Cybersecurity Update 2016
See all upcoming live training CPE events here – including SOX training: 2016 Schedule
Presented by: Scott Laliberte is Protiviti’s Managing Director leading the firm’s Vulnerability and Penetration Testing Solution, and is one of three Managing Directors that reviews and approves all of Protiviti’s PCI reports on compliance. Laliberte has been with Protiviti since the start of the firm in 2002 and has more than 20 years of experience in information technology risk and security consulting. He is a published author and accomplished speaker. He has security expertise in numerous industries including financial services, retail, hospitality, healthcare, higher education, manufacturing, and consumer packaged goods.
Scott led off the presentation with a discussion of current events including statistics on date breaches.Board Engagement is key:
One in three companies do not have a written information security policy. There are critical gaps in data governance and management, and ones that carry considerable legal implications. On the other hand, organizations with all of these key data policies in place have far more robust IT security environments and capabilities.
Lack high confidence in ability to prevent cyber attack or data breach
Not all data is equal
Many are unprepared for a crisis
Common attacks include:
phishing and spear fishing
harvest credentials
deliver malware
attacks through third parties
they are gathering data for id theft and profit
fraudulent wires
stealing intellectual property
ransom