| Subject: | ‘CyberSecurity Risk Awareness’ – ‘Vendor/Third Party Risk Management’- ‘Cybercrime, Pandemic, WFH and Internal Auditing Challenges’- ‘The level of cybersecurity maturity in EU Institutions and the auditor’s role’ |
| Date: | Wednesday 22 June 2022 |
| Time: | 15:00 to 18:00 |
| Venue: | ONLINE via ZOOM |
| Language: | English |
| CPE Points (Continuous Professional Education): | 3 CPEs |
| Instructor: | Paschalis Pissarides, Charalambos Charalambous, Christos Makedonas, Christos Aspris |
| Outline: |  Seminar Outline |
| Registration Form: | Seminar Participation |
| Details: | This seminar is addressed to new and experienced Internal Auditors or Internal Audit Consultants, as well as to business executives … Read More |
Presentation Topic: CyberSecurity Risk Awareness
Presentation summary
The seminar will cover the importance of dealing with cybersecurity threats and the need for
deployment of cyber-defences to mitigate the risk of cyber-attacks and to protect an
organization against unauthorized exploitation of networks, systems, and technologies. The role
and responsibilities of end-users/employees plays an integral part in the cybersecurity strategy
and cannot be ignored in addressing cyber threats.
Instructor’s c.v.
Paschalis Pissarides has been in the field of Information Security for over 20 years in the
Cyprus Banking sector. He has led projects in Disaster Recovery and Business Continuity
Management, Crisis Management, Employee Information Security Awareness Programs,
physical security & environmental controls for Computer Centres, Information
Classification, DLP solution implementation, GDPR regulatory compliance, Security Incident
Management Planning, Identity Governance Administration system, Security Risk Assessments
for Cloud SaaS solutions, 3 rd party outsourcing engagements, and 3 rd party risk
management.
Before his return to Cyprus, he has worked for 9 years as Senior Information Systems Auditor
at USA Group, a company based in Indianapolis USA.
Paschalis received an undergraduate degree in Accounting & Management Information
Systems, an MBA (specialization in Finance), and a Master’s degree in Political Science from
Bowling Green State University, Ohio USA.
Paschalis is a founding member of the ISACA Cyprus Chapter and served as Chairperson of
the Organising Committee for the formation of the ISACA Cyprus Chapter. Paschalis served as
the 1 st President of the ISACA Cyprus Chapter from 2011 to 2015. He is currently serving on
its Board of Directors as the Academic Relations Director.
Paschalis also served as President of the ISACA Indiana Chapter, USA (1995-96) and has also
served as its Vice President, Treasurer, and Education Director.
Paschalis is actively involved as a speaker in seminars and conferences in Cyprus and abroad
in the areas of information security, cybersecurity security, information systems auditing and
security risk management. He is certified by ISACA/APMG as a CISA, CISM, CRISC, and CSX
Cybersecurity Fundamentals instructor.
Presentation Topic: Vendor/Third Party Risk Management
Presentation summary
Today’s interconnected world has provided organizations with easy access to vendors and thirdparties that deliver services and allow management to focus on achieving business objectives.
These services often require physical and logical access to the information systems and the
information of the organization.
Without the use of a vendor and third-party risk management framework, organisations will be
unable to efficiently or effectively identify and remediate risks posed by vendors and third-party
service providers. This presentation will provide an oversight of concepts, principles and assist
in the understanding of the building blocks required to establish mature vendor & third-party risk
management
Instructor’s c.v.
Charalambos Charalambous is an Information Systems Auditor at Bank of Cyprus and Vice
President of the Information Systems Audit and Control Association (ISACA) – Cyprus Chapter.
He is skilled in Information Security, Governance & Strategy, Risk, Audit, GDPR Compliance,
Privacy Regulations, Project Management and has a proven history of hands-on experience
with technical solutions such as Symantec DLP, Nessus, MobileIron, Bluecoat Proxies, Cisco
Routers/Switches/WLC/ASAs, Checkpoint Security Appliances, KEMP Load Balancers
and Riverbed Network Accelerators.
Charalambos holds a number of professional and academic qualifications, including:
– BSc in Computer Science
– MSc in International Management and Marketing
– ISACA CISM – Certified Information Security Manager
– ISACA CISA – Certified Information Systems Auditor
– ISACA CRISC – Certified in Risk and Information Systems Control
– ISACA CDPSE – Certified Data Privacy Solutions Engineer
– ISACA CGEIT – Certified in Governance of Enterprise IT
– (ISC)² CISSP – Certified Information Systems Security Professional
– (ISC)² CCSP – Certified Cloud Security Professional
Presentation Topic: CyberSecurity Risk Awareness
Presentation summary
The seminar will cover the importance of dealing with cybersecurity threats and the need for
deployment of cyber-defences to mitigate the risk of cyber-attacks and to protect an
organization against unauthorized exploitation of networks, systems, and technologies. The role
and responsibilities of end-users/employees plays an integral part in the cybersecurity strategy
and cannot be ignored in addressing cyber threats.
Instructor’s c.v.
Paschalis Pissarides has been in the field of Information Security for over 20 years in the
Cyprus Banking sector. He has led projects in Disaster Recovery and Business Continuity
Management, Crisis Management, Employee Information Security Awareness Programs,
physical security & environmental controls for Computer Centres, Information
Classification, DLP solution implementation, GDPR regulatory compliance, Security Incident
Management Planning, Identity Governance Administration system, Security Risk Assessments
for Cloud SaaS solutions, 3 rd party outsourcing engagements, and 3 rd party risk
management.
Before his return to Cyprus, he has worked for 9 years as Senior Information Systems Auditor
at USA Group, a company based in Indianapolis USA.
Paschalis received an undergraduate degree in Accounting & Management Information
Systems, an MBA (specialization in Finance), and a Master’s degree in Political Science from
Bowling Green State University, Ohio USA.
Paschalis is a founding member of the ISACA Cyprus Chapter and served as Chairperson of
the Organising Committee for the formation of the ISACA Cyprus Chapter. Paschalis served as
the 1 st President of the ISACA Cyprus Chapter from 2011 to 2015. He is currently serving on
its Board of Directors as the Academic Relations Director.
Paschalis also served as President of the ISACA Indiana Chapter, USA (1995-96) and has also
served as its Vice President, Treasurer, and Education Director.
Paschalis is actively involved as a speaker in seminars and conferences in Cyprus and abroad
in the areas of information security, cybersecurity security, information systems auditing and
security risk management. He is certified by ISACA/APMG as a CISA, CISM, CRISC, and CSX
Cybersecurity Fundamentals instructor.
Presentation Topic: Cybercrime, Pandemic, WFH and Internal Audit Challenges
Presentation summary
During this session we will share insights on the rise of Cybercrime during the last 2 years, how
the Pandemic has been both an enabler for Digitization and Cybersecurity Investments but also
a great threat to corporations, and how the Internal Audit profession changed and further needs
to adapt in the new age.
Instructor’s c.v.
Christos Makedonas is leading the Digital Risk services at Grant Thornton (Cyprus) Ltd and he
is the managing director of the subsidiary company, Grant Thornton (Cyprus) Cybersecurity Ltd.
Christos is also a co-founder and board member of Enactia Ltd, offering innovative GRC SaaS
solution with its primary focus on Cybersecurity and Data Protection.
He has been involved and lead projects in multiple areas and disciplines such as Cyber
Security, Data Privacy and Data Protection, Discovery & Digital Forensics, Third-party
Assurance, Internal and External IT Audit, Internal Control Design and Evaluation, Risk,
Regulatory & Compliance, Business Continuity Management & Disaster Recovery, Business &
Operational and Information Risk Management and Strategy, CAATs, and IT Governance.
Christos has a MSc in Analysis, Design and Management of Information Systems (Focus in
Information Security) from the London School of Economics and Political Science (LSE), a BSc
in Computing Informatics from the University of Plymouth and a Banking Operations Diploma
from the American Institute of Banking (AIB). He also holds the below professional
qualifications:
Certified Information Systems Auditor (CISA)
Certified Data Privacy Solutions Engineer (CDPSE)
Certified Information Privacy Professional (CIPP/E)
Certified ISO 27001 Lead Implementer
Certified Cyber Forensics Professional (CCFP)
Certified BrainSpace Analyst
Certified Ethical Hacker (CEH)
EC-Council Certified Security Analyst (ECSA)
Certified Forensics Investigation Practitioner (CFIP)
Certified Malware Investigator (CMI)
Certified Security Incident Specialist (CSIS)
Presentation Topic: The level of cybersecurity maturity in EU Institutions and the auditor’s role.
Presentation summary
In recent years there is increase in cybersecurity threats int the EU. Since EU Institutions hold
even more sensitive information, they have become attractive targets for potential attackers.
Auditors should be able to identify weaknesses in cybersecurity implementation and
recommend on risk assessment, IT governance ant key cybersecurity good practices.
Instructor’s c.v.
Christos Aspris is an Audit Officer for the Audit Office of the Republic of Cyprus responsible for
external IT Audits for the public sector. Christos has been involved in audit engagements of IT
Governance, IT Operations, Procurement, Data Analysis, Forensic Investigations in the sectors
of public health, security forces, tax authorities among others. He has also taken part in
Financial, Performance and Compliance audit engagements. Christos holds a BSc in
Computer Science, a Masters in Business Administration and holds the professional
qualification of Certified Information Systems Auditor (CISA).
Christos has been a member of ISACA since 2016.