Frameworks, Mappings and Metrics: Optimize Your Time as CISO or Auditor

We proudly present this half day workshop together with Freddy Dezeure

Save the DateClick on the .ics file to save the date

CPE Credits Earn 5 CPE (Continuing Professional Education) for attending this workshop. Please request a confirmation.
Location Mövenpick Hotel Zurich-Regensdorf
Im Zentrum 2
8105 Zürich-Regensdorf

Date of Event 8th September 2020
Time 2:30 – 6:00 pm
Special This workshop will be during the SIGS Technology Conference. You have the possibility to hear the keynotes and as well visit the exhibition during the breaks.
Language English
Participation Fee Fr. 490.— (including lunch and apéro)

This Vendor-independent Workshop Provides You

Many organizations are already using cybersecurity frameworks like ISO 27000 or NIST CSF. However, overarching cybersecurity regulations with cross-sector compliance obligations for “critical” or “vital” infrastructure have recently been issued. This is for example the case in the EU (the NIS directive and its national transpositions and the GDPR). In addition, most organizations are also required to comply with sectoral regulatory requirements and these vary sometimes significantly by country or region. A good example is the financial sector, with myriad regulations imposing different requirements across the globe.

As a result, CISOs spend almost half of their time on compliance activities, addressing similar concerns but tailoring responses to slightly different requests from their Board, their internal auditors, external auditors, clients and regulators.

This training will provide guidance to reduce duplication of efforts and to become more effective in managing cyber-risks. Participants will learn about the recent evolution in Frameworks, Mappings between Frameworks which can be used to translate internally used models to references used by other stakeholders and Metrics allowing more control for the CISO and help him/her to report on the way risk is managed and mitigated. It will provide insights in what works in practice, by sharing real-world experience.

Learning Objects
After completing this course, participants should be able to:

  • Connect the dots between cybersecurity Frameworks
  • Understand the value of Mappings to reduce duplication of efforts
  • Learn what their peers are using in terms of Metrics
  • Realize how these tools can be deployed in their own organization
  • Uncovering shared Internet infrastructure connections can advance investigations, from e-crime to nation-state attacks

Who Should Attend
CISOs and Chief Risk Officers who manage the cybersecurity strategy/risk of their organization and want to gain insight in the best practices to structure, manage and report on cyber risk, mitigation and compliance.

Students should possess an excellent knowledge of their organization’s cyber risk as well as the regulatory requirements with respect to such risk.

Course Requirements

About the Trainer
Freddy Dezeure graduated from the KUL in Belgium with a master of science in engineering in 1982. He was CIO of a private company from 1982 until 1987.

He joined the European Commission in 1987 where he held a variety of management positions in administrative, financial and operational areas, in particular in information technology. He set up the EU Computer Emergency and Response Team (CERT-EU) for the EU institutions, agencies and bodies in 2011 and made it into one of the most mature and respected CERTs in Europe. Until May 2017, he held the position of the Head of CERT-EU.

Presently, he is an independent management consultant providing strategic advice in cybersecurity and cyber-risk management and acting as board member and advisory board member in several high-tech companies.


Cancellations of registration are free of charge until 30 days before. Cancellations received beyond this point will incur 100% of the admission fee. You will get an invoice for the respective amount. In any case, however, a delegate may be sent at no additional costs.

Register here!

Your Trainer

Freddy Dezeure set up the EU Computer Emergency and Response Team (CERT-EU) for the EU institutions, agencies and bodies in 2011 and made it into one of the most mature and respected CERTs in Europe.

Earn CPE Credits for
attending SIGS Events