4, ba Cybersecurity is one of the biggest internal control areas that need executive attention. You just received an urgent call from the CEO. An e-mail was received demanding $10M Bitcoin to be paid as ransom to unencrypt the company's data. ​"Oh no! Maybe if we audited the organization's Cybersecurity program and controls before this happened, we might not be in this mess!" ​Sound familiar? Hundreds of Security, Compliance and Au...

4, ba Are your ITGC audits really helping to reduce your cybersecurity risks? This CPE internal auditor training event is designed for the financial auditor and IT auditor who need to improve their practical knowledge covering information technology general controls (ITGC). The attendees are walked through the concepts and frameworks that are important to the ITGC internal audit activities in order to create an added value for their organizati...

"How can we implement a holistic approach to cybersecurity?" "What methodologies, policies, technologies, and specific tools can we deploy to prevent, detect and monitor cybersecurity threats"? "How can we build a more effective program?" As more data breaches are disclosed, cybersecurity is at the forefront of Boards, executives, employees and consumers. Breaches are a continuing threat to an organization's reputation through the disclosure o...

With aging IT infrastructure, outdated job classification system and a greying government workforce, agency executive and human capital officers face a trifecta of challenges in the years ahead. Soaring demand for cybersecurity experts and data scientists are just two examples of the newer professional specialists that the government is struggling to hire. With the rise of vaccinated workers, questions have arisen about the reopening of federa...

The Continuous Diagnostic and Mitigation (CDM) program has matured and broadened its offerings and full deployment of agency dashboards is on the horizon. In the last year, however, ominous high profile breaches in commercial and critical infrastructure networks have highlighted the continued importance of strong cybersecurity across federal networks. In the wake of the pandemic, federal IT managers are faced with an increasingly complex cyber...

Supply Chain Risk Management (SCRM) and Cybersecurity Supply Chain Risk Management (C-SCRM) have gained increased attention recently as several high profile incidents compromised a number of federal systems. In the wake of those incidents, The White House, the Cybersecurity and Infrastructure Security Agency and the National Institute for Standards and Technology have all stepped in to provide new guidance and tools for agencies to improve the...