15 - 17 October 2007, National Convention Centre, Canberra, Australia
Leadership, innovation and collaboration
Register   |    Brochure   |    Sponsor   |    Email a friend   |    Add to diary



Calendar of Events
itSMF Asia Annual Conference 2008 ~ Singapore
Cards Africa 2009 ~ Johannesburg
SatCom Africa 2009 ~ Johannesburg, South Africa
SatCom Star Awards 2009 ~ Johannesburg
Cards Asia 2009 ~ Singapore
RFID World Asia 2009 ~ Singapore
ID Management & Access World Asia 2009 ~ Singapore

More events >

Masterclass A

    Masterclass A: Principles and practices of effective information security risk management

Led by: Mark Ames, ICT Risk

Risk Management is now a critical activity for technology and information security professionals. It is a significant departure from traditional control and vulnerability based approaches to information security management, and requires an approach that balances costs and impacts against control effectiveness.

This tutorial provides practical information and tools to help you implement a risk based approach to managing IT security in your organisation. A step-by-step approach is used to develop participants’ understanding of the principles and processes involved in risk assessment and management.

Course outline

9:00  Registration

9:30  Risk assessment methods and terminology
        - Risk management frameworks, concepts and standards
        - Scope and levels of risk assessments
        - Analysing the cost and returns on risk management efforts

10:45 Morning break

11:00  Establishing measures of risk - risk analysis and assessment
        - Implementing the risk management process
        - Setting the context and scoping a risk management review
        - Risk identification – identify operational assets and threat environments
        - Risk evaluation and treatment – setting priorities and protecting the organisation

12:15  Lunch

1:15  Risk management tools – matrices, registers, and reporting
        - Practical approaches to identifying and assessing risks 
        - Applying risk management to meet compliance and operational objectives
        - Gaining buy-in from stakeholders and presenting results to senior management

2:30  Afternoon break

2:45 Developing risk management as an enterprise business process
        - Developing the tools, skills, and workflows to deliver consistent risk assessments
        - Metrics and monitoring to ensure and improve risk management outcomes
        - Specific approaches to IT systems development, application risk and controls, and managing
          IT infrastructure risk

4:00  Q&A

4:30  End of Masterclass

Mark Ames has worked in information security and risk management for the past two decades in Australia and the Asia-Pacific region, with a strong background in banking, telecommunications, and government. He focuses on practical solutions to complex problems and effective management and governance of IT and IT security in large organisations.

Limited places are available for these exclusive masterclasses.  Click here to Register now.

Gold sponsor
Session sponsor
Masterclass sponsor
Lunch Sponsor
Exhibitors
Endorsed by
Research partner
Official publications
Proudly organised by

Hedge Funds World | Terrapinn.com | Terrapinn Financial Training | Terrapinn Training | Total Media + Content | Total Telecom
Leave a comment | About Terrapinn | CopyRight | Privacy | Terms & Conditions
©Terrapinn Ltd. MMIV