Abstract: Data security is paramount for businesses in terms of information security compliance with regulatory requirements. Safeguarding organizational assets and data in compliance with government regulations mandates that organizations implement comprehensive security policies throughout their operations and supply chains. However, the diverse data security and governance standards worldwide necessitate that businesses develop and adopt an agile, flexible security policy framework. This framework should effectively encompass all compliance requirements holistically or through a segmented network approach. This webinar aims to explore the latest trends and challenges in compliance management within information security, along with techniques for implementing compliant policies. Join us as we explore principles and techniques crucial for developing and implementing a compliant security framework and strategies for identifying risks and establishing governance to ensure a robust security posture.
Key Takeaways:
- Understanding the importance and approach of security audit
- Overview of major security frameworks and their implementation
- Audit planning, preparation, and execution
- Risk assessment and management
- Integrating audit findings into security policies
- Security governance and compliance best practices
Speaker:
Sami Rifky,Vice-President & Immediate Past President, ISACA Casablanca Chapter
Bio: With over 20 years of experience in auditing, IT governance, and risk management, Sami has earned numerous international certifications, including CISA, CRISC, CDPSE, CSX, CRMA, ITIL, ISO27001LI, C|CISO.
Throughout his professional career, Sami has actively contributed to enhancing IT auditing and governance practices in Morocco and across Africa. He was elected vice-president of the Institute of Internal Auditors (IIA) Morocco and president of the ISACA Casablanca Chapter, where he currently serves as vice-president.
Sami’s experience is characterized by a collaborative, results-driven approach as an audit and risk business partner, helping organizations achieve measurable and attainable goals while ensuring compliance in the industrial and banking sectors. He has also implemented several digital solutions to increase efficiency and drive digital transformation in GRC activities, including internal audit, risk management, internal control, and data analytics.
*Examples, analysis, views and opinion shared by the speakers are personal and not endorsed by EC-Council or their respective employer(s)