0

0800 435 772

Information Security for Business Leaders

New 3-hour course  |  3 CPD hours

£269 +VAT per person

£269 +VAT
per person
£269 +VAT
per person

  • 7 November 2023
    9:30am - 12:30pm
    Book

About our online courses

At UK Training we have taken a fresh approach to online training that we're sure you will enjoy. We've taken all the best features of the classroom and replicated them online meaning you'll get the same high quality training combined with the time and money savings that come with training online.

All our online training is visually engaging, highly interactive and informative ensuring your online experience will be just as rewarding as the classroom.

Click here to view a sample of our online training

About our online courses

At UK Training we have taken a fresh approach to online training that we're sure you will enjoy. We've taken all the best features of the classroom and replicated them online meaning you'll get the same high quality training combined with the time and money savings that come with training online.

All our online training is visually engaging, highly interactive and informative ensuring your online experience will be just as rewarding as the classroom.

Click here to view a sample of our online training

This course can be presented in-house at your premises. You can find out more about our in-house training here.

If you would like to make an enquiry simply fill in the quick contact form below and a member of our in­house team will be in touch shortly.

Fields marked with an * are mandatory

Home > > Information Security for Business Leaders

Information Security for Business Leaders

3-hour course

Course prices:

Classroom: £269 +VAT per person

Online: £269 +VAT per person

Course overview

Cyber Security and Information Security are, invariably, some of the biggest risks to your organisation. Yet, organisations often struggle to understand how well that risk is mitigated and how to properly protect themselves. In addition to the risk of financial loss, reputational damage and GDPR fines, law firms are also increasingly engaging in group legal actions against organisations that have been breached. You may have noticed a corresponding increase in the cost of cyber insurance. So how do you manage the risk?

This practical half-day training course is designed, with minimal technical terminology, to help business leaders, managers and representatives. It will focus on management controls for information security and cyber security, to help your organisation assess and mitigate the security risks relating to personal data and company data.

Our expert presenter is a commercially experienced information security leader, who has led security teams in multinational corporations and small businesses. He will explain the types of attack your organisation may face, how those attacks may be perpetrated and how you can defend against them. He will also touch on technical controls just enough to help you ask pertinent questions from a business perspective.

The training is designed to be interactive and enjoyable for attendees as well as hugely informative. It will help you learn more about protecting your organisation from security risks and comply with your cyber-security obligations.

What will be covered?

  • Your legal obligations
  • Governance and management controls for security
  • Risk assessments
  • Protecting your organisation from ransomware
  • Protecting your organisation from physical attacks
  • Protecting your organisation from network hacking and denial of service attacks
  • Protecting your organisation from phishing
  • Protecting your organisation from cyber-crime and fraud
  • Protecting your organisation from the insider threat
  • Handling security incidents and GDPR breaches
  • Industry standards and certifications

Who should attend?

This course will benefit anyone who is responsible for protecting business data or who wants to learn more about managing information security risks and controls. It is essential for senior people with a responsibility for risk and compliance, GDPR leaders, data protection coordinators or DPOs, IT Managers and IT directors. This course is designed for non-technical business leaders and managers. It will be especially useful for those who are new to information security, who feel they may need better controls, or who are developing a new service or project involving data.

What will you learn?

  • Your legal obligations
    • What does GDPR require in relation to data security?
    • What is the risk from law suits?
    • Why is the cost of cyber insurance increasing?
    • What can we learn from ICO security breach enforcement cases?
  • Governance and management controls for security
    • How can your organisation manage information security as a business?
    • What management controls help to mitigate security risks?
    • What policies, training, procedures and metrics could be considered?
  • Risk assessments
    • What does an Information Security Risk Assessment look like?
    • What type of risks should you be considering?
    • What type of attack threats should you be considering?
    • How should risks be documented?
  • Security for paper
    • How can you manage the security risk relating to paper based data?
  • Security for property and physical security
    • What physical security controls can help you to protect the physical assets that process data from theft, damage or destruction?
  • Security for IT networks and the Cloud
    • How can you help control unauthorised access to your networks?
    • How to manage access controls and password complexity?
    • What additional controls can help protect “cloud” data?
    • Why has 2 factor authentication become so important?
  • Security for IT devices
    • What controls help to protect data on desktops and laptops?
    • What security controls help for mobile phones and tablets?
    • What security risks do Bring Your Own Devices (BYOD) create?
    • What controls help to protect servers?
    • How does unstructured data increase the challenge?
  • Security for Internet and email
    • How can you mitigate the risk of fake and malicious emails?
    • How can you control against malicious downloads?
    • What controls help to prevent and detect data leaks?
  • Handling breaches
    • What needs to happen if a security breach is detected?
    • What should you have done before the security breach occurred?
    • How do we engage the ICO, insurance, law enforcement?
    • What does a internal and external breach communication strategy look like?
  • Industry standards and certifications 
    • Can Cyber Essentials help reduce your risks?
    • Can CIS Top 18 help reduce your risks?
    • Can ISO 27001 Information Security Management System help reduce your risks?

Extra benefits

  • A course pack containing the information presented on the day
  • A certificate of attendance
  • Complimentary refreshments and lunch provided

Course presenters

  • Keith Dewey

    Keith is a well-established information security and data protection practitioner, with extensive experience in training, public speaking and consulting.

    He has held CISO and DPO roles at large UK companies, and worked across a range of industries including financial services, utilities and real estate. Keith is also a Certified EU GDPR Practitioner, has a Certificate in Information Security Management Principles (CISMP) and passed the Certified Information Security Manager (CISM) and Certified in Risk and Information Systems Control (CRISC) exams.

Course dates

Online course dates

  • 7 November 2023 | 9:30am-12:30pm Book