Information Security Awareness Week Launch

BrightTALK is delighted to be powering this online event with the Information Security Awareness Forum (ISAF). Don't forget to submit questions for the Q&A sessions. On the live day, simply click on the questions tab on the player, type in your question and hit submit. I will then pose your question at the end of each presentation.

The recently formed Information Security Awareness Forum brings together some of the most influential industry bodies with an interest in security awareness, to coordinate security awareness activities within the UK. Dr David King, chair of the forum, will speak about the background to its formation, the issues it is seeking to address, the forum’s overall objectives and goals.

What is the state of Information Security Awareness in 2008? Have we and users been in a coma since 1981 (BBC series "Ashes to Ashes")? Why it's not working and what we need to do to put it right.

Increasingly information security professionals are concerned about the security environment outside of their employing organisations. Unsecured computers attached to the internet are now one of the major threats facing organisations. Children of an age where social networking sites and their inherent dangers are accessible to them. Threats to small businesses. All this gives rise to them wondering “What About My Backyard?

The Get Safe Online initiative (www.getsafeonline.org), now in its third year, is the UK’s national internet security awareness campaign. A joint initiative between the Government, the Serious Organised Crime Agency (SOCA) and private sector sponsors, the campaign continues to educate, inform and raise awareness of internet security issues. Tony Neate, MD, of Get Safe Online will be able to advice and support to small businesses on a number of issues surrounding internet safety including ID theft, phishing, viruses and data encryption.

Information Security Awareness for Companies - The importance of senior management support - The business case for security - The business case for raising security awareness - Innovation in the delivery of security awareness - The challenges we all face - Case Study

Data Breaches have become big news in the UK – HMRC, Ministry of Defense, Marks and Spencers, the list goes on – but what does it mean? PGP Corporation will present findings from key research in the UK market. A breakdown of the real costs to business of a data breach, the impact to business and the technology approaches used to defend against data loss.

Senior business management require assurance that they can rely on their security governance processes. Most of this assurance will come from the Chief Security Officer, but objective and independent assurance is most likely to come from a suitably qualified IS auditor. The Information Systems Audit & Control Association (ISACA) has been certifying IS auditors for over 25 years and the Certified Information Systems Auditor (CISA) designation is a guarantee that the assurance process will be conducted to the highest professional and ethical standards

Understanding the risks to a company when data is collected, stored and processed on computers is a key requirement of today for Company Directors and Senior Managers. But how many fully understand what regulations apply to their company and how those regulations might impact on their IT operations? Do they realise that the EU's 8th Directive (Euro SoX) becomes mandatory EU law from July of this year and, as with SoX compliance in America, compliance will rest heavily on information security controls. In my short presentation, I will look at the regulatory landscape from an information security perspective highlighting on the way how it interplays with governance, risk and compliance.

Generation Y employees have arrived in your organisation! Equipped with the latest gadgets and comfortable with using new technology, this generation of individuals bring with them many skills needed by organisations, but can also introduce information risks, which need to be understood and addressed. Raising awareness of information security among these individuals is an important step in mitigating information risk, but is a significant challenge. This presentation will look at some of the security issues associated with the techno-generation and explore some recommendations for protecting the individual and the organisation.