Cyber 101 – Even the basics matter

22 May 2024 | 9:00 a.m. – 4:15 p.m. | 6 CPD | KPMG Nicosia

22 May 2024 | 9:00 a.m. – 4:15 p.m. | 6 CPD | KPMG Nicosia

cyber

Seminar’s Overview

Due to the increasing number of technology threats, cyber security is of utmost importance for each organisation to safeguard their data and information. This course is essential in today’s world, as it will keep participants up to date with the latest information regarding cybersecurity threats and explain how to critically evaluate them and prevent them. Through real-life incidents, participants will learn how security attacks can be performed and how they can be identified timely. This seminar will also help in the reduction of human error, which is a common cause of security breaches. In addition, organisations will be supported in building a security culture, which will save money in the long run by preventing costly data breaches and will maintain their reputation by preventing security incidents that could be debilitating.

The course will include a number of areas for a holistic understanding of security principles in a theoretical manner and via the live demonstration of how cyber-attacks can be executed. The participants will have the opportunity to use their computers and participate in group exercises, simulating real-life events.

Seminar’s Goals

By the end of the training, participants will be able to:

  • Describe cyber security principles
  • Identify and name possible threats
  • Correlate potential cyber events with the knowledge to be obtained via the training in order to identify real cyber attacks
  • Develop critical thinking with regards to cyber security
  • Demonstrate compliance with the basic cyber security principles
  • Contribute towards maintaining the organisation's security culture
  • Implement cyber security best practices and principles to safeguard data and information in a personal and corporate environment.

Participants*

This training is addressed to all types of employees (including upper management) that have access to data and information, either in electronic or physical form.

*The number of participants is restricted to 28.

Agenda

1. Introduction (30 minutes)

  • Information Security Objectives
  • The C.I.A.
  • What is Information Security?
  • Key Principles

2. Cyber and Information Security Threats (1 hour and 30 minutes)

  • Terms & Definitions
  • Why our Organisation
  • Threat Landscape
  • Threat Actors
  • Malware
  • Information Leakage
  • Mobile Devices threats

3. Real life cyber security incidents (45 minutes)

  • Presentation of recent cyber security incidents (2-3 cases) and a brief description of:

            o The type of the Attack

            o The damages caused

            o How could the attacks be avoided

4. Unauthorised Access (Physical & Logical)- Risk and Controls (30 minutes)

  • Unauthorised Access Overview
  • Unauthorised Physical Access
  • Unauthorised Logical Access

5. Social Engineering (45 minutes)

  • Social Engineering Overview
  • What do the attackers think
  • Anatomy of a Phishing Email
  • Phishing Attack Demonstration / Simulation
  • Vishing
  • Smishing

6. Cyber Security Attack – Live Demonstration (30 minutes)

  • Performance of a live social engineering attack to showcase how a thread actor can utilise social engineering techniques to harvest credentials and gain unauthorised access

7. Case study / practical exercise (45 minutes)

  • Exercise 1: Group exercise for the development and identification of a phishing email in order for the users to be able to understand an attacker’s mindset, hence be able to identify similar attacks
  • Exercise 2: Through the use visual media challenge the participants in identifying risks and controls in regards to information security

8. Cyber and information security controls (30 minutes)

  • Presentation of Control Categories and sample of controls per category that can be established to safeguard an organisation’s information assets

9. Live Quiz (15 minutes)

Registration & Contact

If you wish to register for the seminar, please complete the registration form.

Once your registration is submitted, you will receive an email stating the participation fee, including any discounts, if applicable. Kindly note that the payment should be settled at least two days prior to the seminar’s date for your registration to be confirmed.

The programme has been approved by the HRDA. Enterprises participating with their employees who satisfy HRDA’s criteria, are entitled to subsidy. Please note that there are limited seats available, therefore enroll in this seminar as soon as possible.

If you do not receive our confirmation e-mail regarding your registration, your participation cannot be guaranteed.

Cost

€265 Net investment after subsidy from the HRDA of €120: €145 for all eligible participants*

€265 + VAT (19%) for all participants who are non-eligible for the HRDA subsidy.

*Last Date for 10% Early Bird Discount: 01/05/2024

 

Discounts available

  • For more than two (3+) participants from the same company, a 10% discount is available on the total cost, before the VAT and HRDA subsidy. This discount only applies for participants who enroll in the same seminar, on the same day. This discount can only be combined with the early bird discount and the HRDA subsidy, when applicable.
  • For individuals/legal entities who/which register in more than two (3+) seminars during the same semester (January-June & July-December), a 10% discount is available on the total cost, before the VAT and HRDA subsidy. This discount only applies for individuals/legal entities who/which enroll in more than two (3+) seminars during the same semester, on the same day. This discount can only be combined with the early bird discount and the HRDA subsidy, when applicable.
  • There is a 10% discount for alumni members. This discount should be applied before the VAT and HRDA subsidy and can only be combined with the early bird discount and the HRDA subsidy, when applicable. For more information on our alumni scheme, click here.
  • There is a 10% early bird discount on selected seminars for participants who enroll in a training course until a specific date which is stated above. This discount should be applied before the VAT and HRDA subsidy and can only be combined with the HRDA subsidy, when applicable.
  • HRDA subsidy for all HRDA approved seminars. 

 

Contact

For any queries, please contact Vasiliki Sioziou on +357 22 207 460 or at academy@kpmg.com.cy

CPD

This seminar may contribute to Continuing Professional Development requirements. At the end of the seminar participants will be given a certificate of attendance confirming the total number of training hours (6 CPD).

Trainers

Stelios Katsantonis
Cybersecurity Specialist, Technology Consulting – MC, KPMG in Cyprus

Stelios is a Cybersecurity Analyst, with more than six years of experience in the field of Information Security and Cybersecurity. His expertise lies in the development and implementation of ISMS in line with ISO 27001, Security risk assessment and mitigation, Azure cloud security and the performance of Information Security Audits. Furthermore, he holds a BSc in Computer Security with Forensics focusing on Network security with a final project on containerisation and virtualisation. ​

Over the years, he has helped clients to develop solid Information Security Management Systems (ISMS) in line with ISO27001 and based on the results of a business impact analysis and risk assessment. He has also supported clients in the development of Business Continuity and Disaster Recovery Plans as well as test scenarios and facilitation of BCP/DRP tests. ​

Moreover, he has led and performed numerous Information Security Audits and Internal Controls Framework reviews for banking and financial institutions. He has performed a range of IT general control and application controls testing in external audit for a variety of sectors including Banking, Insurance, Financial Institutions, Forex Trading, Telecommunications, etc.

Finally, he has participated in a number of International Standards for Assurance Engagements, ISAE3000 and Service Organisation Control (SOC2) reporting for clients in various sectors.

 

Elena Soteriou
Senior Manager, Technology Consulting – MC, KPMG in Cyprus

Elena has more than eight years of experience in Cyber Security and IT Assurance. Her expertise lies in the fields of IT Audit, Attestation Engagements and Information Security Audits. Her main areas of focus are the provision of IT/IS Audits as part of internal and regulatory audits, with emphasis on the effectiveness of the internal control environment, the development of ISMS in line with ISO 27001 and the performance of attestation engagement.

Over the years, she has helped clients to develop solid Information Security Management Systems (ISMS) in line with ISO27001 and based on the results of a business impact analysis and risk assessment. She has led and performed numerous Information Security Audits and Internal Controls Framework reviews for banking and financial institutions. She has also performed a range of IT general control and application controls testing in external audit for a variety of sectors including Banking, Insurance, Financial Institutions, Forex Trading, Telecommunications, etc.

Moreover, she has led a number of International Standards for Assurance Engagements ISAE3402, ISAE3000 and Service Organisation Control (SOC2) reporting for clients in various sectors. She has supported the development of IT Governance Frameworks adjusted on clients’ needs based on relevant standards (COBIT, ITIL) as well as the development of Business Continuity and Disaster Recovery Plans.

anad2

The programme has been approved by the HRDA. Enterprises participating with their employees who satisfy HRDA’s criteria, are entitled to subsidy. 

kpmg-academy-institute-seminars-conferences-knowledge

KPMG Academy

KPMG Academy

Launched in 2009, the KPMG Academy offers open & in-house training programmes.
Seminars and Conferences subscription
informative image