(Compliance) Risk Mngt & Control Strategy
Managing Cybersecurity and Handling Breaches
Overview
Today, cyber-attacks are more sophisticated. It is a matter of “when” and not “if” a network or system compromise for any organisation would occur. The SFC issued the ”Guidelines for Reducing and Mitigating Hacking Risks Associated with Internet Trading” and set out the minimum standards senior management should observe. This course will discuss how to allocate limited resources to defend cyber-attacks in your organisation and share lessons learnt from real-life data leakage incidents.
Objective
By the end of the course, participants will be able to:
‧ describe the latest cyber-attacks (WannyCry and Ransomware)
‧ describe how to respond to an incident if the network or system hacks occur
‧ explain how and when to notify the relevant regulators/authorities (HKCERT, Police, PCPD, HKMA, SFC or GDPR in EU )
‧ list the cybersecurity counter measures available for organisations with a limited budget.
Content
1) The requirements stated in the SFC’s “Guidelines for Reducing and Mitigating Hacking Risks Associated with Internet Trading”
2) Case study on the data breach incident
3) The appropriate response if a data breach occurs (Incident Response Plan)
4) Lessons learnt
5) How to defend cyber-attacks with limited resources
Who should attend
This course is suitable for Senior Management, Responsible Officers, Manager in Charge of Information Technology, Auditors, Information Security Officers, Compliance Officers, Information Technology Staff, and anyone that are interested in cybersecurity.
Speaker/Course Instructor
One of Frankie’s research results was published and was one of the frequently accessed SANS Gold papers in 2011. He is teaching Malware Analysis and Reverse Engineering in HKU Master programme.