CISA Incident Management Workshop for Community Banks

CISA Logo

Jun 29, 2021

11:30 am Eastern | 10:30 am Central | 9:30 am Mountain | 8:30 am Pacific

Ransomware has rapidly emerged as one of the most visible cybersecurity threats, encrypting data of impacted organizations and resulting in an inability for the unprepared to carry out critical business functions, potentially costing millions of dollars in damages in recovery efforts, loss of productivity, and reputational damage.

This training is free of charge and for ICBA member banks only. Registration is limited to 100 banks, and 4 attendees per bank.

Because cybersecurity incidents can be so impactful to an organization’s operations, it is important for organizations to understand how to effectively prepare for, detect, triage, respond to, and recover from cybersecurity incidents, while also minimizing impacts to operations. This process, known as incident management, is vital for any organization, large or small, to recover effectively and is a key success factor in achieving operational resilience.

This Cybersecurity Incident Management Workshop is designed to help participants understand the concepts and key elements of incident management, as well as the planning, implementation, and testing of an incident management program.

The CISA Cybersecurity Incident Management Workshop is non-technical, and conducted as a 3½ hour video call facilitated by CISA Cybersecurity Advisors. The workshop is intended to be informative and interactive, tailored to the concerns and threats of the financial services sector and provides an opportunity for professionals to learn together.

Please contact Joel Williquette with any questions or requests for additional information.

June 29, 2021

Times are listed in Eastern Time.

11:30 a.m. – Noon
Sign-in/ registration

Noon – 12:15 p.m.
Welcome, Introduction to CISA and Housekeeping

12:15 p.m. – 12:30 p.m.
Cyber Threat Landscape

12:30 p.m. – 1:15 p.m.
Introduction to Incident Management

1:15 p.m. – 1:30 p.m.
BREAK

1:30 p.m. – 2:15 p.m.
Planning: Key Components and Considerations for Creating an Incident Management Plan

2:15 p.m. – 2:30 p.m.
Implementation: Implementing, Exercising and Improving the Incident Management Plan

2:30 p.m. – 3:00 p.m.
Roundtable discussion

3:00 p.m. – 3:15 p.m.
No-cost cybersecurity resources

3:15 p.m. –  3:30 p.m.
Conclusion, hot wash

Who Should Attend?

Responding to a significant cybersecurity incident often takes an all-hands-on-deck approach. Participation in the workshop should include, but not be limited to, those responsible for the functions below:

  • IT management (e.g., Chief Information Officer, Director of Information Technology)
  • IT security policy, planning and governance (e.g., Chief Information Security Officer)
  • IT infrastructure and operations (e.g., network/system administrator, change manager)
  • Incident response (e.g., cyber incident responders, cybersecurity analysts)
  • Business operations (e.g., Chief Operations Officer)
  • Business continuity and disaster recovery planning (e.g., BC/DR manager)
  • Risk management (e.g., enterprise/operations risk manager)
  • Public relations (e.g., public affairs, media affairs)
  • Procurement and vendor management (e.g., contracts and legal support managers)