CPEs: 24
Instructor: Sue Milton
Level: Intermediate
Tuition: £3,495.00
Register Now

NEW Cybersecurity Governance, Risk and Compliance CS1199

Location: UK EU MENA WAT GCC Time Zones

First Date: Apr 15 - 17 2024

Duration: 3 days

Programme Director: Sue Milton

All Dates & Locations
Venue Details

Experience the highly-interactive expert-led social learning through Virtual Classroom via Cisco by Webex via Risk Reward.

All our 2024 Virtual Classroom events feature shared (or discrete) live chat between delegates and the expert, participate in topical surveys, polling questions, group exercises and case studies for a tried -and- true engaging and gratifying learning experience.

Need to bring this course in-house, Face-to-Face on site or even a 1:1 tutorial? Simply contact us for significant cost savings and dates to meet your specific requirements.

"The course was very practical and dealt with all the areas of bank risk management. The trainer for IT risk was excellent. She was easy to follow and the topics were very relevant."
Risk Manager, Kuwaiti Bank, UK
Agenda Highlights

Session 1:  Understanding cyber

Session 2: Focus on enterprise governance – how do we include cyber?

Session 3:  Focus on Cyber from a Business Perspective

Session 4:  A tour of the standards and how standards can help

Session 5:  Understanding Risk within Cyber-Savvy Enterprise Governance Frameworks

Session 6:  Managing the Control Environment for Desired Cyber-related GRC outcomes

Session 7:  Role and Purpose of the Internal Control Environment

Session 8: Building On What We Already Have

Session 9:  How Cyber Underpins Enterprise Governance, Risk and Compliance



"Group discussion for brainstorming, shared many useful websites, sanctions, cyber governance most valued topic as rarely is there too much information on this. Great and useful."
Risk Manager, commercial bank, Egypt

The relationship between Governance, Risk and Compliance (GRC) is well understood but with increasing IT complexity and cyber-security incidents, how can organisations best expand and integrate cyber into GRC policies and practices?  This course takes delegates through the range of emerging requirements, identifying the approach necessary to provide the necessary framework for continued success in fulfilling GCR requirements.

Focusing on practical solutions to blend the technical issues into the conceptual requirement of GRC, the course provides critical guidance on how to both focus on and incorporate cyber-security within GRC –  to lead, direct, assess, manage and assure that cyber can be used safely and reliably to ensure the organisation’s explicit and implicit licence to operate.

"[This course] offers a fresh perspective on processes and controls. Reorganising our thinking process as to how to map out the controls and clarifying ownership in risk management and governance."
EFG Hermes, Cairo
Who Should Attend

Designed for people across all levels of the organisation who are accountable for the organisation’s behaviour and performance.

Delegates have included directors and operational technicians involved in some or all aspects of GRC such as strategists, risk managers, legal and compliance personnel, IT specialists, internal auditors, and compliance managers and personnel

Additional Course Information

What Does It Cover?

GRC: the conceptual demands and the reality of implementation.

  • How is GRC defined?
  • How is Cyber defined?
  • The virtuous relationship between governance, risk and compliance.
  • The complexity when factoring in cyber.

Case Study: examining and evaluating the key attributes of GRC. 

What makes Cyber both common and unique?

  • Understanding the paradox of Cyber – its ease of use and difficulty to secure.
  • The underlying complexity.
  • Reliance on 3rd
  • Basic governance requirements.
  • How best to assess and manage risks?
  • Is our legislation a help or hindrance to cyber-security GRC?
  • How can standards help?
  • Creating and integrating policies, procedures and practices from strategy to crisis management.
  • Achieving demonstrable compliance.

Case Study: designing the framework and identifying the necessary actions.

Managing the implementation outcomes of  Cyber-related GRC.

  • A strategic approach.
  • Preventative versus corrective approach to cyber governance.
  • How Cyber exacerbates GRC weaknesses.
  • Managing GRC failures.
  • Promoting the good news.

Case Study: learning from a global cyber-related GRC failure.

Building on what we already have

  • Cyber-related information flows – are we sharing what is relevant and comprehensible?
  • Relationship with regulators – does legal compliance explicitly include Cyber?
  • Making compliance truly useful to society.
  • Creating a culture for sound Cyber GRC.

Case Study: reporting GRC internally and externally.

Learning Objectives

All delegates completing this course will receive a Certificate in Cybersecurity Governance, Risk and Compliance with 16 CPE/CPD credits.

Expert-led by a key member of the project team who developed the 2021 UK Cybersecurity Council, delegates will gain specialist knowledge that complements and builds on existing understanding of GRC through interactive discussion, case study exercises and some presentations on the concepts, issues and intended outcomes of GRC  – the ability to provide safe, secure and usable technology for use by the supply chain:

  • Review of current GRC requirements
  • Impact of cyber on how organisations operate
  • What regulators want to see
  • Consider the governance needed to provide cyber-related activity wisely
  • How risk management helps improve governance and makes compliance easier to demonstrate
  • Practical case studies of recent and historic cases

Delegates who complete the course will each receive a Certificate with CPE/CPD credits – and for those who may require an assessment as a demonstration of competency via training a 20 multiple choice Q&A, remotely invigilated, with results report and 1 resit, is included in the delegate price when reserved at time of booking.


Social Learning & Methods

Highly interactive expert-led intensive presentation, Q&A, group real-time in-depth case studies, regulation and discussion supported by key principles and theory. The virtual learning platform uses safe, industry preferred encrypted Cisco WebEx to optimize live face-to-face visual interaction, discrete chat, for polling and quizzes. (An invitation via email with access link is included for all participants.)


NEW Cybersecurity Governance, Risk and Compliance

Course Fee

Apply 10% discount code RISK10 by December 15, 2023 at check-out

Course Fee (per person):
GBP £3,495.00 (+ UK VAT when applicable)

Number of delegates:

Data Privacy & Update of Contact Details Risk Reward Limited is fully compliant with the Data Protection Act. The information you provide will be safeguarded by Risk Reward Ltd. We do not rent, sell or exchange your details to anyone without your consent. Your details are never given to third parties. If you wish to update your details, please email: with your OLD and NEW details. Please allow 10 days to see the changes take effect. Thank you.

Terms and Conditions: You can cancel at any time. Due to the on-going COVID 19 environment cancellations may be made at any time for either a full refund or a credit towards another event occurring within the following 6 month period. Simply email or telephone the London Client Services team at to advise your preference and we will do our best to accommodate your circumstances. Risk Reward Ltd receives the right to a final decision in the event of a dispute.

All Risk Reward public courses are guaranteed to run although those offered by affiliates are subject to demand

Quick Contact

    Get in touch and see how Risk Reward can help you

    Our London team are ready to answer questions, provide information & choices to help make your public seminar booking in a prompt, professional & friendly manner.

    Get in touch and see how Risk Reward can help you

    Our London and Miami teams are ready to listen carefully to your needs, take the brief, explore options, offer suggestions and help you in a professional and friendly manner.