Participants will understand, explore and develop practical techniques across:
- Introduction to audit theory / performance
- Integration of security policy and procedures in a company internal audit programme
- Risk assessment principles and application to cyber security
- Cyber risks emergency response plans drills and exercises
- Promotion of cybersecurity awareness and embedding a culture of cyber risk management
- Monitoring of a holistic and flexible cyber risk governance regime
- Evaluation of actual protection and detection measures in place
- Discussion related to implementation of (innovative) alternative measures
- Losses and impacts arising from security incidents
- Recovery and Business Continuity from cyber security incidents
- Management Reviews and evaluations of Cybersecurity systems, measures, preparedness, and performance
- Practical cases/examples
