Part I: August 3, 2021
Part II: August 4, 2021
Part III: August 5, 2021
Part IV: August 6, 2021
1:00 – 5:00 PM
CPE Credits: 16 hours
ISACA Member - Php7,600.00
Non Member - Php10,800.00
*Subject to 12%VAT
According to ISACA’s 2019 report on the state of the cybersecurity the findings are: (1) technically proficient cybersecurity professionals continue to be in short supply and difficult to find, (2) retaining cybersecurity professionals is exceptionally difficult and the current enticement of employer-paid training and certification are not ensuring retention, (3) gender diversity programs may be declining and their effectivity is directionally lower and (4) cybersecurity budget increases are expected to slow slightly.
While based on the 2019 annual study of cybercrime by Accenture and Ponemon Institute, they presented the following insights: (1) targets are evolving, from information theft to destruction and disruption of core systems such as industrial cost systems, (2) Impact is evolving, from data being copied (confidentiality), now it’s being destroyed or changed (integrity) and (3) techniques are evolving, cyber criminals are adapting their attack methods against humans – the weakest link through increased phishing and malicious insiders. It also highlights the increase of average cost of cybercrime in 2018 as compared to 2017 from $11.7M t0 $13M or 12% increase and 72% increase in the last five (5) years. The value at risk of from direct and indirect cyberattacks amounts to $5.2T.
Therefore, it is necessary for organizations to have a structured and efficient program face these cybersecurity challenges. This course will assist participants in identifying their critical assets and services, identifying cyber risk scenarios that will impact its confidentiality, integrity and availability, analyzing these cyber risk scenarios as to likelihood and impact and defining and implementing the necessary countermeasures to minimize the impact and likelihood of these scenarios.
ABOUT THE RESOURCE SPEAKER:
Mario B. Demarillas
GICD, Certified Risk Manager, ISO27001 Lead Implementer, ISO22301 Lead Implementer, Agile Project Management Foundation, CFE, COBIT (F), CRISC, CISM, CISA, CIA, CPA
Cyber Security, IT, Internal Audit and Privacy Consultant, Entrepreneur and Facilitator
Mario earned his degrees in B.S. Accountancy and Information Management from Adamson University and Asia Pacific College, respectively. Mario has more than 15 years of professional experience in Information Systems and Internal Auditing, Information and Cyber Security, Data Privacy and IT Governance consulting. His experience covers project management, pre- and post- IT implementation reviews, business process documentation and testing, due diligence, fraud investigations, vulnerability assessment and penetration testing, software license reviews, information security governance, business continuity and disaster recovery planning, system technical reviews and IT risk and assessment reviews of companies engaged in the Financial Services, Manufacturing, Public Sector, Services, and Technology, Media & Telecommunications industries.
He’s a Graduate and Technology Governance Committee Member of Institute of Corporate Directors of the Philippines, Member of the School of Computing and Information Technologies (SoCIT) Advisory Board of Asia Pacific College, Former President and Board of Trustee of ISACA Manila Chapter, Former Board of Trustee of Association of Certified Fraud Examiners – Philippines Chapter (ACFE – Philippines), Former Chairperson for Technology and Membership Committees of Institute of Internal Auditors Philippines Chapter (IIA Philippines). He received the Presidential Award both in 2014 and 2016 and Best Chairperson of the Year in 2010 from ISACA Manila and IIA Philippines Chapters, respectively, for recognition of his services as officer of these professional organizations.
He garnered the 1st and 3rd Highest Scores among the PH examinees for the Certified Information Security Manager (CISM) and Certified in Risk and Information Systems Control (CRISC) exams, respectively.
Mario has earned various certifications throughout his career such as ISO 31000 Certified Risk Manager (CRM), ISO 27001 Information Security Management System Lead Implementer (ISMS-LI), ISO 22301 Business Continuity Management System Lead Implementer (BCMS-LI), Agile Project Management Foundation Certificate Holder, Certified Fraud Examiner (CFE), COBIT 5 Foundation Certificate holder, Certified in Risk and Information Systems Control (CRISC), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), Certified Internal Auditor (CIA) and Certified Public Accountant (CPA).
Mario is a resource speaker for various topics on fraud, IT governance, IT, information and cybersecurity, IT internal audit, data privacy and review sessions for CIA, CISA, CISM, CISSP, CRISC and CFE examinees.