Over the years, several formal IT risk-assessment frameworks have emerged to help guide security and risk executives through the process. Most qualitative risk assessment frameworks depend on multiplying ordinal values RAG (Red, Amber, and Green) status associated with risk factors with similar parameters and arrive at risk score that is subject to interpretation. However, most qualitative risk assessment frameworks, do not have the ability to model risk. Organizations that aim to mathematically model risk and arrive at loss estimations based on dollar value, adapt quantitative risk assessment methods.
This session will focus on the following aspects of risk management:
— Regulations, standards and industry triggers that mandate risk assessments
— Popular risk assessment methodologies and techniques implemented by organizations for risk assessments
— Quantitative and Qualitative approaches to risk management
— Use of automation and GRC solutions for the management of risk assessments
Speaker: Mr Shashanko Roy, Director, Cyber Security Services, KPMG US Advisory Services
Speaker Profile: Shashanko is a Director in KPMG’s US Advisory Services practice with more than 16 years of management advisory and business experience. He has a considerable project and program management experience with Archer GRC and ServiceNow GRC implementations and IT audit engagements. He has full life-cycle experience of IT controls and framework implementations such as NYDFS, COBIT, NIST CSF, ISO-27001 and PCI-DSS.
Shashanko has substantial experience leading and coordinating IT advisory engagements across several industries, with a focus on the financial services and healthcare sectors. He has also provided subject matter knowledge and guidance to leading global financial institutions on vendor risk management, Cyber risk assessments, AWS cloud migrations and IT controls assessment.
Note: Please log in at least 10 minutes prior to the start of the webinar to ensure your system is ready with required audio settings. For any queries please write to
chapter@isacabangalore.org
Wishing you continued good health and safety,
Warm Regards,
Satish Kumar Dwibhashi, CISA, CISM, CRISC, CGEIT
President
ISACA Bangalore Chapter