IT Risk Management

IT Risk Management

Banking sector is today dependent upon information technology (IT) for serving the customers. Globally, banks use different strategies to deliver the services to customers. Straight through processing has become a buzz word. While IT enables effective service delivery, it is not free of risks which can cause irreparable damage to a bank.

This intensive program is designed to give you a thorough and comprehensive understanding of use of IT in banking, related risks, measurement of risk, mitigation of risks and auditing the IT risks.
The course uses a balance of lectures, case studies, discussions and hands on experience of using some of the risk measurement/audit tools. The program emphasizes on active participation from delegates and includes exercises and case studies.

Course Duration: Four full Days

 Delivery mode: Classroom

 What will you learn?

When you complete this course, you will have total understanding of :

  • Understand the importance & application of IT risk management.
  • Basics of best practices frameworks viz. COBiT, RiskIT, ISO 27001, ISO 2000/ITIL, PCI DSS
  • Successfully establish the steps for developing an IT risk management strategy.
  • Manage risk treatment & assessment
  • Conduct a business impact analysis
  • Assess all threats & vulnerabilities in order to create a risk response strategy
  • Effectively apply risk control measures
  • Examine & identify information classification schemes

Course Content:

 Understanding IT risks

  • Introduction to risk management
  • Introduction to ISO 31000
  • Basics of COSO framework
  • Introduction to RiskIT Framework
  • Introduction to ValIT Framework

Understanding IT governance and risk management frameworks

  • COBiT
  • ISO 20000/ITIL
  • ISO 27001ISMS Standard
  • PCI DSS—Payment Card Industry
  • BS 25999 Business Continuity Management

Assessing threats and vulnerabilities

  • Data center operations
  • Banking applications and databases
  • Network related risks
  • Internet banking
  • ATM and credit card operations
  • Payment systems and SWIFT operations
  • Treasury operations
  • Core banking solution operations
  • Outsourcing IT development
  • Outsourcing IT operations and support

Applying risk management controls

  • Risk prioritization
  • Identify suitable controls to treat key risks
  • Using best practices framework i.e. ISO 31000, COBiT, ISO 27001, ISO 20000/ITIL, BS 25999
  • Disaster recovery planning and business continuity planning
  • Understand the importance & application of IT risk management.
  • Basics of best practices frameworks viz. COBiT, RiskIT, ISO 27001, ISO 2000/ITIL, PCI DSS
  • Successfully establish the steps for developing an IT risk management strategy.
  • Manage risk treatment & assessment
  • Conduct a business impact analysis
  • Assess all threats & vulnerabilities in order to create a risk response strategy
  • Effectively apply risk control measures
  • Examine & identify information classification schemes

Developing IT risk management strategy

  • Setting the scope of IT risk management framework
  • IT policy design and implementation

Visit Calendar to know Schedule of this Training and to Register Online.Calender

Upcoming Trainings