Seminar Objectives:

• Provide a general view of the new Information Security management methodologies.
• Understand the criteria that establish de scope of security management and allow us to answer to questions such as: How far should we secure? How much shall we invest?
• Learn about current tools that can be applied to each Information Security management element.
• Learn the ways in which domestic and international regulations aid us.
  

Developed for:

• Managers or Chiefs of Information Security, information Technology, IT Auditing.

Agenda:

1. Security outlook:

• Brief review on its evolution.
• Current global situation.
• Current situation in Argentina.
• Computer Information Security to Information Security.

2. Factors contributing to define the scope of Information Security in my company

• Company technology level.
• Security maturity level in the organization.
• Acceptable risk level.
• Requirements for operating continuity

3. Planning.

• Security Strategic Plan
• Information Security Plan
• Business Continuity Plan

4. Risk Management

• In project development and implementation
• In modifications to the technological platform
• Business Impact Analysis (BIA)

5. Compliance

• Habeas Data Law
• BCRA Standard 4609
• Sarbanes Oxley Act
• ISO 27002
• PCI DSS

6. Organizational Support

• Definition of roles and responsibilities.
• CSO responsibilities.
• Information Security Committee.
• Positioning of Information Security within the company.
• Staff awareness.
• Most usual issues and applicable solutions.

7. Management Control

• Critical Success Factors (CSF).
• Security Metrics.
• Incident detection and resolution.
• Executive reports.
  

Registration:

Please contact Claudia Macri (cmacri@cybsec.com) Tel/Fax: (+54-11) 4371-4444.