|
P366 – SEMINAR ON INSURANCE SECURITY RISK MANAGEMENT (COMBINED)
Background: In this digital era, as organizations use more and more automated business processes for better support of their missions, risk management plays a critical role in protecting an organization’s information assets, and therefore its mission, from IT-related risk. An
understanding of risk and the application of risk assessment methodology
is essential to be able to efficiently and effectively create a secure
computing environment. The rate of change in technology and the relatively
recent explosive growth of the Internet is putting forth challenges in the
IS risk assessment. An effective risk management process is an important component of a successful IT security program and its goal of an organization’s risk management process should be to protect the organization’s ability to perform the business, not just its IT assets. Therefore, the risk management process should not be treated primarily as a technical function carried out by the IT experts who operate and manage the IT system, but as an essential management function of the organization. Risk management is the process of identifying risk, assessing risk, and taking steps to reduce risk to an acceptable level. Objectives After completion of this seminar
delegates will understand:- § What is risk with respect to information systems? § What are the key elements of information security risk? § Why is an understanding of risk important? § What are the key elements of a risk assessment? § What are some of the common risk assessment methodologies? § How to better secure the IT systems that store, process, or transmit organizational information? § How to make well-informed risk management decisions to justify the expenditures that are part of an IT budget? Themes § § Risk Management Overview § § Information Systems Risks § § Information Systems Security Elements § § Cyber Laws § § Risk Assessment Methodology § § Risk Transfer § § Risk Mitigation § § Risk Assurance Participants Profile The seminar will be a common foundation for experienced and inexperienced, technical, and non-technical personnel who support or use the risk management process for their IT systems. Indian
:
Life
ED(IT),
Chief(IT), Secretaries of Audit / Inspection / IT / Legal Departments at
Central Office and Zonal offices. Regional Managers (IT), Assistant
Secretaries (IT) from Zonal Offices and Information Security Officers,
IT Managers at various offices,. Non
Life:
GM (IT), DGM(IT), Chief Managers and Managers working in Audit /
Inspection /IT/Legal departments at Head Office and Regional Offices of
General Insurance Companies & Information Security Officers and
Information owners at various offices. Others : Officers from Audit , Vigilance IT and Legal Departments of Banks, Technical support personnel, Chartered Accountants, Risk Managers of industrial firms, Information Security Officers, Academicians. Overseas :
Senior executives from IT, Information Security Audit and Vigilance
departments of Insurance companies, banks, risk managers from industrial
firms. Information Security Officers and Technical support personnel their
organizations, representatives
from Insurance Regulators. Duration:
2 Days Dates : 17.11.2008 – 18.11.2008
|
|