Hatstand to speak at IA Watch’s Cybersecurity for Financial Services Conference
The industry is facing a global evolution of cybersecurity threats; the importance of cybersecurity preparedness has been consistently driven home by the Security and Exchange Commission (SEC), and it is a top examination priority in 2016.
On 16th May 2016, Hatstand's U.S. Head of Regulation & Risk, Lisa Toth, will be joining other industry experts at IA Watch's Cybersecurity for Financial Services Conference, which will be exclusively focused on cybersecurity preparedness and will discuss the key challenges for organisations.
At the one-day event in Washington DC, Lisa will be speaking at 3:45pm on the Incident Response: Planning for Potential Events panel, when SEC examiners will be assessing whether firms have established policies, assigned roles, checked system vulnerabilities, and developed plans to address a variety of potential events.
Attendees can gain tips on prioritising which data, assets and services warrant the most protection, and hear how their policies and procedures should address cybersecurity incident response and the responsibility for losses associated with attacks impacting clients. Organisations will want to form an incident response team and learn who should be on the team. The panel will also breakdown the need for cybersecurity insurance and the types of incidents likely covered.
Lisa comments: "There is not a one size fits all solution to cybersecurity and having a tailored approach enables each firm to fit a framework to both their risk appetite and budget on a strategic and tactical basis.”
Toth continues, "I am looking forward to talking to organisations about how they can perform a risk assessment by implementing the right tools and working with the right strategic partner. This will deliver clarity, not only to the regulators, but also to the key stakeholders, of a firms’ key assets, current status of their cybersecurity efforts, and any gaps in its controls and processes.”
Toth concludes, "A baseline assessment can then be used to evolve a working plan to mitigate the gaps and demonstrate to the regulators and stakeholders that the firm is taking its cyber risk management responsibilities very seriously."