Getting Practical with Cyber Series: Testing and Validating Your Risk Controls
You want to understand the top cybersecurity risks impacting your firm, but the various types of testing and the technical speak from those responsible for conducting the testing can seem overwhelming. You’ve conducted vulnerability scanning, penetration testing and phishing testing. You’ve conducted extensive cybersecurity due diligence on your vendors and investments. Now what? In this webinar – the first in a three-part cybersecurity series – panelists will explain how to take your cybersecurity testing reports and filter through the noise to find what really matters. Learn how to distinguish between different testing techniques, and how to interpret key business and compliance risks.
- What are the critical risks?
- Turning findings into actionable recommendations
- Strategies to communicate cyber risks effectively in business terms to senior management
E.J. Yerzak, CISA, CISM, CRISC – Director of Cyber IT Services, CSS
Mike Farrell, CISA, CISM – Cybersecurity Consultant, CSS
Fill in & submit the form below to download this ComplianceCast™.
Subscribe to CSS Blog
CSS frequently publishes blog posts which are written by our team from their observations in the field, at conferences and through experiences with compliance professionals. These posts are designed to further knowledge and share industry best practices. Topics run the gamut, including Form ADV, cybersecurity, MiFID II, position limit monitoring, technology challenges and more. Complete and submit the brief form below to receive notifications when we publish new content.