Designing Full Cyber Security Incident Response Team (CSIRT) Training Program as well as Table Top and Simulation Testing

Michael C. Redmond

Michael C. Redmond is consults and audits in the areas of Cyber/Information Security, Organizational Resilience, Business Continuity, Disaster Recovery, High Availability, HIPAA and ISO. Some of her past clients include Fidelity, JP Morgan Chase, Emblem Health. Excellus Blue Cross, and many more. Education; MBA PhD Certifications MBCP, FBCI, CEM, PMP Certified as Lead Implementer; ISO/IEC 27001 Information Security Management ISO/IEC 27032 Lead Cyber Security Manger ISO/IEC 27035 Security Incident Response ISO/IEC 22301 Business Continuity Management Systems ISO/IEC 21500 Lead Project Manager ........

Overview

The best way forward is an efficient Incident Response Program that allows an organization to respond with speed and agility while empowering businesses to maintain continuous operations. Such a solution also reduces revenue loss, reduces fines and lawsuits and protects brand reputation.
Information Security, Governance & Risk, are all critical aspects of planning and execution of the Information Security Plan. Who in your organization has a key responsibility to develop an information security governance program; review existing Information Security policies and standards to ascertain their adequacy in coverage scope against industry best practices, and update them as appropriate, taking into account compliance recommendations?
Establish Key Performance Indicators (KPI) to determine if your Information Systems Incident Response program meets business objectives and operational metrics for ongoing process improvement.
Learn how to develop a CSIRT Policies, Program, Plan, Playbook, Training and Exercises

Why should you attend?

Do you have great procedures in place to deal with a Breach, Malware and more? Are you willing to risk your Business Reputation on those procedures?

Three years ago, Risk Management Monitor quoted Vincent Weafer, Senior Vice President of McAfee Labs, "The year 2014 will be remembered as 'the Year of Shaken Trust,'" said Vincent Weafer, senior vice president of McAfee Labs. "This unprecedented series of events shook industry confidence in long-standing Internet trust models, consumer confidence in organization's abilities to protect their data, and organization's confidence in their ability to detect and deflect targeted attacks in a timely manner. Restoring trust in 2017 requires stronger industry collaboration, new standards for a new threat landscape, and new security postures that shrink time to detection through the superior use of threat data."

Areas Covered in the Session:

Adopting a systematic approach to risk tracking to enhance the effectiveness of the Cyber Incident Program
Outlining the critical actions to take if an event affects the company or its partners
Understanding an organization's susceptibility to a Cyber Attack
Cyber Incident Response: Getting started, research, training, testing and maintaining
Standards and Best Practice: ISO 27001, ISO 27035, ISO 27005, ISO 22316 NIST, FFIEC, HIPPA, AND HITRUST

Who can Benefit: