Events Calendar

Webinar: FFIEC Cyber Security Risk Assessments: Policy, Recent Findings & Recommendations
Wednesday, August 14, 2019, 03:00pm - 04:30pm

It feels as though the risks have never been greater, nor the stakes so high. Cyber-security threats from hackers and nation states, exposed consumer data, and ever-larger data breaches vie for our attention. In response, regulatory guidance continues to evolve to address the ever-changing risk and threat environment, which in turn drives expanded FFIEC guidelines and continued development of the Automated Cybersecurity Assessment Tool (ACAT).

Rather than overspend on the wrong technology, why not leverage regulatory guidance and cyber-security risk to move your institution’s technology strategy forward? This webinar will highlight the latest cyber-security risks, and provide a baseline understanding of tactical considerations regarding strategies and regulatory guidelines.


  • Aligning governance with business needs
  • Projects within the ACAT which are applicable in all financial institutions
  • Mock planning exercises to self-assess like an IT consultant
  • Proven strategies to accelerate new technology adoption
  • Using risk to drive CEO and board approval of technology
    • Website references for risk and compliance frameworks
    • Employee training log
    • NEW – Interactive quiz


This informative session is designed for IT and cyber-security leadership and management; risk management and internal audit leadership and management; and executives with responsibility for strategic planning, leadership, and risk management.

SPEAKER:  Randall J. Romes, CliftonLarsonAllen LLP

Randy Romes has been a consultant at CliftonLarsonAllen since 1999 and brings a strong background in computer technology, physics, and education. As a Principal in the Information Security Services Group, Randy leads a team of technology and industry specialists and is responsible for the continuing development of the open-source, Unix, and Windows applications used in security audits.

Randy has been involved in developing numerous leading-edge hacking/testing methods and security service offerings. A featured speaker at national information and security management conferences, Randy holds multiple certifications, a Master’s in Educational Technology from the University of Saint Thomas, and a Bachelor’s in Education from the University of Wisconsin – Madison. In addition, he is an instructor at the Graduate School of Banking at the University of Colorado in Boulder.