Summary:
Continuous Improvement is essential towards a stable business. In addition, it’s important and tactical to be able to measure the progress and effect of your Business Continuity Management Systems implementation programme. In this webinar, we will discuss some approaches and metrics that can be used to follow how well your project stays on track and achieves its objectives.
Presenter:
This webinar will be presented by PECB partner Mr. Brian Henry, CEO and Owner of Caridon Business Solutons. By leading his company, he has 30+ years of experience in IT, and 28 years on Management Consulting. Brian has been an active member in Disaster Recovery and Business Continuity since 1985, and he is also a University lecturer. He has gained his rich experience by working in industries like mining, financial services, manufacturing, and local government. His specialties are: GCR, Business Continuity Management, Knowledge Management.
How to integrate BCMS with Organization's culture?Abdul Naseer
Business Continuity Management and Crisis Management needs to be an integral part of corporate governance. The process should start with defining Business Continuity objectives, scope of BCMS and then building a proper governance.
5 Is For Grooming A Bcm Culture Eneni Oduwoles PresentationEneni Oduwole
Developing a business continuity plan is just as challenging as ensuring that the right culture is in place to promote this practice.
I share my thoughts on how to embed a business continuity culture in an organization.
The webinar covers:
• Why do we need to exercise?
• The types of exercises.
• How to perform an exercise?
Presenter:
This webinar was presented by Barbro Thöyrä. Ms. Thöyrä is Owner of CeBeLOT, BCMS consultant and trainer and a PECB Certified Trainer.
Link of the webinar session published on YouTube: https://youtu.be/v3wpVkHI-2c
The webinar will cover why we should document the BCMS plan and how it can be done.
Main points covered:
· Why do we need to document
· What is included in the documentation
· How is the documentation used
Presenter:
Barbro Thöyrä, MBA., holds certificates in ISO 22301 Master and Lead Auditor, ICT Disaster Recovery Manager, ISO 28000 Provisional Implementer, PECB Certified Outsourcing Manager and DRI Risk Management. She is an approved PECB and DRI trainer and BCI Instructor.
She has several years of experience as an IT manager, product manager and subject matter expert in BCMS. She has worked as a senior consultant, project management, IT architect, wrote manuals and developed services within BCMS and CRM. Furthermore, she is a trainer in IT and BCMS and carried out several international BCMS and IT projects as an expert and project manager.
Link of the webinar published on YouTube: https://youtu.be/q3Jr9k-tbic
Best-in-Class Crisis Preparation: Maximize Readiness with the Four T’sMissionMode
As presented at DRJ Spring World 2015.
Presenter: Robert Edson, Vice President, MissionMode
While business continuity management as a discipline continues to develop rapidly, it’s clear that many companies worldwide are failing in terms of disaster readiness. There’s no doubt that business continuity management is complex, but there are things every company can do to speed up their BCM maturity curve.
In this presentation, Edson takes an in-depth look at common pitfalls as well as solutions to improve program effectiveness that any company can implement. He shares results from MissionMode’s Readiness Survey and experience gained working with MissionMode clients including Gap, Inc., Xcel Energy and others to illustrate how the right combination of teamwork, templates, testing and tools helps organizations enhance their business continuity programs.
How to integrate BCMS with Organization's culture?Abdul Naseer
Business Continuity Management and Crisis Management needs to be an integral part of corporate governance. The process should start with defining Business Continuity objectives, scope of BCMS and then building a proper governance.
5 Is For Grooming A Bcm Culture Eneni Oduwoles PresentationEneni Oduwole
Developing a business continuity plan is just as challenging as ensuring that the right culture is in place to promote this practice.
I share my thoughts on how to embed a business continuity culture in an organization.
The webinar covers:
• Why do we need to exercise?
• The types of exercises.
• How to perform an exercise?
Presenter:
This webinar was presented by Barbro Thöyrä. Ms. Thöyrä is Owner of CeBeLOT, BCMS consultant and trainer and a PECB Certified Trainer.
Link of the webinar session published on YouTube: https://youtu.be/v3wpVkHI-2c
The webinar will cover why we should document the BCMS plan and how it can be done.
Main points covered:
· Why do we need to document
· What is included in the documentation
· How is the documentation used
Presenter:
Barbro Thöyrä, MBA., holds certificates in ISO 22301 Master and Lead Auditor, ICT Disaster Recovery Manager, ISO 28000 Provisional Implementer, PECB Certified Outsourcing Manager and DRI Risk Management. She is an approved PECB and DRI trainer and BCI Instructor.
She has several years of experience as an IT manager, product manager and subject matter expert in BCMS. She has worked as a senior consultant, project management, IT architect, wrote manuals and developed services within BCMS and CRM. Furthermore, she is a trainer in IT and BCMS and carried out several international BCMS and IT projects as an expert and project manager.
Link of the webinar published on YouTube: https://youtu.be/q3Jr9k-tbic
Best-in-Class Crisis Preparation: Maximize Readiness with the Four T’sMissionMode
As presented at DRJ Spring World 2015.
Presenter: Robert Edson, Vice President, MissionMode
While business continuity management as a discipline continues to develop rapidly, it’s clear that many companies worldwide are failing in terms of disaster readiness. There’s no doubt that business continuity management is complex, but there are things every company can do to speed up their BCM maturity curve.
In this presentation, Edson takes an in-depth look at common pitfalls as well as solutions to improve program effectiveness that any company can implement. He shares results from MissionMode’s Readiness Survey and experience gained working with MissionMode clients including Gap, Inc., Xcel Energy and others to illustrate how the right combination of teamwork, templates, testing and tools helps organizations enhance their business continuity programs.
PACE: Process and Critical Equipment Conference in Dubai, Sept 24-25Ricky Smith CMRP, CMRT
PACE: Process and Critical Equipment
The key to optimising asset performance efficiency and management is by integrating the equipments,
processes and people.
Join me for a great learning experience. I will be the keynote and will presenting a paper as well. We have some great talent attending, see you in Dubai.
The Quality Management webinar series, hosted by the IAASB in collaboration with IFAC, takes a deep dive into aspects of the IAASB’s International Standard on Quality Management 1, Quality Management for Firms that Perform Audits or Reviews of Financial Statements, or Other Assurance or Related Services Engagements.
The webinar series focused on:
Webinar One: All You Need to Know about the Firm’s Risk Assessment Process
Webinar Two: Resources: Expectations for Firms and Engagement Partners
Webinar Three: What’s New for Firms’ Monitoring and Remediation Processes
Webinar Four: Bringing it All Together: Exploring all the Components of a Quality Management System
ISQM 1 is part of the IAASB’s suite of quality management standards. Firms are required to have systems of quality management designed and implemented in accordance with ISQM 1 by December 15, 2022. Learn more about the quality management standards at: iaasb.org/quality-management
Integrated Performance Management starts with a strategy
Strategy starts with a Balanced Scorecard with measures needed to assess if the performance processes and plans are actually delivering the planned performance
A short presentation of the essentials of business continuity planning. Often put on the back burner because it's seems too complex. Whereas the principles are quite straightforward.
Leveraging Gap Assessments and Internal Audits in ISO 22301PECB
A focus on the strategic operation of the assessment and audit function of the BCMS to meet system goals and objectives, maintain conformance and leverage to enhance the awareness and benefits of the BCMS. Topics include the design and methodology of the internal audit plan and opportunities for using proven performance to promote awareness of the BCMS and quantify value of the system.
Main points covered:
• Gap Assessment and Internal Audit Plan
• Methodology
• Show ROI on performance
Presenter:
The presenter of this webinar will be Jan Decker. She is a Consultant in Emergency Management, Crisis Management and related Business Continuity plans, programs, and information systems. She is certified ISO 22301 Lead Implementer and Lead Auditor Trainer.
Link of the recorded session published on YouTube: https://youtu.be/7AyikpO6GLA
PACE: Process and Critical Equipment Conference in Dubai, Sept 24-25Ricky Smith CMRP, CMRT
PACE: Process and Critical Equipment
The key to optimising asset performance efficiency and management is by integrating the equipments,
processes and people.
Join me for a great learning experience. I will be the keynote and will presenting a paper as well. We have some great talent attending, see you in Dubai.
The Quality Management webinar series, hosted by the IAASB in collaboration with IFAC, takes a deep dive into aspects of the IAASB’s International Standard on Quality Management 1, Quality Management for Firms that Perform Audits or Reviews of Financial Statements, or Other Assurance or Related Services Engagements.
The webinar series focused on:
Webinar One: All You Need to Know about the Firm’s Risk Assessment Process
Webinar Two: Resources: Expectations for Firms and Engagement Partners
Webinar Three: What’s New for Firms’ Monitoring and Remediation Processes
Webinar Four: Bringing it All Together: Exploring all the Components of a Quality Management System
ISQM 1 is part of the IAASB’s suite of quality management standards. Firms are required to have systems of quality management designed and implemented in accordance with ISQM 1 by December 15, 2022. Learn more about the quality management standards at: iaasb.org/quality-management
Integrated Performance Management starts with a strategy
Strategy starts with a Balanced Scorecard with measures needed to assess if the performance processes and plans are actually delivering the planned performance
A short presentation of the essentials of business continuity planning. Often put on the back burner because it's seems too complex. Whereas the principles are quite straightforward.
Leveraging Gap Assessments and Internal Audits in ISO 22301PECB
A focus on the strategic operation of the assessment and audit function of the BCMS to meet system goals and objectives, maintain conformance and leverage to enhance the awareness and benefits of the BCMS. Topics include the design and methodology of the internal audit plan and opportunities for using proven performance to promote awareness of the BCMS and quantify value of the system.
Main points covered:
• Gap Assessment and Internal Audit Plan
• Methodology
• Show ROI on performance
Presenter:
The presenter of this webinar will be Jan Decker. She is a Consultant in Emergency Management, Crisis Management and related Business Continuity plans, programs, and information systems. She is certified ISO 22301 Lead Implementer and Lead Auditor Trainer.
Link of the recorded session published on YouTube: https://youtu.be/7AyikpO6GLA
Balanced Scorecard, A Comprehensive Guide Upendra K
The Balanced scorecard is a management system that enables organizations to clarify their vision and strategy and translate them into action.
Provides an organization with feedback of both the internal business processes and external outcomes, which allows for continuous improvement of strategic performance and results.
Nerve center of an enterprise
The term “scorecard” signifies quantified performance measures and “balanced” signifies the system is balanced between:
Short-term and long term objectives
Financial and non-financial measures
Lagging and leading indicators
Internal and external performance perspectives
The concept of the balanced scorecard was first touted in the Harvard Business Review in 1992 in a paper written by Robert S Kaplan and David P Norton.
The paper introduced the idea of focusing on human issues as well as financial ones, and measuring performance across a much wider spectrum than businesses had done before.
Kaplan and Norton published their ideas in full in The Balanced Scorecard: Translating Strategy into Action in 1996 and it became a business bestseller.
The balanced scorecard is centered on four performance metrics or perspectives:
Customers
Internal processes
Financial
Learning and growth
When implemented properly, each one of these perspectives contains four subparts consisting of
Objectives
Measures
Targets
Initiatives
Successful strategy execution has two basic rules:
understand the management cycle that links strategy
and operations, and know what tools to apply at each stage of the cycle.
Surjit's Resume - Manager Customer Experience & Process ExcellenceSurjit Saggu
Lead Customer Experience department to focus on all customer touch points which would help business to improve. This is done by audits and process re-engineering or cutinuous improvement in the process
Identify and define top management’s
responsibility for the QMS, including
establishing policies and objectives, setting
organization-wide goals, and supporting
quality initiatives.
The #DROOS_FLGAWDA channel is dedicated to providing scientific content that effectively contributes to building knowledge among interested and quality workers as well as manufacturers and service providers so that they can achieve their products better, faster and at the lowest cost.
Simply channel #DROOS_FLGAWDA... will change your life for the better
JOIN-US FOR FREE
https://goo.gl/4S8PQ8
Similar to PECB Webinar: Continuous improvement and project measurements when implementing an ISO 22301 BCMS (20)
Beyond the EU: DORA and NIS 2 Directive's Global ImpactPECB
The global implications of DORA and NIS 2 Directive are significant, extending beyond the European Union.
Amongst others, the webinar covers:
• DORA and its Implications
• Nis 2 Directive and its Implications
• How to leverage directive and regulation as a marketing tool and competitive advantage
• How to use new compliance framework to request additional budget
Presenters:
Christophe Mazzola - Senior Cyber Governance Consultant
Armed with endless Excel files, a meme catalog worthy of the best X'os (formerly twittos), and a risk register to make your favorite risk manager jealous, I swapped my computer scientist cape a few years ago for that of a (cyber) threat hunter with the honorary title of CISO.
Ah, and I am also a quadruple senior certified ISO27001/2/5, Pas mal non ? C'est francais.
Malcolm Xavier
Malcolm Xavier has been working in the Digital Industry for over 18 Years now. He has worked with Global Clients in South Africa, United States and United Kingdom. He has achieved Many Professional Certifications Like CISSP, Google Cloud Practitioner, TOGAF, Azure Cloud, ITIL v3 etc.
His core competencies include IT strategy, cybersecurity, IT infrastructure management, data center migration and consolidation, data protection and compliance, risk management and governance, and IS program development and management.
Date: April 25, 2024
Tags: Information Security, Digital Operational Resilience Act (DORA)
-------------------------------------------------------------------------------
Find out more about ISO training and certification services
Training: Digital Operational Resilience Act (DORA) - EN | PECB
NIS 2 Directive - EN | PECB
Webinars: https://pecb.com/webinars
Article: https://pecb.com/article
Whitepaper: https://pecb.com/whitepaper
-------------------------------------------------------------------------------
For more information about PECB:
Website: https://pecb.com/
LinkedIn: https://www.linkedin.com/company/pecb/
Facebook: https://www.facebook.com/PECBInternational/
Slideshare: http://www.slideshare.net/PECBCERTIFICATION
DORA, ISO/IEC 27005, and the Rise of AI: Securing the Future of CybersecurityPECB
In an era where digital transformation is inevitable, the landscape of cybersecurity is constantly evolving.
Amongst others, the webinar covers:
• DORA and its Implications
• ISO/IEC 27005: Risk Management in Information Security
• Leveraging Artificial Intelligence for Enhanced Cybersecurity
Presenters:
Geoffrey L. Taylor - Director of Cybersecurity
Geoffrey Taylor brings a wealth of experience from multiple roles within various industries throughout his career. As a Certified ISO 27001 Implementer and Auditor, as well as certified ISO 27005, CISM and CRISC, he brings a unique perspective on cybersecurity strategy, risk management and the implementation of an Information Security Management System, having helped multiple organizations in aligning their strategy based on their threat landscape.
Martin Tully - Senior Cyber Governance Consultant
Martin is a Senior Consultant at CRMG with over twenty years of experience, and has previously been employed at two of the ‘Big Four’ professional services firms. Martin has worked across most industry sectors in the development of the best practice guidance and risk analysis methodologies. Martin is also accomplished at: leading the implementation of an ISMS; delivering a number of information risk assessments; reviewing information security policies; assessing security requirements across the supply chain; and updating a complete framework of supporting standards. Prior to the ISF, Martin’s roles have included delivering operational risk reporting, running research projects and benchmarking information security investments for major clients. Martin holds a Bachelors degree from Royal Holloway University of London.
Date: March 27, 2024
Tags: ISO, ISO/IEC 27005, ISO/IEC 42001, Artificial Intelligence, Information Security, Digital Operational Resilience Act (DORA)
-------------------------------------------------------------------------------
Find out more about ISO training and certification services
Training: ISO/IEC 27005 Information Security Risk Management - EN | PECB
ISO/IEC 42001 Artificial Intelligence Management System - EN | PECB
Webinars: https://pecb.com/webinars
Article: https://pecb.com/article
Whitepaper: https://pecb.com/whitepaper
-------------------------------------------------------------------------------
For more information about PECB:
Website: https://pecb.com/
LinkedIn: https://www.linkedin.com/company/pecb/
Facebook: https://www.facebook.com/PECBInternational/
Slideshare: http://www.slideshare.net/PECBCERTIFICATION
YouTube video: https://youtu.be/ffX-Xbw7XUk
Securing the Future: ISO/IEC 27001, ISO/IEC 42001, and AI GovernancePECB
In today’s rapidly evolving world, where Artificial Intelligence (AI) not only drives innovation but also presents unique challenges and opportunities, staying ahead means being informed.
Amongst others, the webinar covers:
• ISO/IEC 27001 and ISO/IEC 42001 and their key components
• Latest trends in AI Governance
• Ethical AI practices
• Benefits of Certification
Presenters:
Jeffrey Bankard - Cybersecurity & AI Leader, AI Management Systems: ISO/IEC 42001
Jeffrey provides executive leadership for AI product creation through the product incubation unit (PIU). Ensures the timely delivery of AI consulting engagements through cross-functional teams comprised of senior information and network security leaders to establish strategic goals for improving the security architecture and risk posture for clients. Consults with business leaders to define key performance indicators and service levels. Fosters employee development through mentoring and coaching. Decides how to achieve results within the organization’s strategic plans, policies, and guidelines. Develops new products and secures those products through current AI security guidelines (ISO 42001).
Adrian Resag - Experienced in Risk and Control - ISO/IEC 27001 and ISO/IEC 42001
Adrian believes a stimulating career can span many disciplines and that leading organizations value versatile professionals. He has enjoyed managing teams spanning the globe by working in world-leading organizations as Chief Audit Executive, Head of Risk Management, Information Systems Auditor, Head of Internal Control, as a consultant, a statutory auditor and an accountant. To allow such a diverse career, his approach has been to pursue certifications in many fields (making him one of the most qualified and certified in some of them). He has written books and created professional certifications in audit & assurance and compliance & ethics, and teaches in subjects from information security to risk management. With a passion for education, Adrian founded an educational institution and has taught tens of thousands of students and professionals online, in companies, universities and in governmental organizations.
Date: February 28, 2024
-------------------------------------------------------------------------------
Find out more about ISO training and certification services
Training: ISO/IEC 27001 Information Security Management System - EN | PECB
ISO/IEC 42001 Artificial Intelligence Management System - EN | PECB
Webinars: https://pecb.com/webinars
Article: https://pecb.com/article
Whitepaper: https://pecb.com/whitepaper
-------------------------------------------------------------------------------
For more information about PECB:
Website: https://pecb.com/
LinkedIn: https://www.linkedin.com/company/pecb/
Facebook: https://www.facebook.com/PECBInternational/
YouTube video: https://youtu.be/DujXaxBhhRk
The importance of a robust cybersecurity strategy cannot be overstated. Learning on the effective measures to be taken and tools needed to navigate the evolving cybersecurity landscape successfully is essential.
Amongst others, the webinar covers:
• ISO/IEC 27002 and ISO/IEC 27032 and their key components
• Key Components of a Resilient Cybersecurity Strategy
• CMMC Frameworks
Presenters:
Dr. Oz Erdem
Governance, Risk and Compliance (GRC) consultant, trainer, auditor, and speaker
Dr. Erdem has over 25 years of experience in information security, trade compliance, data privacy, and risk management. He took leadership roles in governance and compliance at various Fortune 100-500 companies and SMBs, including Siemens Corporation, Siemens Industry, Linqs, Texas Instruments, Rtrust, ICEsoft Technologies, NATO C3A, and BILGEM. In addition, successfully managed software development (i.e., embedded, cloud, and SaaS) and digital product projects involving information security, mobile networks, and IoT networks. Further, Dr. Erdem led several non-profit organizations, such as National Association of District Export Councils (NADEC), Government Contractors Council (GovConCouncil), and Central-North Florida District Export Council as the Chairman of the Board.
Peter Geelen
Peter Geelen is the director and managing consultant at CyberMinute and Owner of Quest for Security, Belgium. Over more than 20 years, Peter has built strong experience in enterprise security & architecture, Identity & Access management, but also privacy, information & data protection, cyber- and cloud security. Last few years, the focus is on ISO/IEC 27001 and other ISO certification mechanisms. Peter is accredited Lead Auditor for ISO/IEC 27001, ISO 9001, PECB Trainer and Fellow in Privacy. Committed to continuous learning, Peter holds renowned security certificates as certified ISO/IEC 27701 lead implementer and lead auditor, ISO/IEC 27001 Master, Sr. Lead Cybersecurity Manager, ISO/IEC 27002 lead manager, ISO/IEC 27701 Lead Implementer, cDPO, Risk management, Lead Incident Mgr., Disaster Recovery, and many more.
George Usi - CEO of Omnistruct
An internet pioneer and award-winning leader in internet governance with over 25 years of experience, George Usi knows that getting hacked is not a matter of ‘if’ but, ‘when’ and the fiscal and reputational effects that has on a business, the executives, and the board. George is the Co-Founder of Omnistruct, a cyber risk company. Omnistruct protects and expands revenue creation, reputation, and customer retention through cyber risk transference, governance, and compliance. We ensure that security and privacy programs work.
Date: January 24, 2024
YouTube Video: https://youtu.be/9i5p5WFExT4
Website: https://bit.ly/3SjovIP
ISO/IEC 27001 and ISO/IEC 27035: Building a Resilient Cybersecurity Strategy ...PECB
As we approach the new year, the importance of a robust cybersecurity strategy cannot be overstated. Learning on the effective measures to be taken and tools needed to navigate the evolving cybersecurity landscape successfully is essential.
Amongst others, the webinar covers:
• ISO/IEC 27001 and ISO/IEC 27035 and their key components
• Key Components of a Resilient Cybersecurity Strategy
• Best practices for building a resilient cybersecurity strategy in 2024
Presenters:
Rinske Geerlings
Rinske is an internationally known consultant, speaker and certified Business Continuity, Information Security & Risk Management trainer.
She was awarded Alumnus of the Year 2012 of Delft University, Australian Business Woman of the Year 2010-13 by BPW, Risk Consultant of the Year 2017 (RMIA/Australasia) and Outstanding Security Consultant 2019 Finalist (OSPAs)
Rinske has consulted to the Department of Prime Minister & Cabinet, 15 Central Banks, APEC, BBC, Shell, Fuji Xerox, NIB Health Funds, ASIC, Departments of Defense, Immigration, Health, Industry, Education, Foreign Affairs and 100s of other public and private organizations across 5 continents.
She has been changing the way organizations ‘plan for the unexpected’. Her facilitation skills enable organizations to achieve their own results and simplify their processes. She applies a fresh, energetic, fun, practical, easy-to-apply, innovative approach to BCM, Security, and Risk.
Her 'alter ego' includes being a lead singer in SophieG Music and contributing to the global charity playing for Change, which provides music education to children in disadvantaged regions.
Loris Mansiamina
A Senior GRC Professional consultant for Small, Medium and large companies. Over 10 years, Loris has been assisting clients in both public and private sectors about various matters relating to Gouvernance, Risk Management and Compliance (GRC), Digital transformation, cyber security program management, ISO 27k & ISO 20k implementation, COBIT & ITIL implementation, etc.
Date: December 19, 2023
Tags: ISO, ISO/IEC 27001, ISO/IEC 27035, Cybersecurity, Information Security
-------------------------------------------------------------------------------
Find out more about ISO training and certification services
Training: https://pecb.com/en/education-and-certification-for-individuals/iso-iec-27001
ISO/IEC 27035 Information Security Incident Management - EN | PECB
Webinars: https://pecb.com/webinars
Article: https://pecb.com/article
Whitepaper: https://pecb.com/whitepaper
-------------------------------------------------------------------------------
For more information about PECB:
Website: https://pecb.com/
LinkedIn: https://www.linkedin.com/company/pecb/
Facebook: https://www.facebook.com/PECBInternational/
Slideshare: http://www.slideshare.net/PECBCERTIFICATION
YouTube video: https://youtu.be/yT8gxRZD_4c
ISO/IEC 27001 and ISO/IEC 27005: Managing AI Risks EffectivelyPECB
In today's rapidly evolving digital landscape, the integration of artificial intelligence (AI) in business processes is becoming increasingly essential. Hence, it is crucial to stay informed and prepared.
Amongst others, the webinar covers:
• ISO/IEC 27005 and ISO/IEC 27001 and their key components
• The standard’s alignment
• Identifying AI risks and vulnerabilities
• Implementing effective risk management strategies
Presenters:
Sabrina Feddal
With more than 16 years of background in operational security, telco as engineer and project manager for major international companies. I have founded Probe I.T in 2016 to provide my customers (both national and international) with GRC services. Winner of the 2020 award, the CEFCYS – Main French Women in cybersecurity association - jury's favorite, she remains committed on a daily basis to maintaining diversity and gender diversity in her teams.
Passionate about Law, History & Cybersecurity. She has several professional certifications acquired over the course of her career: Prince2, CISSP, Lead Implementer ISO27001, Risk Manager, University degree in Cybercrime and Digital Investigation.
Her values: excellence, discretion, professionalism.
Mike Boutwell
Mike Boutwell is a Senior Information Security Specialist with over 15 years of experience in security and 10 years of risk management experience, primarily focused on financial services. He excels in collaborating with CISOs and other executive leadership to build and implement security frameworks aligned with business objectives and developing enterprise-wide security requirements. Mike has a strong track record of securing assets worth over $1 quadrillion and delivering $100M+ projects.
Mike is a certified CISSP, CISA, CGEIT, ISO 27001 Senior Lead Implementer, ISO 27001 Senior Lead Auditor, ISO 38500 Senior Lead IT Governance Manager, ISO 27032 Senior Lead Cyber Security Manager, and Certified Non-Executive Director.
Date: November 22, 2023
Tags: ISO, ISO/IEC 27001, ISO/IEC 27005, Cybersecurity, Information Security
-------------------------------------------------------------------------------
Find out more about ISO training and certification services
Training: https://pecb.com/en/education-and-certification-for-individuals/iso-iec-27001
ISO/IEC 27005 Information Security Risk Management - EN | PECB
Webinars: https://pecb.com/webinars
Article: https://pecb.com/article
Whitepaper: https://pecb.com/whitepaper
-------------------------------------------------------------------------------
For more information about PECB:
Website: https://pecb.com/
LinkedIn: https://www.linkedin.com/company/pecb/
Facebook: https://www.facebook.com/PECBInternational/
Slideshare: http://www.slideshare.net/PECBCERTIFICATION
YouTube video: https://youtu.be/TtnY1vzHzns
Aligning ISO/IEC 27032:2023 and ISO/IEC 27701: Strengthening Cybersecurity Re...PECB
In today's digital age, cybersecurity is more critical than ever. Hence, it is crucial to stay informed and prepared.
Amongst others, the webinar covers:
• ISO/IEC 27032:2023 and ISO/IEC 27701 and their key components
• The standard’s alignment
• Emerging Cybersecurity Threats
• What is new to the ISO/IEC 27032:2023
Presenters:
Madhu Maganti
Madhu is a goal-oriented cybersecurity/IT advisory leader with more than 20 years of comprehensive experience leading high-performance teams with a proven track record of continuous improvement toward objectives. He is highly knowledgeable in both technical and business principles and processes.
Madhu specializes in cybersecurity risk assessments, enterprise risk management, regulatory compliance, Sarbanes-Oxley (SOX) compliance and system and organization controls (SOC) reporting.
Jeffrey Crump
Mr. Jeffrey Crump is the Principal Consultant at Arizona-based Cyber Security Training and Consulting LLC and a graduate of the Certified NIS 2 Directive Lead Implementer course. He is a Certified CMMC Assessor, Certified CMMC Professional, and Instructor. Mr. Crump is also the author of Cyber Crisis Management Planning: How to reduce cyber risk and increase organizational resilience. His book has been expanded into a triad of certification courses on cyber crisis planning, exercises, and leadership.
Date: October 25, 2023
-------------------------------------------------------------------------------
Find out more about ISO training and certification services
Training: https://pecb.com/en/education-and-certification-for-individuals/iso-iec-27001
https://pecb.com/en/education-and-certification-for-individuals/iso-iec-27032
Webinars: https://pecb.com/webinars
Article: https://pecb.com/article
Whitepaper: https://pecb.com/whitepaper
-------------------------------------------------------------------------------
For more information about PECB:
Website: https://pecb.com/
LinkedIn: https://www.linkedin.com/company/pecb/
Facebook: https://www.facebook.com/PECBInternational/
Slideshare: http://www.slideshare.net/PECBCERTIFICATION
YouTube video: https://youtu.be/a21uasr8aLs
ISO/IEC 27001 and ISO/IEC 27032:2023 - Safeguarding Your Digital TransformationPECB
Cybersecurity is an ongoing journey. The regular update and improvement of security measures is essential to stay ahead of evolving threats.
Amongst others, the webinar covers:
• Benefits of Compliance
• Digital Transformation: Why
• ISO/IEC 27001 and ISO/IEC 27032
• ISO/IEC 27001: Information Security Management System (ISMS)
• ISO/IEC 27032: Cybersecurity Framework
Presenters:
Douglas Brush
Douglas Brush is a federally court-appointed Special Master, and Court Appointed Neutral expert in high-profile litigation matters involving privacy, security, and eDiscovery.
He is an information security executive with over 30 years of entrepreneurship and professional technology experience. He is a globally recognized expert in cybersecurity, incident response, digital forensics, and information governance. In addition to serving as a CISO and leading enterprise security assessments, he has conducted hundreds of investigations involving hacking, data breaches, trade secret theft, employee malfeasance, and various other legal and compliance issues.
He is the founder and host of Cyber Security Interviews, a popular information security podcast.
Douglas is also committed to raising awareness about mental health, self-care, neurodiversity, diversity, equity, and inclusion, in the information security industry.
Malcolm Xavier
Malcolm Xavier has been working in the Digital Industry for over 18 Years now. He has worked with Global Clients in South Africa, United States and United Kingdom. He has achieved Many Professional Certifications Like CISSP, Google Cloud Practitioner, TOGAF, Azure Cloud, ITIL v3 etc.
His core competencies include IT strategy, cybersecurity, IT infrastructure management, data center migration and consolidation, data protection and compliance, risk management and governance, and IS program development and management.
Carole Njoya
Founder in 2018 of Alcees, a Paris-based management consulting fabric specialized in cybersecurity, data privacy governance and digital trust, Carole Njoya provides independent, tailored and expert advisory to companies doing business in European markets and serving both B2B and B2C customers. With more than 100 cybersecurity projects delivered, she assists entities in preparing, implementing and maintaining the right best practices under the ISO 27001 compliance framework and GDPR article 25 obligation (Privacy by design) for their vendors. Carole Njoya featured in the « Women Know Cybersecurity » 2019 Twitter list edited by Cybercrime Magazine. Carole Njoya is committed in science and engineering since pre-teen period.
Date: September 27, 2023
-------------------------------------------------------------------------------
Find out more about ISO training and certification services
Training: https://pecb.com/en/education-and-certification-for-individuals/iso-iec-27001
https://pecb.com/en/education-and-certification-for-individuals/iso-iec-27032
YouTube video: https://youtu.be/U7tyzUrh8aI
Managing ISO 31000 Framework in AI Systems - The EU ACT and other regulationsPECB
The management of AI systems is a shared responsibility. By implementing the ISO 31000 Framework and complying with emerging regulations like the EU ACT, we can jointly create a more reliable, secure, and trustworthy AI ecosystem.
Amongst others, the webinar covers:
• Understanding AI and the regulatory landscape
• AI and the threat landscape
• A risk driven approach to AI assurance - based on ISO 31000 principles
• Stress testing to evaluate risk exposure
Presenters:
Chris Jefferson
Chris is the Co-Founder and CTO at Advai. As the Co-Founder of Advai, Chris is working on the application of defensive techniques to help protect AI and Machine Learning applications from being exploited. This involves work in DevOps and MLOps to create robust and consistent products that support multiple platforms, such as cloud, local, and edge.
Nick Frost
Nick Frost is Co-founder and Lead Consultant at CRMG. Nick’s career in cyber security spanning nearly 20 years. Most recently Nick has held leadership roles at PwC as Group Head of Information Risk and at the Information Security Forum (ISF) as Principal Consultant. In particular Nick was Group Head of Information Risk for PwC designing and implementing best practice solutions that made good business sense that prioritized key risks to the organisation and helped minimize disruption to ongoing operations. Whilst at the ISF Nick led their information risk projects and delivered many of the consultancy engagements to help organisations implement leading thinking in information risk management.
Nicks combined experience as a cyber risk researcher and practitioner designing and implementing risk based solutions places him as a leading cyber risk expert. Prior to cyber security and after graduating from UCNW and Oxford Brookes Nick was a geophysicist in the Oil and Gas Industry.
Date: August 24, 2023
-------------------------------------------------------------------------------
Find out more about ISO training and certification services
Training: https://pecb.com/en/education-and-certification-for-individuals/iso-31000
Webinars: https://pecb.com/webinars
Article: https://pecb.com/article
Whitepaper: https://pecb.com/whitepaper
-------------------------------------------------------------------------------
For more information about PECB:
Website: https://pecb.com/
LinkedIn: https://www.linkedin.com/company/pecb/
Facebook: https://www.facebook.com/PECBInternational/
Slideshare: http://www.slideshare.net/PECBCERTIFICATION
YouTube video: https://youtu.be/MXnHC6AvjXc
Impact of Generative AI in Cybersecurity - How can ISO/IEC 27032 help?PECB
Generative AI offers great opportunities for innovation in various industries. Hence, by adopting ISO/IEC 27032, you can enhance your cybersecurity resilience and efficiently address the risks associated with generative AI.
Amongst others, the webinar covers:
• AI & Privacy
• Generative AI, Models & Cybersecurity
• AI & ISO/IEC 27032
Presenters:
Christian Grafenauer
Anonymization expert, privacy engineer, data protection officer, LegalTech researcher (GDPR, Blockchain, AI) Christian Grafenauer is an accomplished privacy engineer, anonymization expert, and computer science specialist, currently serving as the project lead for anonymity assessments at techgdpr. With an extensive background as a senior architect in Blockchain for IBM and years of research in the field since 2013, Christian co-founded privacy by Blockchain design to explore the potential of Blockchain technology in revolutionizing privacy and internet infrastructure. As a dedicated advocate for integrating legal and computer science disciplines, Christian’s expertise in anonymization and GDPR compliance enables innovative AI applications, ensuring a seamless fusion of technology and governance, particularly in the realm of smart contracts. In his role at techgdpr, he supports technical compliance, Blockchain, and AI initiatives, along with anonymity assessments. Christian also represents consumer interests as a member of the national Blockchain and DTL standardization committee at din (German standardization institute) in ISO/TC 307.
Akin Johnson
Akin J. Johnson is a renowned Cybersecurity Expert, known for his expertise in protecting digital systems from potential threats. With over a decade of experience in the field, Akin has developed a deep understanding of the ever-evolving cyber landscape.
Akin is an advocate for cybersecurity awareness and frequently shares his knowledge through speaking engagements, workshops, and publications. He firmly believes in the importance of educating individuals and organizations on the best practices for safeguarding their digital assets.
Lucas Falivene
Lucas is a highly experienced cybersecurity professional with a solid base in business, information systems, information security, and cybersecurity policy-making. A former Fulbright scholar with a Master of Science degree in Information Security Policy and Management at Carnegie Mellon University (Highest distinction) and a Master's degree in Information Security at the University of Buenos Aires (Class rank 1st). Lucas has participated in several trainings conducted by the FBI, INTERPOL, OAS, and SEI/CERT as well as in the development of 4 cyber ISO national standards.
Date: July 26, 2023
YouTube Link: https://youtu.be/QPDcROniUcc
GDPR and Data Protection: Ensure compliance and minimize the risk of penaltie...PECB
By embracing the importance of GDPR and leveraging ISO/IEC 27701, you can enhance your data protection practices, achieve compliance, and minimize the risk of penalties.
Amongst others, the webinar covers:
Importance of Data Protection
Understanding Data Collection and Challenges
Introduction to GDPR
Key Principles of GDPR
Who does GDPR Apply to and Its Global Implications
Introduction to ISO/IEC 27701
Implementing ISO/IEC 27701
Privacy by Design
Dealing with IT on a Daily Basis
Building Awareness and Training
Audit, Data Discovery, and Risk Assessments
Presenters:
Mike Boutwell
Mike Boutwell is a Senior Information Security Specialist with over 15 years of experience in security and 10 years of risk management experience, primarily focused on financial services. He excels in collaborating with CISOs and other executive leadership to build and implement security frameworks aligned with business objectives and developing enterprise-wide security requirements. Mike has a strong track record of securing assets worth over $1 quadrillion and delivering $100M+ projects.
Mike is a certified CISSP, CISA, CGEIT, ISO 27001 Senior Lead Implementer, ISO 27001 Senior Lead Auditor, ISO 38500 Senior Lead IT Governance Manager, ISO 27032 Senior Lead Cyber Security Manager, and Certified Non-Executive Director.
Lisa Goldsmith
Lisa Goldsmith is the founder of LJ Digital and Data Consultancy. Lisa has over 23 years’ experience of supporting leadership teams in membership, charity, and wider not-for-profit organisations to simplify their IT and digital strategy that allows them to sleep soundly at night, knowing their systems and processes are fit for purpose, GDPR compliant, secure and that they deliver value to staff, members, and stakeholders.
Prior to starting her own consultancy, Lisa gained extensive experience working for membership organisations and has knowledge and expertise at all levels of operations from working within careers and qualifications teams, as Membership Manager, as Head of Digital & IT for delivering large-scale digital, IT and GDPR compliance projects and serving on several Senior Leadership Teams. Lisa is also currently a Trustee of the BCLA and Groundwork East.
Date: June 27, 2023
-------------------------------------------------------------------------------
Find out more about ISO training and certification services
Training: https://pecb.com/en/education-and-certification-for-individuals/iso-iec-27701
Webinars: https://pecb.com/webinars
Article: https://pecb.com/article
Whitepaper: https://pecb.com/whitepaper
For more information about PECB:
Website: https://pecb.com/
LinkedIn: https://www.linkedin.com/company/pecb/
Facebook: https://www.facebook.com/PECBInternational/
Slideshare: http://www.slideshare.net/PECBCERTIFICATION
YouTube video: https://youtu.be/lfJrSLaGDtc
Website: https://bit.ly/437GOnG
How Can ISO/IEC 27001 Help Organizations Align With the EU Cybersecurity Regu...PECB
The EU has implemented a range of regulations aimed at strengthening its cybersecurity posture. In this context, the ISO/IEC 27001 standard offers a comprehensive framework for managing and safeguarding sensitive information, such as personal data.
Amongst others, the webinar covers:
• Quick recap on the ISO/IEC 27001:2013 & 2022
• ISO/IEC 27001 vs legislation
• The EU Cyber Legislation landscape
• Some considerations and consequences
• How to stay on top of the ever changing context
Presenters:
Peter Geelen
Peter Geelen is the director and managing consultant at CyberMinute and Owner of Quest for Security, Belgium. Over more than 20 years, Peter has built strong experience in enterprise security & architecture, Identity & Access management, but also privacy, information & data protection, cyber- and cloud security. Last few years, the focus is on ISO/IEC 27001 and other ISO certification mechanisms. Peter is accredited Lead Auditor for ISO/IEC 27001, ISO 9001, PECB Trainer and Fellow in Privacy. Committed to continuous learning, Peter holds renowned security certificates as certified ISO/IEC 27701 lead implementer and lead auditor, ISO/IEC 27001 Master, Sr. Lead Cybersecurity Manager, ISO/IEC 27002 lead manager, ISO/IEC 27701 Lead Implementer, cDPO, Risk management, Lead Incident Mgr., Disaster Recovery, and many more.
Jean-Luc Peters
Jean-Luc Peters brings 25 years of IT technology, information and cybersecurity expertise to boards, executives, and employees. Since the younger age he has held management positions in the private and government sector. He is currently the Head of the Cyber Emergency Response team for the National Cybersecurity Authority in Belgium. In addition to this, he is also a trainer, coach and trusted advisor focusing on enhancing cyber resilience.
Jean-Luc has helped in the technical implementation of the NIS 1 (Network and Information Security) Directive transposition in Belgium, defining the Baseline Security Guidelines governmental ISMS framework and many other projects. He holds several certifications, including ISO/IEC 27001 Lead Implementer, ISO/IEC 27005 Auditor, CISSP, GISP, Prince 2 Practitioner, ITIL etc.
Date: May 31, 2023
Tags: ISO, ISO/IEC 27001, Information Security, Cybersecurity
-------------------------------------------------------------------------------
Find out more about ISO training and certification services
Training: https://pecb.com/en/education-and-certification-for-individuals/iso-iec-27001
Webinars: https://pecb.com/webinars
Article: https://pecb.com/article
Whitepaper: https://pecb.com/whitepaper
-------------------------------------------------------------------------------
For more information about PECB:
Website: https://pecb.com/
LinkedIn: https://www.linkedin.com/company/pecb/
Facebook: https://www.facebook.com/PECBInternational/
Slideshare: http://www.slideshare.net/PECBCERTIFICATION
YouTube video: https://youtu.be/rsjwwF5zlK8
ISO/IEC 27001 and ISO 22301 - How to ensure business survival against cyber a...PECB
To protect your organization from cyber attacks, you need to implement a robust information security management system (ISMS) and business continuity management system (BCMS) based on international standards, such as ISO/IEC 27001 and ISO 22301.
Amongst others, the webinar covers:
• Why we need a cyber response plan to protect business operations
• Introduction to ISO/IEC 27001 and ISO 22301
• What do we need for a cyber security response plan?
• How do we develop a cyber security response plan?
Presenters:
Nick Frost
Nick Frost is Co-founder and Lead Consultant at CRMG.
Nick’s career in cyber security spanning nearly 20 years. Most recently Nick has held leadership roles at PwC as Group Head of Information Risk and at the Information Security Forum (ISF) as Principal Consultant.
In particular Nick was Group Head of Information Risk for PwC designing and implementing best practice solutions that made good business sense, that prioritise key risks to the organisation and helped minimise disruption to ongoing operations. Whilst at the ISF Nick led their information risk projects and delivered many of the consultancy engagements to help organisations implement leading thinking in information risk management.
Nicks combined experience as a cyber risk researcher and practitioner designing and implementing risk based solutions places him as a leading cyber risk expert. Prior to cyber security and after graduating from UCNW and Oxford Brookes Nick was a geophysicst in the Oil and Gas Industry.
Simon Lacey
Simon is a resourceful, creative Information & Cyber Security professional with a proven track record of instigating change, disrupting the status quo, influencing stakeholders and developing ‘big picture’ vision across business populations. Multiple industry experience; excels in building stakeholder engagement & consensus; and suporting organisations to make sustainable change.
Simon also has considerable experience of risk management, education and awareness, strategy development and consulting to senior management and is a confident and engaging public speaker.
Simon has previously worked within the NHS, Bank of England and BUPA, before setting out as an independent consultan forming Oliver Lacey Limited, supporting clients in multiple business sectors.
When not working, Simon loves to run – currently training for the Berlin Marathon, a Director of Aylesbury United Football Club, records vlogs and is an experienced standup comic.
Date: April 26, 2023
Find out more about ISO training and certification services
Training: https://bit.ly/3AyoyYF
https://bit.ly/3LbBVTx
Webinars: https://pecb.com/webinars
Article: https://pecb.com/article
Whitepaper: https://pecb.com/whitepaper
For more information about PECB:
Website: https://pecb.com/
LinkedIn: https://www.linkedin.com/company/pecb/
Facebook: https://www.facebook.com/PECBInternational/
YouTube video: https://youtu.be/i4qx5mjEqio
Integrating ISO/IEC 27001 and ISO 31000 for Effective Information Security an...PECB
Integrating ISO/IEC 27001 and ISO 31000 can help organizations align their information security and risk management efforts with their overall business objectives, leading to more effective risk management and better decision-making.
Amongst others, the webinar covers:
• Aligning the ISMS process with ISO/IEC 27001
• Using ISO 31000 within the ISMS
• Aligning the RM process with ISO 31000
• How/where does ISO/IEC 27001 fit?
Presenters:
Nick Riemsdijk
As a highly experienced and multi-skilled leader in Information and Physical Security, Nick is known as a collaborative, focused, driven and highly analytical individual with a broad portfolio of successes in client engagements. His expertise spans devising, implementing, managing and delivering information security, physical security, organizational resilience and facilities management solutions for organizations. He is certified as a Certified Information Security Manager (CISM), Certified Protection Professional (CPP), in Project Management (Prince2), ISO 22301 (Business Continuity), ISO 27001 (Information Security), and ISO 31000 (Risk Management).
Rinske Geerlings
Rinske is an internationally known consultant, speaker and certified Business Continuity, Information Security & Risk Management trainer.
She was awarded Alumnus of the Year 2012 of Delft University, Australian Business Woman of the Year 2010-13 by BPW, Risk Consultant of the Year 2017 (RMIA/Australasia) and Outstanding Security Consultant 2019 Finalist (OSPAs)
Rinske has consulted to the Department of Prime Minister & Cabinet, 15 Central Banks, APEC, BBC, Shell, Fuji Xerox, NIB Health Funds, ASIC, Departments of Defense, Immigration, Health, Industry, Education, Foreign Affairs and 100s of other public and private organizations across 5 continents.
She has been changing the way organizations ‘plan for the unexpected’. Her facilitation skills enable organizations to achieve their own results and simplify their processes. She applies a fresh, energetic, fun, practical, easy-to-apply, innovative approach to BCM, Security, and Risk.
Her 'alter ego' includes being a lead singer in SophieG Music and contributing to the global charity playing for Change, which provides music education to children in disadvantaged regions.
Date: March 23, 2023
Find out more about ISO training and certification services
Training: https://pecb.com/en/education-and-certification-for-individuals/iso-31000
https://pecb.com/en/education-and-certification-for-individuals/iso-iec-27001
Webinars: https://pecb.com/webinars
Article: https://pecb.com/article
Whitepaper: https://pecb.com/whitepaper
-------------------------------------------------------------------------------
For more information about PECB:
Website: https://pecb.com/
LinkedIn: https://www.linkedin.com/company/pecb/
Facebook: https://www.facebook.com/PECBInternational/
YouTube video: https://youtu.be/Xj0U2mbpZUs
IT Governance and Information Security – How do they map?PECB
Effective IT Governance requires proper Information Security practices to ensure that the organization's data is secure. On the other hand, Information Security policies and procedures must be aligned with the organization's overall IT Governance framework to ensure that security measures do not negatively impact business operations.
Amongst others, the webinar covers:
▪ Bring Governance and InfoSec Together
▪ Answering WIIFM
▪ Business Terms
Presenters:
Dr. Edward Marchewka
Dr. Edward Marchewka is a seasoned executive that has come up through the ranks in the IT vertical, expanding into information security, quality management, and strategic planning.
Edward founded and serves as the Principal for 3LC Solutions, enabling YOU to Tell a Better Story in business, with our vCIO, vCISO, quality, and strategy consulting services, through metrics and relating risk to the business with our CHICAGO Metrics® SaaS solution.
He has also held several roles leading information technology, most recently with Gift of Hope Organ and Tissue Donor Network, leading the Information and Technology Services department as the Director of IT, Data, and Security Services. Prior to Gift of Hope, he ran information security for Chicago Public Schools.
Edward has earned a Doctorate of Business Administration from California Southern University and Masters’ degrees in Business Administration and Mathematics from Northern Illinois University. He earned Bachelors’ degrees in Liberal Studies and Nuclear Engineering Technologies from Thomas Edison State College, N.J. Edward maintains several active IT, security, and professional certifications from (ISC)2, ASQ, ITIL, PCI, PMI, ISACA, Microsoft, and CompTIA. He has held legacy IT certifications from Cisco and HP, and a designation from the National Security Agency.
Date: February 22, 2023
-------------------------------------------------------------------------------
Find out more about ISO training and certification services
Training: https://pecb.com/en/education-and-certification-for-individuals/iso-iec-38500
https://pecb.com/en/education-and-certification-for-individuals/iso-iec-27001
Webinars: https://pecb.com/webinars
Article: https://pecb.com/article
Whitepaper: https://pecb.com/whitepaper
-------------------------------------------------------------------------------
For more information about PECB:
Website: https://pecb.com/
LinkedIn: https://www.linkedin.com/company/pecb/
Facebook: https://www.facebook.com/PECBInternational/
Slideshare: http://www.slideshare.net/PECBCERTIFICATION
YouTube video: https://youtu.be/2bSbAdL5Idg
Student Information Session University Digital Encode.pptxPECB
oin us as our Director for Business Mustafe Bislimi teams up with Dr. Obadare Peter Adewale, our academic partner Digital Encode Limited, to provide valuable information about our programs, admissions process and specialization and elective courses.
Discover the opportunities available to you as a student at PECB University and get a firsthand look at what makes us a top choice for education.
Whether you're a prospective student or simply curious about PECB University, don't miss this informative session! Subscribe to our channel and stay tuned for more videos.
For inquiries regarding admission process contact us: university.studentaffairs@pecb.com
-EMBA in Cybersecurity: https://www.youtube.com/redirect?event=video_description&redir_token=QUFFLUhqbHJQUUpjMmY2NmcyeURhTzE5VlRSNjg2Y1hwd3xBQ3Jtc0tuLTZqdmZyWkc2VVNQV21YRTlKZUQ2SEtUenNXbzYyb1ZianV5cldDYTViWjZ1eVhCNWtxWHI3VTNwRS1BOE4wTERkZ3BtcndwM0sxdVoydWZYSXBkV2hYd2lwU0NLSTk5WERWMlhtVk1Ud2tuWTRjTQ&q=https%3A%2F%2Fpecb.university%2Fprograms%2Fmba-programs%2Fcybersecurity&v=3YJbbr708pk
-EMBA in Business Continuity Management: https://www.youtube.com/redirect?event=video_description&redir_token=QUFFLUhqa3JQTGVhd1VfeG1weWNzUzRrMmg2bk0tc3kxUXxBQ3Jtc0tsOVF5VG82TkhRU3R5TVRWWmdhMzBrSTU2eW9wby1OYWN4VTg5bkJBY0lhTmNsOFhETzB5cVp0WU8zbTQwTlZkdk9Dby1fSXdhWmRpZFFPUmk3NS1QOGpMOVBlaDFhVVpwa2JZMkxKNGRnTnppMm93SQ&q=https%3A%2F%2Fpecb.university%2Fprograms%2Fmba-programs%2Fbusiness-continuity-management&v=3YJbbr708pk
-EMBA in Governance, Risk, and Compliance: https://www.youtube.com/redirect?event=video_description&redir_token=QUFFLUhqbUplMGtjOFRWbzdGWERmdTR2QjdSbTBuQUxCd3xBQ3Jtc0tsNVdOU1p6UERWM3ZySE55V2FlWlJ1aFlzUU85VEt0aVRoR0hyTjNHbUNVYVMyb0lzTkZycUtJRzNxazlDWGRqTHZQMWJPZEYwbG1xWjVJN1JNOW1QUjJBZDY3NkU5LVl0b2xxOFpkZW1ZX2F3QmF5cw&q=https%3A%2F%2Fpecb.university%2Fprograms%2Fmba-programs%2Fgovernance-risk-compliance&v=3YJbbr708pk
Being aware of the trends that are expected to shape the digital landscape is an important step in ensuring the security of your data and online assets.
Amongst others, the webinar covers:
• Top Cyber Trends for 2023
• Cyber Insurance
• Prioritization of Cyber Risk
Presenters:
Colleen Lennox
Colleen Lennox is the Founder of Cyber Job Central, a newly formed job board dedicated to Cybersecurity job openings. Colleen has 25+ years in Technical Recruiting and loves to help other find their next great job!
Madhu Maganti
Madhu is a goal-oriented cybersecurity/IT advisory leader with more than 20 years of comprehensive experience leading high-performance teams with a proven track record of continuous improvement toward objectives. He is highly knowledgeable in both technical and business principles and processes.
Madhu specializes in cybersecurity risk assessments, enterprise risk management, regulatory compliance, Sarbanes-Oxley (SOX) compliance and system and organization controls (SOC) reporting.
Date: January 25, 2023
Tags: ISO, ISO/IEC 27032, Cybersecurity Management
-------------------------------------------------------------------------------
Find out more about ISO training and certification services
Training: https://pecb.com/en/education-and-certification-for-individuals/iso-iec-27032
https://pecb.com/article/cybersecurity-risk-assessment
https://pecb.com/article/a-deeper-understanding-of-cybersecurity
Webinars: https://pecb.com/webinars
Article: https://pecb.com/article
Whitepaper: https://pecb.com/whitepaper
-------------------------------------------------------------------------------
For more information about PECB:
Website: https://pecb.com/
LinkedIn: https://www.linkedin.com/company/pecb/
Facebook: https://www.facebook.com/PECBInternational/
Slideshare: http://www.slideshare.net/PECBCERTIFICATION
YouTube video: https://youtu.be/BAAl_PI9uRc
Unit 8 - Information and Communication Technology (Paper I).pdfThiyagu K
This slides describes the basic concepts of ICT, basics of Email, Emerging Technology and Digital Initiatives in Education. This presentations aligns with the UGC Paper I syllabus.
Palestine last event orientationfvgnh .pptxRaedMohamed3
An EFL lesson about the current events in Palestine. It is intended to be for intermediate students who wish to increase their listening skills through a short lesson in power point.
Macroeconomics- Movie Location
This will be used as part of your Personal Professional Portfolio once graded.
Objective:
Prepare a presentation or a paper using research, basic comparative analysis, data organization and application of economic information. You will make an informed assessment of an economic climate outside of the United States to accomplish an entertainment industry objective.
Honest Reviews of Tim Han LMA Course Program.pptxtimhan337
Personal development courses are widely available today, with each one promising life-changing outcomes. Tim Han’s Life Mastery Achievers (LMA) Course has drawn a lot of interest. In addition to offering my frank assessment of Success Insider’s LMA Course, this piece examines the course’s effects via a variety of Tim Han LMA course reviews and Success Insider comments.
Biological screening of herbal drugs: Introduction and Need for
Phyto-Pharmacological Screening, New Strategies for evaluating
Natural Products, In vitro evaluation techniques for Antioxidants, Antimicrobial and Anticancer drugs. In vivo evaluation techniques
for Anti-inflammatory, Antiulcer, Anticancer, Wound healing, Antidiabetic, Hepatoprotective, Cardio protective, Diuretics and
Antifertility, Toxicity studies as per OECD guidelines
A Strategic Approach: GenAI in EducationPeter Windle
Artificial Intelligence (AI) technologies such as Generative AI, Image Generators and Large Language Models have had a dramatic impact on teaching, learning and assessment over the past 18 months. The most immediate threat AI posed was to Academic Integrity with Higher Education Institutes (HEIs) focusing their efforts on combating the use of GenAI in assessment. Guidelines were developed for staff and students, policies put in place too. Innovative educators have forged paths in the use of Generative AI for teaching, learning and assessments leading to pockets of transformation springing up across HEIs, often with little or no top-down guidance, support or direction.
This Gasta posits a strategic approach to integrating AI into HEIs to prepare staff, students and the curriculum for an evolving world and workplace. We will highlight the advantages of working with these technologies beyond the realm of teaching, learning and assessment by considering prompt engineering skills, industry impact, curriculum changes, and the need for staff upskilling. In contrast, not engaging strategically with Generative AI poses risks, including falling behind peers, missed opportunities and failing to ensure our graduates remain employable. The rapid evolution of AI technologies necessitates a proactive and strategic approach if we are to remain relevant.
Embracing GenAI - A Strategic ImperativePeter Windle
Artificial Intelligence (AI) technologies such as Generative AI, Image Generators and Large Language Models have had a dramatic impact on teaching, learning and assessment over the past 18 months. The most immediate threat AI posed was to Academic Integrity with Higher Education Institutes (HEIs) focusing their efforts on combating the use of GenAI in assessment. Guidelines were developed for staff and students, policies put in place too. Innovative educators have forged paths in the use of Generative AI for teaching, learning and assessments leading to pockets of transformation springing up across HEIs, often with little or no top-down guidance, support or direction.
This Gasta posits a strategic approach to integrating AI into HEIs to prepare staff, students and the curriculum for an evolving world and workplace. We will highlight the advantages of working with these technologies beyond the realm of teaching, learning and assessment by considering prompt engineering skills, industry impact, curriculum changes, and the need for staff upskilling. In contrast, not engaging strategically with Generative AI poses risks, including falling behind peers, missed opportunities and failing to ensure our graduates remain employable. The rapid evolution of AI technologies necessitates a proactive and strategic approach if we are to remain relevant.
Instructions for Submissions thorugh G- Classroom.pptxJheel Barad
This presentation provides a briefing on how to upload submissions and documents in Google Classroom. It was prepared as part of an orientation for new Sainik School in-service teacher trainees. As a training officer, my goal is to ensure that you are comfortable and proficient with this essential tool for managing assignments and fostering student engagement.
PECB Webinar: Continuous improvement and project measurements when implementing an ISO 22301 BCMS
1.
2. About us
We offer experienced and cost
effective professional guidance
and provide quality independent
and confidential services.
• Our main focus areas:
• Governance, Risk and Compliance
• Business Continuity Management
• Contract Lifecycle and Risk
Management
• Project Management
• Knowledge Management
• Change Management
• Training, Mentoring and Coaching
• ISO Management Systems
www.thecaridongroup.com.au
3. Continuous improvement and project
measurements when implementing
an ISO 22301 BCMS
Brian Henry
The Caridon Group
4. Some Facts
The dramatic statistic that more that 80% of projects
initiated by enterprises never actually deliver the
intended results remains as a grim testament to the
ineffectiveness of traditional application of
programme management and project delivery
methodologies.
5. BCM is a Journey, not a
destination
It’s important that we are avoid getting
lost along the way.
That means knowing how to navigate
6. Coordinates:
1. A coordinate system in which locations of points
in space are expressed by reference to three
mutually perpendicular planes, called coordinate
planes. The three planes intersect in three
straight lines called coordinate axes.
2. Mathematics: Any of a set of two or more
numbers used to determine the position of a
point, line, curve, or plane in a space of a given
dimension with respect to a system of lines or
other fixed references.
7. Vectors:
In this context we are considering vectors as
depicting a point in space by two measurements:
1. distance
2. direction
10. Coordinates –a Sales Example
Improvement Factor Units (Metric) Current Required Scale
1. Recruit good people Majority must have
3 yrs experience
(target 85%)
30% 85% 0% - 100%
2. Keep their motivation high No of Sick leave
days (max is 25)
20 5 0 - 25
3. Productivity 75% must achieve
target in past 2 the
years
22% 75% 0% -100%
12. Improving Sales project plan
a project plan
Need three groups of activities or project ‘Phases’
1.Recruit good people
• Review current qualifications, competencies, capacities
• Retrench
• Retrain
• Review
2.Keep their motivation high
• Review past sick leave forms
• Identify causes of illness,
• Review seasonal trends
• Prepare corrective campaigns
3.Productivity
• Interview sales force
• Conduct workshops to Identify and understand reasons for wins and losses
• Revise targets and target markets and product focus
• Upgrade sales forecast and reporting system
14. Business Continuity
Worst case scenario
Recoverability
Resilience
consider the effectiveness of ongoing processes
procedures and activities
“How do we know when we have achieved
the end-state?”
15. ISO22301
-the BCM Frame of Reference
• Generic not prescriptive
• No specific answers
• Depends on your own circumstances, domain,
market etc.
16. ISO22301 coordinates
From Table of contents
4. Context of the
Organisation
5. Leadership
6. Planning
7. Support
8. Operation
9. Performance
Evaluation
10. Improvement
0%
10%
20%
30%
40%
50%
60%
70%
80%
90%
100%
Context of the
Organisation
Leadership
Planning
SupportOperation
Performance
Evaluation
Improvement
ISO22301 Compliance
17. Implementing ISO22301
• From the start, base the
plan on Plan Do Check
Act (PDCA)
• Draft your project plan
accordingly
18. Align the project activities to the
coordinates:
• For each project activity,
identify if it affects the
coordinates.
• Ensure that the activities,
when completed will
result in an acceptable
level of compliance.
• Review the coordinates
to identify indicators that
can be used to track
compliance in your own
enterprise
Assumptions:
1. The coordinate scales
are all 0% to 100%
2. Completing all
activities relating to a
coordinate, results in a
coordinate value of
100%
19. Effectiveness
of the Project
Tracks the project
progress, assigning task
progress to the
coordinates as a measure
of progress top the end
goal,
The project end goal may
be set as say 85%
compliant on all 7
coordinates.
Completion of the project
sets benchmark from
which to improve
20. The Check- Act Cycles
• BCMS Management procedures
• Policy,
• Business Impact Assessments
• Risk Assessments
• Strategies
• BCMS Plans
• Testing Schedules
• Exercises and Tests
• Audit programmes
• Management reviews
• Non-conformity procedures and execution
• BCM awareness at a strategic and project level
• Capability and capacity of the BCMS teams
• Training schedules and attendance
• Awareness programmes –cultural alignment
• Some items on the left are
deliverables from the
implementation project.
• Set review dates where
appropriate as compliance
metrics; e.g. Anything older
than 12 months is non-
compliant,
• Measure compliance as a
percentage where relevant
21. The Check- Act Cycles -some examples
Compliance / Maturity measure Example Metric
BCMS Management procedures Currency of formalised procedures
Policy <12 months old
BCMS Scope % <12 months old
Business Impact Assessments % <12 months old
Risk Assessments Update annually, risks in ERM register
Strategies % <12 months
BCMS Plans % <12 months
Testing Schedules Every January
Exercises and Tests1 % completed against schedule
Exercises and Tests2 % completed by exercise level
Audit programmes1 Current year
Audit programmes2 % completed this year
Management reviews % conducted as scheduled
Non-conformity procedures and execution % non-conformities remedied
BCM awareness at a strategic and project
level
% of projects with a BC Plan
Capabilityof the BCMS teams %Role players trained and level thereof
Capacity of the BCMS teams % vacant posts
Training schedules and attendance % of candidates following schedule
Awareness programmes –cultural alignment
% attendance at awareness sessions or completed online
awareness successfully.
22. Setting the scorecard
BCMS Element
Contextofthe
Organisation
Leadership
Planning
Support
Operation
Performance
Evaluation
Improvement
Compliance / Maturity measure Sec 4 Sec 5 Sec 6 Sec 7 Sec 8 Sec 9 Sec 10
BCMS Management procedures X X X X
Policy X X
BCMS Scope X X X
Business Impact Assessments X
Risk Assessments X
Strategies X
BCMS Plans X X X
Testing Schedules X
Exercises and Tests1 X
Exercises and Tests2
Audit programmes1 X X
Audit programmes2 X
Management reviews X
Non-conformity procedures and execution X
BCM awareness at a strategic and project level X
Capabilityof the BCMS teams X
Capacity of the BCMS teams X
Training schedules and attendance X X
Awareness programmes –cultural alignment X
23. Setting the scorecard
BCMS Element Status Score
ContextoftheOrganisation
Leadership
Planning
Support
Operation
PerformanceEvaluation
Improvement
Sec 4 Sec 5 Sec 6 Sec 7 Sec 8 Sec 9 Sec 10
Compliance / Maturity measure Example Metric
2 6 5 1 2 6 6
Score 100% 17% 29% 0% 11% 25% 0%
BCMS Management procedures Currency of formalised procedures y 100% 1 1 1 1
Policy <12 months old y 100% 1 1
BCMS Scope % <12 months old y 100% 1 1 1
Business Impact Assessments % <12 months old n 0% 1
Risk Assessments Update annually, risks in ERM register n 0% 1
Strategies % <12 months y 100% 1
BCMS Plans % <12 months n 0% 1 1 1
Testing Schedules Every January y 100% 1
Exercises and Tests1 % completed against schedule 40% 40% 1
Exercises and Tests2 % completed by exercise level 56% 56%
Audit programmes1 Current year Y 100% 1 1
Audit programmes2 % completed this year 35% 35% 1
Management reviews % conducted as scheduled 45% 45% 1
Non-conformity procedures and execution % non-conformities remedied 80% 80% 1
BCM awareness at a strategic and project level % of projects with a BC Plan 18% 18% 1
Capabilityof the BCMS teams % Role players trained and level thereof 88% 88% 1
Capacity of the BCMS teams % vacant posts 20% 80% 1
Training schedules and attendance % of candidates following schedule 100% 100% 1 1
Awareness programmes –cultural alignment
% attendance at awareness sessions or
completed online awareness successfully.
65% 65% 1
24. Reporting principles
• Summarise
• Keep it short
• Make it highlight key aspects
• Make it understandable
• Remember in an all day EXCO, BCM is only one
agenda item
• Executives seldom read even 2 pages beforehand
• Use graphics that are clear
• Compare with the last report
25. BCMS Scorecard Score
Context of the Organisation 100% 20% urgent attention
Leadership 66% 40% in progress
Planning 40% 60% semi compliant
Support 100% 80% compliant
Operation 50% 100% fully compliant
Performance Evaluation 79%
Improvement 80%
Overall 74%
Legend
Summarised Status
0%
20%
40%
60%
80%
100%
Context of the
Organisation
Leadership
Planning
SupportOperation
Performance
Evaluation
Improvement
BCMS Status
28. In Summary
• BCM is a journey, not a
destination
• Clearly define where you need to
get to and by when
• Define clearly how you will know
when you arrive (set
‘coordinates’)
• Draw up the route map in the
form of a project plan
• Make sure that you the avoid
deviations (irrelevant tasks)
• Run the project
• Define a new set of improved
coordinates
• Repeat the process
My name is Brian Henry.
I’m the CEO of the Caridon Group and are a PECB training partner in Africa and Australia. We are also members of the Business Continuity Institute.
We are a select consultancy providing consulting and project support in Governance, Compliance & Risk. We have been specialising particularly in Business Continuity management and the ISO 22301 standard.
We have assisted in implementing many Business Continuity Management Systems for large and medium organisations in various Industries.
While there is nothing wrong with all the thought leadership that has created the PMBok, Prince 2 and so on, it is in the application of these methods that things go wrong.
Large organisations, with a Programme Management Office, may have some 300-600 projects on the go at any one time, all initiated with the very best intentions. These may have massive budgets and objectives that will affect the working lives of a wide spectrum of personnel and interested parties. They may even have an impact on the operating models within the organisation.
The champions of such projects may face strong resistance to their efforts because of all these factors, so Change Management becomes a challenge.
Add to this complexity the duration of the project, and any plan that spans more than 12 months faces the danger of creating a deliverable that is no longer relevant.
The human factor is also an issue. Failed projects may not be terminated, but rather used as a means of supplementing other project budgets that are in trouble.
Gradually the initial objectives of the projects become dissipated, and change as time goes by.
An often quoted sentence is that ‘Business Continuity is a journey, not a destination.
Let’s use that as an analogy in the context of this presentation.
We can draw some ideas of navigation from travelling by ship or air.
Solet’s talk about navigation
What do we understand by the word coordinate as a noun?
From the dictionaries …
In simple terms it is a set of numbers defining a particular position in two or more dimensions.
More from the dictionaries.
In this simple to understand case, the coordinates of the end state can be reached by the navigator by travelling along the x-axis for a certain distance, then along the y-axis and finally up the vertical axis to get to the desired location.
Simply put, a vector is a combination of direction and distance, so instead of travelling along the green, red and blue vectors, the navigator may calculate a combination of the 3 directions and distances to aim directly to the end point, with a single direction and distance combination.
In travel terms, continuous improvement is the distance from the destination during the journey. The closer the traveller is to the end point, the greater the ‘improvement’ in achieving a desired state.
So far so good, but how does this translate to an implementation project?
The Frame of Reference
First identify how you know when you will have achieved the end goal. This means determining defining and agreeing on the coordinates or metrics you will use to determine your position.
Then decide the values for each coordinate that you would want to achieve. This is the end goal of the implementation or ‘intervention’.
The required state can be reached by three separate project phases or vectors depicted here by the green, red and blue lines, but that’s not how project managers set up plans.
In the real world it seems that end goal coordinates are not defined at the outset.
Consider a change intervention in which you need to improve three things affecting your sales efforts
Recruit good people
Keep their motivation high
Improve their productivity
Change these into coordinates and set a scale or metric to measure each one.
The end goal coordinates are therefore
85% by 5 by 75%
Consider a change intervention in which you need to improve three things affecting your sales efforts
Recruit good people
Keep their motivation high
Productivity
In this case the frame of reference involves just three ‘dimensions’ so its easy to visualise.
Define and plan a project to achieve the sales improvement.
It’s important to choose activities that contribute directly to the end goal. Anything else is just a waste. For example, will upgrading reporting and monitoring system really help? If not, don’t include it.
So many projects in organisations to day have lost their way, which may explain why so many fail.
As implementers, consultants and auditors we have all for some time been experimenting with scorecards and dashboards, and ways to determining how well our BCMS is operating.
Original thinking was directed at the ability to recover from a worst case scenario, but ISO22301 has formally introduced the Resilience factor and the continuous improvement requirements
That means we need to also consider the effectiveness of ongoing processes procedures and activities before an event occurs.
ISO 22301 is short but very comprehensive. Your interpretation of how it is to be applied may be very different from any other person’s,
so you need to develop your own metrics.
However the overall coordinates are well defined. How you get there depends on the route you chose. The route or ‘roadmap’ is your project plan.
The headings from Section 4 can be regarded as the 7 dimensions of a BCMS. They are in fact the titles of the various compliance factors.
Interpreting each one in your context should reveal which of the indicators are most relevant to your situation. If you do not have a BCMS of any kind, then an implementation project must be created, so let’s assume that is the case.
We have found great value in the PECB IMS2 framework.
The trick is to get the measurement of the project progress to indicate the compliance or maturity of the BCMS as the project continues.
Thereafter, it should be possible to use the same metrics to review and re-calibrate the BCMS against the original objectives
For each of the blocks in the IMS2, document the project activities to be carried out.
Build the project plan to cover all the stages at least to the ‘check’ stage.
Make sure that the roadmap (i.e. the project plan) will reach the end goal as defined by the coordinates of ISO22301. Check what effect the activity will have and set a compliance value to be expected by completing that part of the project plan.
In this discussion we will assume that:
the coordinate scales are all 0% to 100%
if we have completed all the activities relating to a coordinate, then the coordinate value will be 100%
This illustrates the framework, rather than the metrics.
Having established the BCMS within the scope agreed, and to the compliance levels set, the maintenance activities must be defined to ensure that the original deliverables are improved whenever possible.
Identify what needs to be reviewed and revised, and when.
Items for consideration are:
BCMS Management procedures
Policy,
Business Impact Assessments
Risk Assessments
Strategies
BCMS Plans
Testing Schedules
Exercises and Tests
Audit programmes
Management reviews
Non-conformity procedures and execution
BCM awareness at a strategic and project level
Capability and capacity of the BCMS teams
Training schedules and attendance
Awareness programmes –cultural alignment
As the corporation evolves and changes in response to strategic drivers, the revision of the Scoping document should reveal non-conformities or gaps in the BCMS framework, and the PDCA cycle may restart.
These are just examples. More detail can be devised to suit the individual circumstances and requirements.
Once again, however, the metrics used must be related to the chosen framework of Coordinates-in this case the 7 chapters of the ISO22301 standard.
Now it is possible to relate the scores or compliance levels of each of your metric elements to the 7 coordinates
Now the compliance to the standard can be determined, and
There are all the traditional reporting graphics –bar charts, radar graphs, curves, area graphs and almost any combination of these.
After all the calculations have been done, the final conclusions should be on at most two pages in graphic form with key conclusions and recommendations
This is a simple example of a report content.
It is possible with some thought to relate compliance to a maturity scale from 1-5. This may not bean exact science, but it works well as a tool for comparison.
Provides an easy track on progress towards the end goal.
If there are multiple business units or divisions to be considered, then scorecards for each can be created, compared and summarised in one or two pages.