Overview

Today, cyber-attacks are more sophisticated. It is a matter of “when” and not “if” a network or system compromise for any organisation would occur. The SFC issued the ”Guidelines for Reducing and Mitigating Hacking Risks Associated with Internet Trading” and set out the minimum standards senior management should observe. This course will discuss how to allocate limited resources to defend cyber-attacks in your organisation and share lessons learnt from real-life data leakage incidents.

Objective

By the end of the course, participants will be able to:
‧ describe the latest cyber-attacks (WannyCry and Ransomware)
‧ describe how to respond to an incident if the network or system hacks occur
‧ explain how and when to notify the relevant regulators/authorities (HKCERT, Police, PCPD, HKMA, SFC or GDPR in EU )
‧ list the cybersecurity counter measures available for organisations with a limited budget.

Content

1) The requirements stated in the SFC’s “Guidelines for Reducing and Mitigating Hacking Risks Associated with Internet Trading”
2) Case study on the data breach incident
3) The appropriate response if a data breach occurs (Incident Response Plan)
4) Lessons learnt
5) How to defend cyber-attacks with limited resources

Who should attend

This course is suitable for Senior Management, Responsible Officers, Manager in Charge of Information Technology, Auditors, Information Security Officers, Compliance Officers, Information Technology Staff, and anyone that are interested in cybersecurity.