ABOUT THE SESSION:
Cybersecurity events are a matter of "not if but when." However, you can manage the magnitude of the event by understanding your business’s complexities before moving forward with a risk management solution. Cybersecurity breaches are industry agnostic and business size agnostic, but there are also special circumstances for staffing agencies. However, few companies have the in-house resources needed to translate IT risks as business risks. This session will will cover "insider threats," whether intentional (such as employee data theft) or unintentional (such as a fraudulent wire transfer).
ABOUT THE SPEAKER:
David Barton, Managing Director, UHY Advisors
David Barton serves as UHY's leader in the Internal Audit, Risk & Compliance and Management & Technology Consulting groups. He has more than 25 years of practical experience in information systems and technology risk and controls. He has expertise in IT compliance and attestation, including Service Organization Controls, HIPAA and HITRUST, PCI-DSS, Financial Services, SOX IT general and application controls and extensive experience in IT internal auditing, COSO framework, CObIT framework, IT risk assessments and control evaluations. His experience includes identifying information technology risk via Information Security, IT Architecture and Strategy, Program Change Management, Configuration Change Management and Disaster Recovery and Business Continuity.