Loading EVENTS
  • This event has passed.

Qatar: CYBER & IT SECURITY IN BANKS

CYBER & IT SECURITY IN BANKS
6 – 8  NOVEMBER  2016  DOHA / QATAR

BACKGROUND:

IT security is a vital component of the banking safety elements. The issue has become a major concern for those interested in the safety of banking operations as a result of the tremendous development of modern electronic technologies and inventions and innovations associated with them, which invaded the business world in the past few decades and the accompanying applications in the banking industry, which has opened the way to create new methods of cheating and fraud the fraud relies primarily on the use of information technology (IT), and a pat on the workers in this field from the fields of banking business innovation disclosure necessary and which are in line with this technological development is unprecedented and confrontational methods.

The success of the Qatary financial industry is constantly appearing in the international media and events- in fact the banking industry beat the odds since Qatary banks are still growing strongly compared to other countries; unfortunately, for the security profession all this good news turns into bad news because Qatary’s prosperity acts as a magnet for criminals who previously ignored us.

Indeed when businesses are booming and flourishing, criminal’s interest will be raised simply for the following reasons: money, information, competition and the list goes on.  As you may know, the best approach to achieve the criminals’ goal is simply through Cyber threats.

With this in mind, the Union of Arab Banks is pleased to conduct a workshop in Doha in collaboration with Central Bank of Qatar, entitled: “Cyber Security in Banks”.

This workshop is addressed to the latest technologies and procedures and the means to be taken to protect the information systems in the financial, banking and economic institutions, and to ensure that the conduct of electronic transactions and continuity in a safe technological environment, and raising enterprise efficiency in the face of the challenges and dangers that can be encountered – in the event of the omission of the provision of preventive techniques, and repel securing the necessary protection against piracy and attempts to hack electronics that the security and stability of the institution and the consequent heavy losses both financial and moral.

OBJECTIVES:

The objectives of this workshop are to acquaint the attendees to:
Highlighting the importance of risk that may result from security incidents or electronic hacking or computer crime aimed at IT security in the rest of the banking and financial institutions, to keep the target for the workers and pay attention and awareness of such risks.

The recent cyber threats against the banking industry
Learn about the techniques used by Hackers
Ensure improved efficiency and effectiveness of the institution’s operations related to information technology.
Create and conduct preventive security operations in order to protect information technology and how to  defense and deterrence against cyber attacks.
Identify how efficient controls and efficiency of the financial and banking operations to see how strong security measures in place and know the weaknesses and threats and the types of attacks and technical methods and knowledge of those who seek for it and their sources.
Compliance with laws and regulations, and the requirements of Arab central banks, competent regulatory rules and guidelines for information security working in banks and financial institutions and financial intermediaries technology.

TOPICS AND AGENDA

DAY 1:

UGLY TRUTH
Security News
New threats and vulnerabilities
Hackers age
Environmental complexity
New technology
Limited focus
Limited expertise
Threat agents
Anatomy of an attack

DAY 2:

MANAGEMENT OPERATIONAL CONTROLS
Information Security Standard ISO 27001:2013
Introduction to ISO 27001/27002
Approach
Introduction to ISMS
Documentation
Clause & Control Objectives
Process needed to achieve certfication

PCI-DSS
Introduction to PCI DSS
12 Requirements

DAY 3:

ISO 27005 INFORMATION SECURITY RISK  MANAGEMENT
Introduction

Objectives
Process to conduct risk assessment

TECHNICAL CONTROL SECURITY TOOLS
Firewalls
Intrusion Prevention Systems
Anti-virus
Sandboxing
Data Loss Prevention
SIEM
Scanner:  network, system and database
Patch Management
And others.

CASE STUDIES WILL BE APPLIED DURING THE COURSE

THE TARGETED ATTENDEES

THIS WORKSHOP IS INTENDED TO:
Managers and cadres operating departments, customer service , compliance and internal audit.
IT and Security staff members at any position who wish to enrich their knowledge in information security and increase the protection of their information assets.
Workers in the legal departments of banks and financial institutions and financial intermediaries.

SPEAKER:

MR. TONY CHEBLY

Tony presently is heading the Information Security Department at Credit Libanais Group. He joined the group since September 2008 where he accomplished several success stories .
He designed a security program based on ISO 27001 and PCI-DSS standards which helped the Bank complying to Banking Control Commission circulars.
He accomplished several success stories among them achieving PCI – DSS compliance for Credit Libanais sister companies: CCM, Netcommerce and IPN.
He designed a security program based on ISO 27001 and PCI – DSS standards which helped the Bank complying to banking Control Commission circulars (222, 272 and others) and satisfying the external and internal IT auditors requirements.
Tony has achieved the following certifications:
CISSP (since 2001)  –   PECB ISO/IEC 27001 Lead Auditor   –   PECB ISO/IEC 27005 Risk Manager   –   PECB Certified Trainer
For a decade, Mr. Tony performed many information security services, as part of Deloitte and Secor/Computel group, in the Middle East region (UAE, Lebanon, Jordan, Turkey, and KSA).
He developed security policies and procedures (based on BS7799) for large organisations in the Middle East and backed that up with full implementations of the standard.
He is featured as speaker at several conferences, contributed in developing the security awareness for the Middle East market.
Mrs. Chebly is an accredited speaker / trainer at the Union of Arab Banks, and speaker in many international conferences and forums.

PARTICIPATION FEES:

1100$ For UAB members
1350$ For Non-UAB members
Fees include attending the workshop, receiving the material, refreshments and a daily lunch,

SCHEDULE AND LANGUAGE:

Registration: the first day from 8am to 9 am.
Schedule : from 9:00 am to 15:00 pm daily.
Workshop languages: Arabic and English.

MEANS OF PAYMENT

A Bankers check shall be drawn at New York to the order of the Union of Arab Banks, or by transfer to the account of the UAB No: 82305-510/8 Arab Bank – Beirut Lebanon.
For online registration & payment, please visit our website :www.uabonline.org

November 06 2016

Venue

Millennium Hotel

Millennium Hotel Doha, Jawaan St
Doha, Qatar

+ Google Map

Qatar: CYBER & IT SECURITY IN BANKS

CYBER & IT SECURITY IN BANKS
6 – 8  NOVEMBER  2016  DOHA / QATAR

BACKGROUND:

IT security is a vital component of the banking safety elements. The issue has become a major concern for those interested in the safety of banking operations as a result of the tremendous development of modern electronic technologies and inventions and innovations associated with them, which invaded the business world in the past few decades and the accompanying applications in the banking industry, which has opened the way to create new methods of cheating and fraud the fraud relies primarily on the use of information technology (IT), and a pat on the workers in this field from the fields of banking business innovation disclosure necessary and which are in line with this technological development is unprecedented and confrontational methods.

The success of the Qatary financial industry is constantly appearing in the international media and events- in fact the banking industry beat the odds since Qatary banks are still growing strongly compared to other countries; unfortunately, for the security profession all this good news turns into bad news because Qatary’s prosperity acts as a magnet for criminals who previously ignored us.

Indeed when businesses are booming and flourishing, criminal’s interest will be raised simply for the following reasons: money, information, competition and the list goes on.  As you may know, the best approach to achieve the criminals’ goal is simply through Cyber threats.

With this in mind, the Union of Arab Banks is pleased to conduct a workshop in Doha in collaboration with Central Bank of Qatar, entitled: “Cyber Security in Banks”.

This workshop is addressed to the latest technologies and procedures and the means to be taken to protect the information systems in the financial, banking and economic institutions, and to ensure that the conduct of electronic transactions and continuity in a safe technological environment, and raising enterprise efficiency in the face of the challenges and dangers that can be encountered – in the event of the omission of the provision of preventive techniques, and repel securing the necessary protection against piracy and attempts to hack electronics that the security and stability of the institution and the consequent heavy losses both financial and moral.

OBJECTIVES:

The objectives of this workshop are to acquaint the attendees to:
Highlighting the importance of risk that may result from security incidents or electronic hacking or computer crime aimed at IT security in the rest of the banking and financial institutions, to keep the target for the workers and pay attention and awareness of such risks.

The recent cyber threats against the banking industry
Learn about the techniques used by Hackers
Ensure improved efficiency and effectiveness of the institution’s operations related to information technology.
Create and conduct preventive security operations in order to protect information technology and how to  defense and deterrence against cyber attacks.
Identify how efficient controls and efficiency of the financial and banking operations to see how strong security measures in place and know the weaknesses and threats and the types of attacks and technical methods and knowledge of those who seek for it and their sources.
Compliance with laws and regulations, and the requirements of Arab central banks, competent regulatory rules and guidelines for information security working in banks and financial institutions and financial intermediaries technology.

TOPICS AND AGENDA

DAY 1:

UGLY TRUTH
Security News
New threats and vulnerabilities
Hackers age
Environmental complexity
New technology
Limited focus
Limited expertise
Threat agents
Anatomy of an attack

DAY 2:

MANAGEMENT OPERATIONAL CONTROLS
Information Security Standard ISO 27001:2013
Introduction to ISO 27001/27002
Approach
Introduction to ISMS
Documentation
Clause & Control Objectives
Process needed to achieve certfication

PCI-DSS
Introduction to PCI DSS
12 Requirements

DAY 3:

ISO 27005 INFORMATION SECURITY RISK  MANAGEMENT
Introduction

Objectives
Process to conduct risk assessment

TECHNICAL CONTROL SECURITY TOOLS
Firewalls
Intrusion Prevention Systems
Anti-virus
Sandboxing
Data Loss Prevention
SIEM
Scanner:  network, system and database
Patch Management
And others.

CASE STUDIES WILL BE APPLIED DURING THE COURSE

THE TARGETED ATTENDEES

THIS WORKSHOP IS INTENDED TO:
Managers and cadres operating departments, customer service , compliance and internal audit.
IT and Security staff members at any position who wish to enrich their knowledge in information security and increase the protection of their information assets.
Workers in the legal departments of banks and financial institutions and financial intermediaries.

SPEAKER:

MR. TONY CHEBLY

Tony presently is heading the Information Security Department at Credit Libanais Group. He joined the group since September 2008 where he accomplished several success stories .
He designed a security program based on ISO 27001 and PCI-DSS standards which helped the Bank complying to Banking Control Commission circulars.
He accomplished several success stories among them achieving PCI – DSS compliance for Credit Libanais sister companies: CCM, Netcommerce and IPN.
He designed a security program based on ISO 27001 and PCI – DSS standards which helped the Bank complying to banking Control Commission circulars (222, 272 and others) and satisfying the external and internal IT auditors requirements.
Tony has achieved the following certifications:
CISSP (since 2001)  –   PECB ISO/IEC 27001 Lead Auditor   –   PECB ISO/IEC 27005 Risk Manager   –   PECB Certified Trainer
For a decade, Mr. Tony performed many information security services, as part of Deloitte and Secor/Computel group, in the Middle East region (UAE, Lebanon, Jordan, Turkey, and KSA).
He developed security policies and procedures (based on BS7799) for large organisations in the Middle East and backed that up with full implementations of the standard.
He is featured as speaker at several conferences, contributed in developing the security awareness for the Middle East market.
Mrs. Chebly is an accredited speaker / trainer at the Union of Arab Banks, and speaker in many international conferences and forums.

PARTICIPATION FEES:

1100$ For UAB members
1350$ For Non-UAB members
Fees include attending the workshop, receiving the material, refreshments and a daily lunch,

SCHEDULE AND LANGUAGE:

Registration: the first day from 8am to 9 am.
Schedule : from 9:00 am to 15:00 pm daily.
Workshop languages: Arabic and English.

MEANS OF PAYMENT

A Bankers check shall be drawn at New York to the order of the Union of Arab Banks, or by transfer to the account of the UAB No: 82305-510/8 Arab Bank – Beirut Lebanon.
For online registration & payment, please visit our website :www.uabonline.org

Download
Agenda