Cyber Security for Boards, Senior Executives and Senior Information Risk Owners (SIRO)

Financial Services are a key target for attacks by cyber criminals and hostile actors. Attacks targeting network infrastructure, or delivering infectious payloads through emails and network connections are common place. The risk of business execution being severely affected has never been greater.

Regulatory authorities have also increased their focus on how financial services companies protect their estate against information security risks. The FCA's Senior Manger Regime together with the Conduct Rules make it clear that a key responsibility for Executives is ensuring the whole business enterprise is appropriately protected from cyber-attacks. Securing the estate at a technological level together with the people awareness and training element is a key responsibility of the modern senior executive.

This NCSC certified course will provide Boards and Senior Executives with a comprehensive overview of the current cyber security threat landscape, focusing on the dynamic threats and risks to Financial Service institutions. The course includes guidance on governance and compliance topics including, SM&CR, MiFID II, NIS Regulation and UK DPA/GDPR referring to international standards and best practice.

Using relevant case studies and examples, Boards and Senior Executives will be provided with an understanding of their own leadership responsibilities with regards to the Cyber Security and Information Assurance agenda and what they need to be doing in order to mitigate risks and promote best practices within their organisations.

Key Learning Objectives

• Understanding of cyber security and demystifying associated terms
• Understanding of how cyber security impacts roles and responsibilities across business functions and the leadership Board Members and Senior Executives can provide
• Awareness of threats (including Social Media), consequences and how to mitigate risks both for organisation and self
• Overview of relevant legislation, legal rights and corporate and personal liabilities and responsibilities
• Understanding of Information Risk and Assurance and best practices including: Strategy and Governance; Information Risk; and Risk Appetite
• Discussion regarding Incident Management and Business Continuity
• An opportunity to build on understanding through questions and case studies

09:30 Introductions and objectives for the session;

• The Cyber Security Context and evolving Landscape: Threats, Risks, Trends.

10:30 Compliance, Risk and Legal landscape: Regulations; personal and corporate liabilities; consequences of breaches with example case studies.

11:00 Break

11:15 Best practice governance: developing a holistic approach;

• Roles and Responsibilities: managing stakeholders and creating a cross-functional business capability.

11:45 Managing Risk and Cyber Resilience: including best practice for Cyber Resilience and Business Continuity;

• The role of Senior Executives; to promote a positive culture and meet compliance requirements.

12:30 Q&A and Feedback

13:00 Close and networking lunch

This course is appropriate for Board members and Senior Executives wishing to broaden their understanding of the current Cyber Security landscape, how to address key challenges through best practice, and to support their business strategy and personal capability.

Edward Wolton

As one of NCSC’s first Certified Trainers, Edward provides strategic advice and training worldwide to CEOs, Senior Information Risk Owners and Chief Risk Officers, Chief Information Security Officers and other C-level Board executives and Non-Executive Directors, as well as to Senior Civil Servants and Military Officers.

Edward is an experienced strategy adviser and solution implementer, with international leadership experience in both government and commercial organisations. He has 22 years’ experience in the fields of Cyber Security, Information Assurance and Information and Communications Technology after a background in Computer Science and Computing Information Systems; he is now a Visiting Teacher of Cyber Security at the Oxford Martin School of Oxford University.

At Templar Executives, Edward leads on audits and compliance-related activities with a focus on Critical National Infrastructure, including Central Government and Law Enforcement, and with his team provides a range of organisations from Public Sector bodies and commercial businesses to High Net Worth individuals and others with a number of Cyber intelligence-related products and services.

Edward has worked with G7 Central Banks CISOs through to the US Department of Homeland Security and a wide range of FTSE 100 and 350 companies as well as small-to-medium enterprises.

As Deputy CEO of Templar Executives and Managing Director of Templar Assure & Advise, Edward is committed to organisations achieving high performance strategy and transformation through the application of informed best practice; recent engagements have resulted in the amelioration of how organisations and in particular their Boards optimise their business and improve their agility in the face of diverse and dynamic economic, technological and State-borne challenges.

IA Member £395.00 +VAT
Non-Member £545.00 +VAT

Pay using a credit card online, or if you wish to be invoiced please email your full details to: Training@theia.org

PLEASE NOTE: Full payment for the course must be made prior to the course commencement date.

• Any cancellation must be made in writing.
• For all cancellation received 15-30 days prior to the course start date, 50% of the course fee is still payable.
• No refund is given for a cancellation made 14 days or less prior to the commencement of a course. Transferring from one course to another is treated as a cancellation.
• You can substitute one delegate for another at no additional cost. In this instance, please give two business days’ notice.

Hybrid Training Courses:

We will continue to monitor and follow government guidance regarding coronavirus (Covid-19) to ensure the safety of our team and our members. Please be advised some training courses could change from hybrid delivery (being held in-person and virtually) to solely virtual delivery, should government guidance require.

There are a limited number of in-person spaces available on this course and this will be allocated on a first come first served basis.