Board Member Training Certified Banking Cybersecurity – Level 2
Overview
Are you a Board Member of a financial institution who has a basic understanding of data security but has a desire to learn more? The Gramm-Leach-Bliley Act of 1999 requires all financial institutions to implement an Information Security Program (ISP) commensurate with their size, complexity, and use of technology. This became a responsibility of the Board. The ISP starts with risk assessment and includes other security programs such as incident response and third-party management. It also requires management testing and independent auditing to set up a successful IT examination.Â
This certification provides all Board members with the fundamentals of security and privacy, and a cyber governance structure to consider. This coursework will include the following modules: (1) Review of learning objectives from Level 1, (2) Overview of IT risk assessment governance, (3) Overview of Third-Party Management Governance, and (4) Overview of physical and personal security.
Learning Objectives
- Understand data security and privacy laws and regulations
- Become familiar with the IT Examination process
- Learn what security-related committees you should establish at your financial institution
- Understand the roles and responsibilities of a Board member as it relates to cyber
- Gain an awareness of data security threats you want to mitigate for your account holders
- Gain an awareness of data privacy harms you want to mitigate for your account holders
- Understand what a top-down Information Security Program looks like for your financial institution
- Learn what documentation you should require to support a data security program
Audience
Board Member (Is this your first training in data security? Did you know there is a Level 1 Certification available?)
Instructor Contact Information
Please note that Dr. Streff’s contact information has changed after the creation of the coursework. Please use this contact information versus the one provided within the coursework.
