Webinars

Date: Wednesday, Jun 27, 2018
Time: 2:00 PM - 3:00 PM CDT
Price: Free
Time not work for you? That's ok! Register for the webinar and you will receive the recording.

Description: Research shows that 96% of the internet is not accessible by search engines like Google or Yahoo, and that number is growing at a much faster rate than the surface web. What does that mean for us? 

Join SBS as we get caught up with what is going on in the dark web. We will discuss how the dark web started, who uses it, and why everyone should be aware of what's lurking in it.

---

Complete this form to register:

Trouble submitting the form? Register at https://attendee.gotowebinar.com/register/6459981948526225153

It has been seven years since the term "Corporate Account Take Over" or CATO took the industry by surprise and challenged financial institutions to do more to help secure their small business customers. Is CATO still happening today? You bet it is. 

Join SBS as we review guidance centered on CATO and walk through recent types of CATO that are challenging financial institutions.

According to the latest Verizon Data Breach Report, there were over 53,000 security incidents and 2,200 registered data breaches in 2017, which is an increase of about 20% from the year prior.

The increased probability of your organization experiencing a cyber incident enhances the need to create and maintain an incident response plan that can detect, contain, and eliminate the issue, then fully recover business operations. All while minimizing the overall reputational and financial damage to the company.

Join SBS for this free webinar in which we will discuss best practices to write and test your incident response plan.  We will also walk through some common scenarios that should be considered in your plan.

Regulators have made it clear that cybersecurity risk management and oversight is ultimately the responsibility of the Board of Directors. In theory, it makes sense for the board to be interested and engaged in what is going on in cybersecurity, however, that is not the case in some situations. 

For this Hacker Hour, we went straight to the source. We asked a selection of past Hacker Hour attendees to share the most common issues they struggle with when communicating cybersecurity needs to their Board. The responses fell into three main categories: 

• Frequency of FFIEC Cybersecurity Assessment completion and utilization of risk assessment data. 
• Information that should be provided to the Board on a consistent basis. 
• Tips for engaging and educating the Board. 

Join this month's Hacker Hour as we discuss how to boost cybersecurity from its hiding spot in the basement to a consistent topic in the boardroom.

A written Information Security Program is required for organizations that are subject to GLBA scrutiny, however, it is also the linchpin for ANY organization to successfully protect sensitive data. Join SBS as we discuss the key components of a strong Information Security Program and explore the issues organizations have in designing and maintaining their program. We will also have a conversation about if and where Virtual CISO services could fit into your business. 

All attendees will receive an example blueprint of an Information Security Program as well as an example GLBA report.

Penetration testing continues to be a crucial component of a strong information security program, but not all penetration tests are created equal. It is crucial that your organization understands what value to expect from the testing. 

Join SBS as we walk step by step through the penetration testing process and discuss how your organization can be confident that you are getting value out of your current penetration testing program. We will also address the difference between a traditional penetration test and more modern approaches.

From the time the ball dropped to ring in the new year until you completed your final Cyber Monday purchase, cybersecurity breaches have been a staple on your newsfeed. What stands out with the cyber events of 2017 has been the sheer number of people affected. Millions of consumers had their personal information compromised and no industry was safe from experiencing a breach. What can you do to keep your organization out of the news and your customer data safe? 

Join SBS as we review the top five cybersecurity events of 2017 and what we can learn from them. 

Business Continuity Planning continues to be a point of focus during the examination process. This webinar will discuss the first steps in conducting your Business Impact Analysis (BIA), how to structure your plan, and what you can do to test your program.

SBS is celebrating National Cybersecurity Awareness Month by hosting a special security awareness round table hacker hour. Join us for an interactive discussion focused on building a stronger security culture for your Board of Directors, employees, and customers. Throughout the webinar we will document the innovative ways others have developed their security awareness program and share the results with everyone that registers.

SBS Resources: 

• {Blog} Cybersecurity Awareness Month at SBS
• {Downloads} Security Awareness 
• {Product} KnowBe4
• {Service} Security Awareness Training

Request a Password | View Webinar

With 143 million consumers affected and over 200 thousand credit cards compromised, the latest Equifax breach is a hot topic for all consumers and businesses. Join SBS for this special HOT TOPIC Hacker Hour. We will discuss the current facts of the breach, what lead up to it, and what you should think about in response. As part of our discussion, we would like to hear innovative ideas and suggestions from attendees on both lessons learned and fraud protection. To ensure you get all the information you need, time will be provided for you to ask any questions you may have.

SBS Resources:

• {Talk Show} Listen to Guest Speaker Chad Knutson on teh Training Matters Talk Show: The Equifax Data Breach
• {Blog Post} Equifax Data Breach Overview, Lesson Learned, and Response Procedures
• {Education} Certified Banking Incident Handler Certification
• {Download} Customer Notification
• {Additional Resource} Krebs on Security
• {Quote} Request a quote for a Comprehensive Network Security Audit or KnowBe4

Many of us rely on third party vendors for IT or security products and services that enhance the way that we do business with our client base. Unfortunately, some of the biggest breaches that we have seen have been at the hands of third party vendors.

Join SBS and learn about common issues that are inherent in a vendor management program and discuss tips and tricks to ensure that you have a program that you can be proud of.

SBS Resources: 

• {Blog} Vendor Risk Management - How to Start and Where to Go
• {Cyber Byte Video} Vendor Documentation Gathering
• {Certification} Certified Banking Vendor Manager
• {Service} Vendor Management

A Patch Management Program has always been one part of a solid Information Security Program. In today's security world it is one of the most important parts of a company's layered security approach. An organization can sustain extreme damage by falling victim to the dark art of hacking with only one out of date system, endpoint, or software.

This webinar will discuss what a Patch Management Program looks like, what to look for in automated patch solutions, and implementing an effective testing program.

Description: Rarely a day goes by without news about a cybersecurity incident affecting a national company. Fraudsters are targeting companies of all kinds and sizes with the goal of divesting companies of their money and confidential information. This presentation will discuss current cybersecurity issues through the lens of real case studies, and will specifically cover: current threats, liability issues, insurance coverage, and mitigating cybersecurity risk.

Special Guest! John Lande is a shareholder practicing in the area of civil litigation with the Dickinson Law Firm in Des Moines. He has experience with matters involving banking and financial regulation, cybersecurity, internal investigations, construction, business dissolution, bankruptcy and collections, and local government. John regularly works with clients already involved in litigation, and clients who are trying to avoid future litigation.

 

One of the best ways to train key employees on your incident response team is to conduct a walk through or functional test of the current incident response plan. Join SBS for this round table discussion covering typical cybersecurity incidents that you should be ready for and share your ideas on how to handle these events. SBS will share how we are helping organizations create and maintain a good incident response plan/process.

Our upcoming webinar is a quick, no obligation way to learn more about our Certified Banking Security Manager course and the many benefits of certification to you and your institution. See why so many banking professionals rely on SBS Institute for their security training and education.

Knowing what threats are realistic for your institution and how to detect them is a challenging task. In this session we will explore possible threats that we should be prepared for and how to build a program to protect against them.

Cybercriminals know ATMs are loaded with cash and are investing significant resources in exploiting systems to extract the money. This session is intended to ensure that ATM security has moved up on your radar and been properly integrated into your risk assessment program.

SBS has analyzed and identified the top 25 most common baseline controls not implemented by financial institutions. These are controls that financial institutions MUST complete regardless of their inherent risk score. This session reviews these 25 controls, as well as practical solutions your institution can use to implement these controls.

Ransomware is evolving from a wallet stealing threat to a weapon of mass destruction that has the power to cripple businesses or even countries. Join us in this discussion to learn about trending issues with ransomware and best practices to prepare for an attack.

Join us to recap the statistics related to ransomware and learn how to prepare for this growing threat. Numerous published best practices will be reviewed to assist our institutions to build stronger defenses. Lessons learned from case studies captured from real-world ransomware tragedies will be reflected on.

In addition to FFIEC guidance, we will explore applied risk management concepts for mobile banking solutions. Focus will include Mobile Risk Assessments, integration into Information Security Programs, Third Party Risk Management, and effective IT Auditing.

FFIEC Cybersecurity Assessments Tool encourages financial institutions to expand questioning around third party risk management practices and suggests more rigorous oversight. This webinar will explore best practices for Vendor Management, Third Party Risk Management, and Customer Risk Management.

Brian Krebs recently published an article sounding the alarm on security practices of third-party relationships that financial institutions depend on. Join us to review this story and the challenges financial institutions face.

The FFEIC has completely re-written and significantly changed the Information Security Handbook. This webinar will review those changes.

Demos are held on Thursday of each week. You can pick a date that works for you upon registering. Join this webinar to discover the power of TRAC and easily create your company's detailed IT risk assessment. Develop your inherent risk, residual risk, and future risk scores that help make sound business decisions.

Demos are held on Thursday of each week. You can pick a date that works for you upon registering. Join this webinar to discover the power of TRAC and how it centralizes and manages all of your vendor relationships. We will walk through the risk assessment and selection process, and discuss how TRAC can instantly improves your ability to manage vendors.

Demos are held on Wednesday of each week. You can pick a date that works for you upon registering. Join this webinar to view a demo of the software and learn how SBS can partner with you to create a stronger security awareness program.