Webinar on Managerial Primer for Assuring Information Security

Why should you Attend: 

Information and associated technologies continue to advance toward diverse distributed configuration environments for entering, processing, storing, and retrieving data. The magnitude of changes occurring reflects the explosion of linked IT infrastructures connected to cloud computing service providers and mobile computing devices. Consequently, the impact of such decentralization has increased the need for effective safeguarding of information assets. 

Foundationally paraphrasing from Title 44, Chapter 35, Subchapter III, Section 3542(b)(1) of the United States Code; the term "information security" is defined as the protecting of information and information systems from unauthorized access, use, disclosure, disruption, modification, or destruction. Correspondingly, information security is typically a complex and dynamic safeguarding subject. Given the descriptive attributes normally associated with information security, IT auditors usually have a vast array of sub-topics to contemplate when performing information assets protection (IAP) related audits, reviews, or agreed-upon procedures. 

Information security design, deployment, and assurance require dedication to continuous improvement to ensure optimum effectiveness and efficiency. Whereby, confirmation of compliance with legislation, regulations, policies, directives, procedures, standards, and rules enable asserting ‘superior' information security governance (ISG). Nonetheless, monitoring and evaluating the current state of implemented controls may take a variety of forms; including control self-assessments and IT audits. Furthermore, an IT auditor may not be the individual who executes an entity's information security internal control review (ICR). However, an IT auditor may subsequently assess an ICR for effectiveness and/or efficiency. In the regulatory arena, a negative finding, coupled with prompt corrective actions can mitigate civilly and criminal enforcement penalties, thereby potentially reducing or avoiding legal risks. 

Areas Covered in the Session:

• Forces affecting information security governance.
• Principles and practices when performing information security audits.
• Sound strategic and tactical information risk considerations.
• Three tiers of enterprise governance examination will occur regarding:
  • Content
  • Meaning
  • Implementation factors
  • Responsibilities

• Audit Committee Members
• Risk Management Managers
• External Auditors
• Internal Auditors
• Chief Executive Officers
• Chief Information Officers
• Compliance Managers
• Chief Information Security Officers
• Information Technology professionals
• Control Self-Assessment personnel

Contact Detail:

Compliance4All DBA NetZealous,
Phone: +1-800-447-9407
Email: [email protected]
http://www.compliance4all.com/
Event Link : http://bit.ly/Assuring_Information_Security

LinkedIn Follow us
Twitter Follow us
Facebook Like us