- This event has passed.
NIST 2.0: Internal audit’s role in cybersecurity program initiatives
May 8 @ 1:00 pm – 2:00 pm EDT
Event description
The NIST Cybersecurity Framework (CSF) is one of the most widely adopted cybersecurity standards designed to help manage cybersecurity risks. Since its first release in 2014, the framework has been updated to incorporate public comments over the years that make it widely applicable with an emphasis on governance and supply chains. In addition to the five core functions from its prior release, identify, protect, detect, respond, and recover, the framework’s core component now includes a new key function: Govern.
Join us on May 8th to hear how internal audit leaders can leverage the new NIST CSF v2.0 to enhance cybersecurity program effectiveness. Internal auditors can guide the process by understanding the new framework’s potential benefits. They can help enhance their organization’s current cybersecurity program with effective strategies aligned with business goals. By collaborating with IT and cybersecurity professionals, internal auditors can ensure proper and up-to-date controls are implemented to manage evolving cybersecurity risks.
The discussion will focus on:
- Current trends in cybersecurity risks. We’ll discuss the latest trends and developments in managing risks associated with IT and Cybersecurity issues that continue to evolve.
- Updates made to NIST2.0 Framework. We’ll discuss the expansion, the addition of the govern function and the emphasis on supply chain risk management.
- Successful NIST CSF v2.0 adoption strategy. We’ll explore examples of organizations effectively integrating NIST CSF 2.0 into their current cybersecurity audit plan.
- Common challenges and mitigation. We’ll discuss challenges such as program adoption, governance models, and determine actions required to address emerging risks with regulations.
- Educating the Organization. We’ll share strategies for communicating the benefits and risks of adopting the NIST CSF v2.0 into an organization and fostering a culture of continuous improvement.
- Leading practices for cybersecurity program maturity. We’ll present best practices for organizations to mature their cybersecurity program with governance and managing risks from supply chain and other technology risks.
