Best Seller
CPEs: 24
Instructor: Dennis Cox
Level: Intermediate
Tuition: £2,995.00
Register Now

NEW Cybersecurity Risk in Banks – Practical solutions to technical problems SDIT023

Location: UK EU MENA WAT GCC Time Zones

First Date: Jun 24 - 26 2024

Duration: 3 days

Programme Director: Dennis Cox FCA CFSI FISRM AIIA BFP

All Dates & Locations
Venue Details

Experience the highly-interactive expert-led social learning through Virtual Classroom via Cisco WebEx from Risk Reward.

All our 2024 Live, on-site and Live Virtual Classroom events feature shared (or discrete) live chat between delegates and the expert, participate in topical surveys, polling questions, group exercises and case studies for a tried -and- true engaging and gratifying learning experience.

Need to bring this course in-house, or Face- to- Face for any sized group or 1:1 tutorial? Simply contact us for cost savings and dates to suit your business needs.

"The insights as to how much to encrypt, behaviours and influencing strategies has been hugely impactful."
Risk manager, Saudi financial regulator
Agenda Highlights

 Session 1:  The New Nature of Cybersecurity

Session 2:  Cybersecurity Standards

Session 3:  Recent cases – Case Study Session

Session 4:  Information Security

 Session 5:  Threat Analysis

Session 6:  The Impact of Changing Work Patterns on Cybersecurity

Session 7:  Cyber Risk Assessment

Session 8:  The Cybersecurity Program

Session 9:  Investigating Cybersecurity Incidents

Session 10:  The Future of Cybersecurity

"This is exactly what I wanted - to hear from an expert and not from salespeople."
Operations and Payments officer, European bank

Cyber risks and incidents are on the increase and all firms need to act to ensure that they have implemented robust cybersecurity systems and protocols to ensure operation resilience.

Delegates will explore the range of emerging rules and standards, highlighting the actions that are needed to provide assurance to your organisation’s stakeholders.

Focussing on practical solutions to technical problems, the course provides practical guidance on the implementation of an effective cyber risk mitigation framework, its key constituents and the actions that are required.  In particular the important roles of data mining and the implementation of forward- looking risk identifiers are explored.

"'A very useful course and excellent trainer! The most impactful topics were internal cyberfraud for [those of us] in compliance.'"
Compliance manager, Bank of New York Mellon, Taiwan
Who Should Attend

Designed primarily for risk management and internal control management and personnel yet recent delegates include those from IT, operations, internal audit, compliance and HR.

Additional Course Information

What Does It Cover?

What is Cybersecurity?

  •  How is it defined?
  • What are the key issues?
  • The current guidance
  • Historic threats and cases
  • The purpose of a cyber security program
  • Tools and techniques

Case Study:  What are the key lessons from historic incidents? 

Cybersecurity Standards

  •  PAS 555
  • Minimum cybersecurity standards
  • ISO/IEC 27001:2013
  • ISO/IEC 27032
  • BIS and cybersecurity
  • FFEIC cybersecurity assessment tool
  • EU and cybersecurity

 Case Study:  Which are the rules that matter most to you?  What actions should be taken?

 Recent cases – Case Study Session

 In this session we will look at a series of the most recent cases of cyberbreaches that have been identified.  What could have been done to have prevented the loss?

Information Security

  •  What is key data?
  • How is this impacted by cybersecurity?
  • Data requiring protection
  • Information security program
  • Security policies, standards and guidelines
  • Impact of cybersecurity on information security

Case Study:  Identification of critical information

Threat Analysis

  •  Current cybersecurity threats
  • Heightened risk – Joint guidance
  • Risks of Denial of Service (DDoS) – FDIC guidance
  • Security risks of VOIP  – FDIC guidance
  • Pharming attacks and phishing
  • Keeping ahead of the malicious agents
  • Wireless technology risks
  • Risks in the cloud
  • Vulnerability assessment
  • Collection of data
  • Risk appetite, risk acceptance and cybersecurity
  • Mitigation and anticipation

Case Study:  Which are the risks that most concern your Board?  How are these reported?

The Impact of Changing Work Patterns on Cybersecurity

  •  How are work patterns changing as a consequence of the crisis?
  • Are these changes likely to be permanent?
  • What does this mean for cybersecurity?
  • How does this change the risk assessment?
  • Impact on data security
  • Impact on business continuity planning
  • Impact on productivity

 Case Study:  What are the actions that are needed to reduce cyber risk due to remote working?

Cyber Risk Assessment

  • The assessment process
  • Threat metrics
  • Threat models
  • Threat matrix
  • Denial of service attacks (DOS)
  • Attack vendors
  • Attack trees

Case Study:  Populate a cyber risk assessment

The Cybersecurity Program

  • The key elements
    • Framework
    • Charter
    • Policies
    • Process
    • Measurement
  • Corporate governance
  • Identity and access management
  • The 3 lines model and cybersecurity
  • Due care considerations
  • Due diligence
  • Developing forward looking identifiers
  • Benchmarking
  • Incident management plan
  • Enterprise security architecture
  • Ethical hacking
  • Data mining and modelling

 Case Study:  Creating forward looking identifiers – what matters?

Investigating Cybersecurity Incidents

  •  Regulatory guidance
  • Actions to be taken
  • Governance and management
  • Identifying information
  • Tracking activity
  • Efficient approaches
  • Data mining
  • Reporting and tracking

 Case Study:  Investigating an incident


Learning Objectives

Delegates will gain specialist technical and behavioural knowledge,  techniques and skills, experience ‘on-the-job-style’ training in 1:1 and group discussion while working through hands-on through case studies and exercises to apply learned concepts in order to

  • Appreciate the current threats
  • Understand the nature of current guidance
  • See the actions being taken by regulators
  • Consider the contents of the cyber deterrence framework
  • Review recent and historic cases and see lessons to be learnt
  • Create forward looking identifiers
  • Manage incidents effectively

Delegates who complete the course will receive a Certificate with equivalent CPD/CPE credits via email; and for those who require an assessment as a demonstration of competency via training a 20 multiple-choice questions and answers quiz, remotely invigilated with results report and 1 resit, is available at no additional charge when requested at time of reservation.

Social Learning & Methods

Highly interactive expert-led intensive presentation, Q&A, group real-time in-depth case studies, regulation and discussion supported by key principles and theory. The virtual learning platform uses safe, industry preferred encrypted Cisco WebEx to optimize live face-to-face visual interaction, discrete chat, for polling and quizzes. (An invitation via email with access link is included for all participants.)


NEW Cybersecurity Risk in Banks – Practical solutions to technical problems

Course Fee

Apply 10% discount code RISK10 by December 15, 2023 at check-out

Course Fee (per person):
GBP £2,995.00 (+ UK VAT when applicable)

Number of delegates:

Data Privacy & Update of Contact Details Risk Reward Limited is fully compliant with the Data Protection Act. The information you provide will be safeguarded by Risk Reward Ltd. We do not rent, sell or exchange your details to anyone without your consent. Your details are never given to third parties. If you wish to update your details, please email: with your OLD and NEW details. Please allow 10 days to see the changes take effect. Thank you.

Terms and Conditions: You can cancel at any time. Due to the on-going COVID 19 environment cancellations may be made at any time for either a full refund or a credit towards another event occurring within the following 6 month period. Simply email or telephone the London Client Services team at to advise your preference and we will do our best to accommodate your circumstances. Risk Reward Ltd receives the right to a final decision in the event of a dispute.

All Risk Reward public courses are guaranteed to run although those offered by affiliates are subject to demand

Quick Contact

    Get in touch and see how Risk Reward can help you

    Our London team are ready to answer questions, provide information & choices to help make your public seminar booking in a prompt, professional & friendly manner.

    Get in touch and see how Risk Reward can help you

    Our London and Miami teams are ready to listen carefully to your needs, take the brief, explore options, offer suggestions and help you in a professional and friendly manner.