IT Risk Management Planning for 2022 - Addressing Critical IT Risks - OAR710WEB


Each year risk management and audit departments are faced with determining what risk areas need to be addressed in the upcoming year. Do we focus our limited resources on threats related to current vulnerabilities, emerging technology, aging technology or other high risk areas?

To adequately determine risk going forward, it’s important to take a look at the past year to determine key risk areas.  Thus, during this webinar we will analyze recent security incidents including the epidemic of ransomware attacks.

The COVID-19 pandemic has resulted in many employees working from home.  The transition from working in the office to working at home was abrupt with minimal time to establish a strategy for a secure telecommuting environment.  As a result, there is solid evidence of a significant increase in cyberattacks focused on employees working from home in order to penetrate enterprise networks.

Unfortunately, a disturbing theme in most security incidents is the failure of basic internal controls. Hackers are not penetrating your network through your firewall, they are instead taking the easy way into your network via your vendors, social engineering, employees working from home and other easy paths.  

At the conclusion of this webinar you will have a solid foundation for looking into the crystal ball that predicts future events.


Tuition cost


NASBA Certified CPE

3.00 Credits


Why you should attend

You should attend because identifying, assessing, and examining the organization’s risk responses, and helping the organization increase its capacity to handle risk, are an integral part of internal auditors’ responsibilities.

Who should attend

Financial, Operational and Information Technology auditors and Audit management, Information Security and Risk Management professionals who need to assess risk an prepare for future engagement.

What You'll learn

You will learn about current and future events that are expected to impact organizations and their IT infrastructure.



  • Review of recent security incidents for risk patterns that need to be considered for 2022 planning.
  • Impact of COVID-19 on Enterprise Security & Controls
    • Employees working remotely from home
    • Potential security concerns for home working environments including authentication, VPNs, encryption, computer access protection, etc.
    • Security of videoconferencing and file sharing tools and services
  • Critical risk areas to be addressed during the webinar will include:
    • Multifactor Authentication
    • Malware / Ransomware
    • Patch Management
    • Privileged Access
    • Log Management / IDS / IPS
    • Vulnerability Assessments
    • Encryption of Sensitive Information
    • Assessing Vendor Risks (including Cloud Service Providers)
    • Web application vulnerabilities
    • … and other key risk areas.

Schedule your course

Use the table below to select the time and location that works best for you.

Timezone: America/New_York

October 2021

Oct 28th, 2021-Oct 28th, 2021

ACI Learning is registered with the National Association of State Boards of Accountancy (NASBA) as a sponsor of continuing professional education on the National Registry of CPE Sponsors. State boards of accountancy have final authority on the acceptance of individual courses for CPE credit. Complaints regarding registered sponsors may be submitted to the National Registry of CPE Sponsors through its website: