Information Cyber Security Planning for Governance, Risk and Compliance (GRC) Framework - Organization and Responsibilities

  Product ID : MICH-0009

  Level : Intermediate

  Duration : 60 Minutes

Dr. Michael C. Redmond, PhD is Consultant, Speaker, and Author. Her certifications Include MBCP, FBCI, PMP, CEM   ISO 27001 Lead Implementer and Lead Auditor, as well as many other ISO certifications. Michael also conducts ISO Certification Implementation and Audit Training for PECB. Michael is the Chapter President for Association of Contingency Planners Eastern Great Lake Chapter and an active member of ISSA. She has consulted in the area of Cyber Security for clients in the areas of Healthcare, Insurance, Financial, and Manufacturing. Her projects have included

  • SIEM Security information and event management  which is Combining  software products and services combining security information management (SIM) and security event management (SEM)
  • (CSIRT) which is Cyber Security Incident Response Programs, Plans, Playbooks, Training, and Testing
  • Audit of  CSIRT programs and documentation
  • Information Security Programs and Implementation

Michael has consulted in the fields of Business Continuity and Disaster Recovery in the areas of Healthcare, Insurance, Financial, Manufacturing, Education, and Government. She has 2 books which are coming out in 201yand are being published by one of the Top International Publishers in the world. The first is a Cyber Security book and the second is a Business Continuity and Disaster Recovery book

Michael’s been honored as Top Woman in her field at a White House Luncheon and was selected out of the world to write the prolog for the chapter on Risk Management by the United Nations for their Disaster Book which was given to the head of state for every UN member nation. She has recently been named on the list of “Women of Distinction for 2015” by Women of Distinction Magazine for her work in Cyber Security.

She was selected to speak on Cyber Security Incident Response and SIEM at such recent conferences as

  • International ISSA Conference in Chicago
  • NYS Cyber Security Conference – Co Spoke with Acting CISO for New York State
  • ISACA Western New York Conference
  • Metric Stream Round Table in New York City

Information Cyber Security Planning for Governance, Risk and Compliance (GRC) is essential in this world of new technologies, cyber events, natural an manmade disasters. GRC refers to a company's coordinated strategy for managing the broad issues of corporate governance, enterprise risk management (ERM) and corporate compliance with regard to regulatory requirements

Enterprise IT Governance, Risk, Compliance is a systematic approach to managing Risk so that it remains secure. It includes people, processes and IT systems by applying a risk management process.

Learning Objectives

  • Including a management system into managing Enterprise Risk
  • Areas of Enterprise Risk Management
  • ISO   standards family - for what purpose should each standard be used
  • Implementation Tips- costs involved, hiring a consultant, how long does it take, using tools
  • Important benefits and the ways to present them to management
  • Documentation required by the standard
  • Benefits of implementation
  • MS implementation framework
  • Key elements
  • Get an overview of an audit of the implementation strategy

Areas Covered

  • Risk assessment
  • Security policy
  • Organization of information security
  • Asset management
  • Human resources security
  • Physical and environmental security
  • Communications and operations management
  • Access control
  • Information systems acquisition, development, and maintenance
  • Information security incident management
  • Business continuity management
  • Compliance

Course Level - Intermediate

Why Should You Attend

Attend this session by our expert speaker, Dr. Michael C. Redmond, and learn Principles Effective IT Governance, Risk and Compliance in 2019 and beyond. Michael will help your organization to manage the complexities of Information Cyber Security GRC Planning such as areas covering Risk, Impact Analysis, Resiliency, and more. This session will enable you to gain knowledge about the implementation of a framework. You will receive valuable information that you can implement. This is a must in the new world that is facing new risks every year.

  • $200.00

Recorded / Download Access