Cybersecurity and Cybercrime: A Risk Management Approach

Programme Overview

A survey of members of the board of directors and IT security experts of one company by the Ponemon Institute revealed that 30 percent of the directors acknowledged that they did not understand the risks that their organisation faces in security matters. Yet, more than half of the IT security experts believe that the directors who sit on the board of their company do not understand the security environment that they are working in, or the risks it represents. This is a big deal, considering how many data breaches companies have seen. Some 90 percent of large companies suffered a cyberattacked, according to Kaspersky Lab’s 2015 report.  The finger of blame for breaches is often pointed at malicious outsiders, cybercriminals who are intent on gathering information through malware and theft.  When organisational people (directors and employees) fail to recognise basic security threats and how they can affect the organisation, things can get costly pretty quickly.

Programme Objective

To provide an insight into the world of Cybersecurity. By the end of the programme each participant will be able to:

  • Define cyber risk and cybersecurity and cyberspace
  • Understand leading practice for cybersecurity
  • Appreciate the relationship between cyber risk and risk management
  • Understand that basic precautions should not be taken for granted
  • Ask the right cybersecurity questions
  • Explore various communication techniques
  • Discuss IT security, cyberattack and cyber insurance

Programme Coverage

  • Overview of the cyberspace
  • Understand – Building a risk-aware organisation
  • Cyber risk and risk management
  • What is cyber risk?
  • Cyber-attack will never happen to us!
  • Questions the organisation should ask itself about cyber risk
  • 12 questions that every board should ask about cybersecurity
  • 10 questions to ask the Chief Information Officer (CIO)
  • Establish Order – Information risk framework
  • Remediate – Ensure risk approach is holistic and integrated
  • Continuous improvement – Test, automate and certify
  • Skill up – Build capacity
  • Cybersecurity awareness campaign
  • The action of cybercriminals and their Lingos
  • Online cybercriminal categories (e.g. hackers and phishers)
  • Computer hacking and the 5-phases of hacking activity
  • Security issues
  • IT Security
  • 10 steps to cybersecurity
  • Building a holistic security apparatus
  • Cyber insurance
  • Cybercrimes (Prohibition, Prevention, etc) Act, 2015 (brief overview)

Who Should Attend?

  • Employees with direct responsibility for managing cyber risks
  • All employees of game-changing companies

Duration: 2 day (In-house/In-plant only)

Date: 13-14 June and 9-10 December, 2019

Programme fee: N155,999.50 (US$503.23 for foreign participants). Special 10% discount for

groups of 4 or more.

Key benefits: programme materials and certificate of participation