A comparative analysis and practical insights.
Watch the video
Synopsis
Effectively managing information risk is a necessity and a competitive advantage for businesses determined to thrive in today's digital landscape. However, this task is becoming increasingly challenging due to the exponential proliferation of data, the evolving nature of threats, and the lack of comprehensive risk methodologies that transcend industry boundaries.
As upcoming information security and operational resilience regulations in the UK and the EU demand the implementation of robust risk management programmes, there remains a notable gap in practical guidance on how to implement and monitor these initiatives effectively.
This presentation aims to:
- Provide a high-level overview of relevant methodologies and their different approaches including IRAM2, CIS RAM, NIST SP 800-30/37, ISO 27005, FAIR and OCTAVE.
- Analyse relative strengths and weaknesses associated with each methodology.
- Share insights from practical examples.
About the speaker
Sergio Alvarez has over a decade of experience in the insurance and financial services sectors, specialising in technology and cybersecurity risk. He has been a tutor for the MSc in Cybersecurity at Royal Holloway University and has a postgraduate degree in science communication from the University of Cambridge.
Additionally, he is a member of the Charter Institute of Information Security (CIISec), the BCS, The Chartered Institute for IT, and the USA-based ISACA and ISC2.
Our events are for adults aged 16 years and over.
BCS is a membership organisation. If you enjoy this event, please consider joining BCS. You’ll be very welcome. You’ll receive access to many exclusive career development tools, an introduction to a thriving professional community and also help us Make IT Good For Society. Join BCS today
For overseas delegates who wish to attend the event, please note that BCS does not issue invitation letters.
This event is brought to you by: IRMA (Information Risk Management and Assurance) specialist group and Information Security specialist group