Getting Practical with Cyber Series: Testing and Validating Your Risk Controls

You want to understand the top cybersecurity risks impacting your firm, but the various types of testing and the technical speak from those responsible for conducting the testing can seem overwhelming. You’ve conducted vulnerability scanning, penetration testing and phishing testing. You’ve conducted extensive cybersecurity due diligence on your vendors and investments. Now what? In this webinar – the first in a three-part cybersecurity series – panelists will explain how to take your cybersecurity testing reports and filter through the noise to find what really matters. Learn how to distinguish between different testing techniques, and how to interpret key business and compliance risks.

  • What are the critical risks?
  • Turning findings into actionable recommendations
  • Strategies to communicate cyber risks effectively in business terms to senior management

Speakers:
E.J. Yerzak, CISA, CISM, CRISC – Director of Cyber IT Services, CSS
Mike Farrell, CISA, CISM – Cybersecurity Consultant, CSS

Fill in & submit the form below to download this ComplianceCast™

Thank you!

Your download will appear below momentarily.

Download Now.


Subscribe to CSS Blog

CSS frequently publishes blog posts which are written by our team from their observations in the field, at conferences and through experiences with compliance professionals. These posts are designed to further knowledge and share industry best practices. Topics run the gamut, including Form ADV, cybersecurity, MiFID II, position limit monitoring, technology challenges and more. Complete and submit the brief form below to receive notifications when we publish new content.

Latest Content

Proposed Amendment to 13F – What This Really Means?

The SEC released a proposed amendment to Form 13F on July 10 to update the reporting threshold for institutional investment managers and make other targeted changes. The threshold has not been adjusted since the Commission adopted Form 13F over 40 years ago. New Proposed Reporting Threshold: The proposal would raise the reporting threshold to $3.5 … Continued

SEC Issues New Cyber Risk Alert to Financial Firms

Financial firms have a bigger target on their backs at the moment, according to a new risk alert issued July 10, 2020 by the Securities and Exchange Commission’s Office of Compliance Inspections and Examinations (OCIE).  This new risk alert on ransomware cautions investment advisers, broker-dealers, and investment companies that OCIE has recently observed a marked … Continued