This advanced webinar will delve into examples of mature cybersecurity operations and explain “threat hunting” exercises you can perform to further improve your cybersecurity profile and operations. Resources for CIU program design, development, and training will be included.
AFTER THIS WEBINAR YOU’LL BE ABLE TO:
- Identify key CIU attributes to build into your team, regardless of institution size
- Describe common mistakes and how to avoid them
- Define resource needs and support structure to build and run a CIU
- Explain business benefits of a CIU
- Distinguish the role of the CIU from network monitoring
This advanced webinar will explore the strategy and structure of mature cybersecurity operations within financial institutions. It will leverage the concept of a Financial Intelligence Unit (FIU) from the BSA/fraud spaces as the beginnings of an example for a Cyber Intelligence Unit (CIU).
Take this opportunity to explore examples of mature cybersecurity operations; how these operations leverage internal and external resources for threat intelligence, such as FS-ISAC and InfraGard; how to effectively collaborate and share threat intelligence; and how to perform Red Team/Blue Team/Purple Team activities and “threat hunting” exercises to further improve your cybersecurity profile and operations.
WHO SHOULD ATTEND?
This informative session would best suit cyber analysts, IT directors, IT managers, CISO/CIOs, and others responsible for maturing cyber resilience and response.
- References/resource list of threat intelligence collaboration
- Samples/resources for CIU program design, development, and training
- Employee training log
- Interactive quiz
Randall J. Romes, CliftonLarsonAllen LLP
Randy Romes has been a cybersecurity consultant at CliftonLarsonAllen since 1999 and brings a strong background in computer technology, physics, and education. As a Principal in the Information Security Services and Financial Institutions groups, Randy leads a team of technology and industry specialists and is responsible for the continuing development of the open-source, Unix, and Windows applications used in security audits.
Randy has been involved in developing numerous leading-edge hacking/testing methods and security service offerings. A featured speaker at national information and security management conferences, Randy holds multiple certifications, a Master’s in Educational Technology from the University of Saint Thomas, and a Bachelor’s in Education from the University of Wisconsin – Madison. In addition, he is an instructor at the Graduate School of Banking at the University of Colorado in Boulder.
John Moeller, CliftonLarsonAllen LLP
John Moeller, a principal at CLA, is focused on serving the technology needs of financial institutions. Over the past 35 years, John has gained extensive experience developing strategic technology plans for financial institutions. He performs technology and vulnerability/risk assessments, controls reviews, and information security and business continuity program development, implementation, training, and testing.
John is a frequent speaker on information security, IT assessments and strategy, CIO outsourcing, and managed IT services. He holds several professional certifications, including Certified Information Systems Security Professional, Certified Ethical Hacker, and EC Council – Certified Security Analyst. He received a bachelor’s in Information Technology from Capella University.