UK EMEA WAT GCC time zones
CPEs: 16
Instructor: Sue Milton
Level: Intermediate
Tuition: £2,495.00
Register Now

NEW Implementing Solutions to Mitigate Cybersecurity Risk FC400

Location: UK EMEA WAT GCC time zones

First Date: Mar 4 - 5 2024

Duration: 2 days

Programme Director: Sue Milton

All Dates & Locations
Venue Details

Experience the highly-interactive expert-led social learning through Virtual Classroom via Cisco WebEx from Risk Reward.

All our 2024 Live, onsite and Virtual Classroom events feature shared (or discrete) live chat between delegates and the expert, participate in topical surveys, polling questions, group exercises and case studies for a tried -and- true engaging and gratifying learning experience.

Need to bring this course in-house, 1:1 or face-to-face in your location? Simply contact us for significant cost savings and dates to meet your specific requirements.

"Excellent course - very well received by the IT teams of our member banks."
Egyptian Banking Institute, Cairo
Agenda Highlights

Session 1: What is Cybersecurity

Session 2: Cybersecurity Standards

Session 3: Recent cases – Case Session

Session 4: Information Security

Session 5: Threat Analysis

Session 6: The Impact of Changing Work Patterns on Cybersecurity

Session 7: Cyber Risk Assessment

Session 8: the Cybersecurity Program

Session 9: Investing Cybersecurity Incidents

Session 10: Discussion, Q&A


Cyber risks and incidents are on the increase and all firms need to act to ensure that they have implemented robust cybers security systems and protocols to ensure operation resilience.

This course takes delegates through the range of emerging rules and standards, highlighting the actions that are necessary to provide assurance to your stakeholders.

Focussing on practical solutions to technical problems, the course provides guidance on the implementation of an effective cyber risk mitigation framework, its key constituents and the actions that are required.  In particular we consider the important roles of data mining and the implementation of forward looking risk identifiers.

Who Should Attend

This course is designed primarily for risk management and internal control management and personnel in banks, but will also be of interest to operations, internal audit and compliance management and team members.

Additional Course Information

What Does It Cover?

What is Cybersecurity? 

  • How is it defined?
  • What are the key issues?
  • The current guidance
  • Historic threats and cases
  • The purpose of a cyber security program
  • Tools and techniques

Case Study:  What are the key lessons from historic incidents? 

 Cybersecurity Standards 

  • PAS 555
  • Minimum cybersecurity standards
  • ISO/IEC 27001:2013
  • ISO/IEC 27032
  • BIS and cybersecurity
  • FFEIC cybersecurity assessment tool
  • EU and cybersecurity

 Case Study:  Which are the rules that matter most to you?  What actions should be taken? 

Recent cases – Case Study Session 

In this session we will look at a series of the most recent cases of cyberbreaches that have been identified.  What could have been done to have prevented the loss? 

Information Security 

  • What is key data?
  • How is this impacted by cybersecurity?
  • Data requiring protection
  • Information security program
  • Security policies, standards and guidelines
  • Impact of cybersecurity on information security

Case Study:  Identification of critical information  

Threat Analysis

  •  Current cybersecurity threats
  • Heightened risk – Joint guidance
  • Risks of Denial of Service (DDoS) – FDIC guidance
  • Security risks of VOIP  – FDIC guidance
  • Pharming attacks and phishing
  • Keeping ahead of the malicious agents
  • Wireless technology risks
  • Risks in the cloud
  • Vulnerability assessment
  • Collection of data
  • Risk appetite, risk acceptance and cybersecurity
  • Mitigation and anticipation

Case Study:  Which are the risks that most concern your Board?  How are these reported?

The Impact of Changing Work Patterns on Cybersecurity 

  • How are work patterns changing as a consequence of the crisis?
  • Are these changes likely to be permanent?
  • What does this mean for cybersecurity?
  • How does this change the risk assessment?
  • Impact on data security
  • Impact on business continuity planning
  • Impact on productivity 

Case Study:  What are the actions that are needed to reduce cyber risk due to remote working? 

Cyber Risk Assessment

  • The assessment process
  • Threat metrics
  • Threat models
  • Threat matrix
  • Denial of service attacks (DOS)
  • Attack vendors
  • Attack trees

Case Study:  Populate a cyber risk assessment

The Cybersecurity Program

  • The key elements
    • Framework
    • Charter
    • Policies
    • Process
    • Measurement
  • Corporate governance
  • Identity and access management
  • The 3 lines model and cybersecurity
  • Due care considerations
  • Due diligence
  • Developing forward looking identifiers
  • Benchmarking
  • Incident management plan
  • Enterprise security architecture
  • Ethical hacking
  • Data mining and modelling 

Case Study:  Creating forward looking identifiers – what matters? 

Investigating Cybersecurity Incidents 

  • Regulatory guidance
  • Actions to be taken
  • Governance and management
  • Identifying information
  • Tracking activity
  • Efficient approaches
  • Data mining
  • Reporting and tracking 

Case Study:  Investigating an incident 

Discussion and Q&A

  • Next steps
  • The future






Learning Objectives

Delegates will gain specialist technical knowledge,  techniques and skills, experience ‘on-the-job-style’ training in group discussion and undertaking case studies and exercises to:

  • Appreciate the current threats
  • Understand the nature of current guidance
  • See the actions being taken by regulators
  • Consider the contents of the cyber deterrence framework
  • Review recent and historic cases and see lessons to be learnt
  • Create forward looking identifiers
  • Manage incidents effectively

Delegates who complete the course will receive a Certificate in Implementing Solutions to Mitigate Cybersecurity Risk; and for those who require a demonstration of competency via training a fully invigilated, 20 multiple-choice questions assessment including results report and 1 resit is available at no additional cost.

Social Learning & Methods

Highly interactive expert-led intensive presentation, Q&A, group real-time in-depth case studies, regulation and discussion supported by key principles and theory. The virtual learning platform uses safe, industry preferred encrypted Cisco WebEx to optimize live face-to-face visual interaction, discrete chat, for polling and quizzes.

(An invitation via email with access link is included for all participants.)


NEW Implementing Solutions to Mitigate Cybersecurity Risk

Course Fee

Apply 10% discount code RISK10 by December 15, 2023 at check-out

Course Fee (per person):
GBP £2,495.00 (+ UK VAT when applicable)

Number of delegates:

Data Privacy & Update of Contact Details Risk Reward Limited is fully compliant with the Data Protection Act. The information you provide will be safeguarded by Risk Reward Ltd. We do not rent, sell or exchange your details to anyone without your consent. Your details are never given to third parties. If you wish to update your details, please email: with your OLD and NEW details. Please allow 10 days to see the changes take effect. Thank you.

Terms and Conditions: You can cancel at any time. Due to the on-going COVID 19 environment cancellations may be made at any time for either a full refund or a credit towards another event occurring within the following 6 month period. Simply email or telephone the London Client Services team at to advise your preference and we will do our best to accommodate your circumstances. Risk Reward Ltd receives the right to a final decision in the event of a dispute.

All Risk Reward public courses are guaranteed to run although those offered by affiliates are subject to demand

Quick Contact

    Get in touch and see how Risk Reward can help you

    Our London team are ready to answer questions, provide information & choices to help make your public seminar booking in a prompt, professional & friendly manner.

    Get in touch and see how Risk Reward can help you

    Our London and Miami teams are ready to listen carefully to your needs, take the brief, explore options, offer suggestions and help you in a professional and friendly manner.