforums.org/it-grc-forum/landing-pages/121720
Latest News
- US Treasury calls for closer supervision of fintech-bank relationships
- India FinTech Forum unveils 23 high potential fintech startups
- New York Fed and MAS test wCBDC for cross border payments
- Binance pulls out of FTX takeover
- Binance chief downplays CBDC threat to crypto
- OCC sets up fintech office
- Target Group hires Monzo’s Griffin as chief risk officer
- HSBC enlists Oracle for digital transformation
- CFA paper calls for ethical use of AI
- TrustBuilder updates identity management product
- FSB bids for greater convergence in cyber incident reporting
- BNP Paribas Asset Management releases ESG e-learning primer for clients and staff worldwide
- Banks risk losing 89% of SME business to fintech challengers
- Industry pushes back again on Basel Committee crypto plans
- SCA has led to fall in online card fraud - Barclaycard
- Banks prepare for cyber-battle to promote cybersecurity awareness
- IBM research underscores lack of cloud cohesion
- Allurity snaps up Aiuken Cybersecurity
- Revolut breach exposes data of over 50,000 customers
- Morgan Stanley hit with $35m penalty for device disposal failings
On-Demand
-
Streamlining GRC Controls to Optimize CybersecurityRecorded: November 17 | 2022 Attend
In today’s interconnected world of rapid data exchange, GRC Controls impact each and every part of an organization’s cybersecurity posture.
-
Data Privacy EssentialsRecorded: November 3 | 2022 Attend
Data privacy is a key component in many strict regulatory mandates and a subject of increasing attention from the public at large. To avoid steep fines and attract and retain customers, organizations must ensure the privacy of all the sensitive data they process and store. But what's the best path to achieving that goal?
-
Enriching Third-Party Risk Processes with Targeted Risk IntelligenceRecorded: October 20 | 2022 Attend
With organizations having an average of over 5500 third parties in their vendor ecosystem, third-party risk management (TPRM) can be overwhelming and costly. Manual approaches to TPRM research and analysis are no longer appropriate. Targeted risk intelligence and automated data feeds can enable organizations to recognize risk sooner and respond with increased operational resilience, reducing the manual burden and cost.
-
Understanding the Modern Attack Surface: IoT and Supply Chain RiskRecorded: October 6 | 2022 Attend
The corporate attack surface is rapidly expanding: how can security professionals get ahead of the curve and create resilient organizations?
-
Preparing for Ransomware with the NIST Cybersecurity FrameworkRecorded: September 22 | 2022 Attend
Ransomware is a type of malicious attack where attackers encrypt an organization’s data and demand payment to restore access. It disrupts or halts an organization’s operations and poses a dilemma for management: pay the ransom and hope that the attackers keep their word about restoring access and not disclosing data, or do not pay the ransom and restore operations themselves. The methods used to gain access to an organization’s information and systems are common to cyberattacks more broadly, but they are aimed at forcing a ransom to bepaid.
-
Utilizing the NIST Framework for Full-Cycle Privilege OrchestrationRecorded: September 8 | 2022 Attend
A huge percentage of data breaches start with privileged credential abuse. There are often many privileged accounts that today’s overburdened IT security teams lose track of them. Stop leaving privileged accounts available for attackers to compromise and insiders to misuse! Instead, discover and remove them to achieve zero standing privilege (ZSP).
-
How to Effectively Communicate Cybersecurity Risks to the BoardRecorded: August 25 | 2022 Attend
It has always been challenging for security leaders to communicate the value of cybersecurity investments to board. Giving transparency about the weakness of organizations can be pretty uncomfortable but, it is essential to increase the Cybersecurity level. As an IT Manager, CISO, or CSO, your understanding of risk and compliance is intimate and understood in infosec terminology. You must offer board executives a set of data to help them make informed decisions based upon the optimal management.
-
Top Regulatory & Compliance Trends Impacting Risk ManagementRecorded: July 28 | 2022 Attend
The COVID-19 pandemic and increased geopolitical uncertainty has placed new priorities and responsibilities on the shoulders of risk and compliance professionals. Executives have realized that stronger ERM programs are required to remain competitive in this new era. Risk leaders, in turn, are looking beyond the urgent ERM measures required to handle the pandemic to how an effective enterprise risk management program can be a competitive differentiator for their companies.
-
Cyber Risk Quantification: Turning the Dream into RealityRecorded: July 14 | 2022 Attend
Cyber Risk Quantification can help CISOs financially quantify risk for senior executives, identify program gaps, and prioritize areas for improvement. Unfortunately, despite the obvious benefits, many CISOs are struggling to implement cyber risk quantification (CRQ)
-
Optimizing Controls to Mitigate Cybersecurity RisksRecorded: June 23 | 2022 Attend
No matter how mature a cybersecurity program is, there always remains room for improvement. Digital transformation continually expands the scope of IT processes, and organizations continue to grapple with resource, staffing, and skill challenges.
-
Data Privacy 101: Using Technology to Close the GRC Gap
Recorded: May 19 | 2022 Attend
Data privacy continues to make headlines and be a concern for many organizations. According to a recent study by CNBC, 23.1% of the 39 CFOs see cyber-attacks as the number 1 external risk to their company.
-
Aligning Third-Party Risk Controls to Your Security FrameworkRecorded: April 21 | 2022 Attend
According to one study by Ponemon Research Institute, about 53% of organizations say they’ve had at least one third-party breach in the past two years with an average cost of $7.5 million dollars, and the majority of organizations still have immature third-party risk programs. As a result many organizations today are making deep investments into cybersecurity and implementing third-party risk assessment frameworks (such as NIST and ISO) to drive risk management and protect against constantly advancing cyber attacks.
Visionaries
-
Steve Durbin is Vice President of the Information Security Forum (ISF). His main areas of focus include the emerging security threat landscape, Cyber ...
-
Adrian Lane is the CTO and Security Analyst at Securosis. He is a Senior Security Strategist with 25 years of industry experience. He brings...
-
Rebecca Herold, CISM, CISSP, CISA, CIPP, FLMI. Rebecca is an information privacy, security and compliance consultant, author and instructor who has pr...
-
Ed Ferrara is Principal Analyst for Security and Risk at Forrester Research. He contributes to Forrester's offerings for the Security & Risk Profe...
-
Chris McClean contributes to Forrester's offerings for the Security & Risk professional, leading the company's coverage of governance, risk, and c...
-
Derek Brink is the Vice President and Research Fellow at Aberdeen group. He is a senior high-tech executive experienced in strateg...
-
John Kindervag is a Senior Analyst at Forrester serving Security & Risk professionals. He is a leading expert on wireless security, network s...
-
Branden Williams has over fifteen years of experience in technology and information security with a formidable background in the majority of the techn...