|CPE Credits||Earn 5 CPE (Continuing Professional Education) for attending this workshop. Please request a confirmation.|
|Location||Mövenpick Hotel Zurich-Regensdorf
Im Zentrum 2
|Date of Event||14th May 2020|
|Time||2:30 – 6:00 pm|
|Special||This workshop will be during the SIGS Technology Conference. You have the possibility to hear the keynotes and as well visit the exhibition during the breaks.|
|Participation Fee||Fr. 490.— (including lunch and apéro)|
This Vendor-independent Workshop Provides You
Many organizations are already using cybersecurity frameworks like ISO 27000 or NIST CSF. However, overarching cybersecurity regulations with cross-sector compliance obligations for “critical” or “vital” infrastructure have recently been issued. This is for example the case in the EU (the NIS directive and its national transpositions and the GDPR). In addition, most organizations are also required to comply with sectoral regulatory requirements and these vary sometimes significantly by country or region. A good example is the financial sector, with myriad regulations imposing different requirements across the globe.
As a result, CISOs spend almost half of their time on compliance activities, addressing similar concerns but tailoring responses to slightly different requests from their Board, their internal auditors, external auditors, clients and regulators.
This training will provide guidance to reduce duplication of efforts and to become more effective in managing cyber-risks. Participants will learn about the recent evolution in Frameworks, Mappings between Frameworks which can be used to translate internally used models to references used by other stakeholders and Metrics allowing more control for the CISO and help him/her to report on the way risk is managed and mitigated. It will provide insights in what works in practice, by sharing real-world experience.
After completing this course, participants should be able to:
Who Should Attend
CISOs and Chief Risk Officers who manage the cybersecurity strategy/risk of their organization and want to gain insight in the best practices to structure, manage and report on cyber risk, mitigation and compliance.
Students should possess an excellent knowledge of their organization’s cyber risk as well as the regulatory requirements with respect to such risk.
About the Trainer
Freddy Dezeure graduated from the KUL in Belgium with a master of science in engineering in 1982. He was CIO of a private company from 1982 until 1987.
He joined the European Commission in 1987 where he held a variety of management positions in administrative, financial and operational areas, in particular in information technology. He set up the EU Computer Emergency and Response Team (CERT-EU) for the EU institutions, agencies and bodies in 2011 and made it into one of the most mature and respected CERTs in Europe. Until May 2017, he held the position of the Head of CERT-EU.
Presently, he is an independent management consultant providing strategic advice in cybersecurity and cyber-risk management and acting as board member and advisory board member in several high-tech companies.
Cancellations of registration are free of charge until 30 days before. Cancellations received beyond this point will incur 100% of the admission fee. You will get an invoice for the respective amount. In any case, however, a delegate may be sent at no additional costs.