Implementing a Quantitative Cyber-Risk Framework: A FinSrv Case Study

Автор: RSA Conference

Загружено: 2018-07-11

Просмотров: 24005

Описание:

Dr. Jack Freund, Director, Cyber Risk, TIAA

This session will review the Cyber-Risk Framework implemented by TIAA that scales from the granular level up to business-level aggregate risk reporting, avoiding some typical pitfalls by avoiding being too narrow or broad. Included in this session will be discussions about policy, standards, configuration baselines, quantification, ORM/ERM risk reporting and project lifecycle engagement.

Learning Objectives:
1: Sharing the successes and challenges of risk management tools and techniques.
2: Educating about the relationship between risk assessment and management action.
3: Equipping attendees with tools and techniques to take back and implement.

https://www.rsaconference.com/videos/...

Implementing a Quantitative Cyber-Risk Framework: A FinSrv Case Study

Доступные форматы для скачивания:

Скачать видео mp4

Информация по загрузке:

Скачать аудио mp3

Похожие видео

From SIEM to SOC: Crossing the Cybersecurity Chasm

From SIEM to SOC: Crossing the Cybersecurity Chasm

Traditional Sessions — RSAC Virtual Seminar: Security Strategy & Architecture

Traditional Sessions — RSAC Virtual Seminar: Security Strategy & Architecture

Introduction with Risk Quantification and FAIR with Jack Jones

Introduction with Risk Quantification and FAIR with Jack Jones

Джаз и работа ☕ Мягкий джаз, инструментальная музыка и расслабление. Утренний элегантный кофе Bossa

Джаз и работа ☕ Мягкий джаз, инструментальная музыка и расслабление. Утренний элегантный кофе Bossa

Performing a Security Assessment of the Cloud using the Risk Management Framework: A Case Study

Performing a Security Assessment of the Cloud using the Risk Management Framework: A Case Study

How to Identify Key Risk Indicators (KRIs) for Cybersecurity with Marta Palanques, Steve Reznik, ADP

How to Identify Key Risk Indicators (KRIs) for Cybersecurity with Marta Palanques, Steve Reznik, ADP

Стратегии управления рисками: управление непрерывностью бизнеса и восстановление после сбоев — Эм...

Стратегии управления рисками: управление непрерывностью бизнеса и восстановление после сбоев — Эм...

Cyber Security: A Practical Application of NIST Cybersecurity Framework

Cyber Security: A Practical Application of NIST Cybersecurity Framework

Assessing compliance: the ISO 27001 ISMS internal audit

Assessing compliance: the ISO 27001 ISMS internal audit

How to Perform Effective OT Cyber Security Risk Assessments

How to Perform Effective OT Cyber Security Risk Assessments

Virtual Session: NIST Cybersecurity Framework Explained

Virtual Session: NIST Cybersecurity Framework Explained

Enterprise Risk Management, Cybersecurity Oversight and Cyber Risk's Future, with James Lam

Enterprise Risk Management, Cybersecurity Oversight and Cyber Risk's Future, with James Lam

Developing Key Performance Indicators for Security

Developing Key Performance Indicators for Security

Webcast: Leveraging AI for Cybersecurity Workflow Augmentation

Webcast: Leveraging AI for Cybersecurity Workflow Augmentation

Conducting a cybersecurity risk assessment

Conducting a cybersecurity risk assessment

What You Need to Know about the Global Cybersecurity Regulatory Landscape

What You Need to Know about the Global Cybersecurity Regulatory Landscape

A Cloud Security Architecture Workshop

A Cloud Security Architecture Workshop

Using NIST 800-161 to Meet Today’s Cybersecurity Supply Chain Risk Management Challenges

Using NIST 800-161 to Meet Today’s Cybersecurity Supply Chain Risk Management Challenges

NIST Cybersecurity Framework and PCI DSS

NIST Cybersecurity Framework and PCI DSS

Understanding Cybersecurity Risk Management

Understanding Cybersecurity Risk Management