Cybersecurity: C-Suite and Board Oversight

Date:

Dec 31, 2025

Register

Are you a board member or executive who struggles to manage or make sense of technology or security? The Gramm-Leach-Bliley Act of 1999 requires all financial institutions to implement an Information Security Program (ISP) commensurate with their size, complexity, and use of technology. This became a responsibility of the board and C-suite.

Agenda

December 31, 2025
11:00am - 12:30pm EST

The ISP starts with risk assessment and includes other security programs such as incident response and third-party management. It also requires management testing and independent auditing to set up a successful IT examination. This webinar provides all senior executives and governors with a governance framework to oversee security in a financial institution.

If you feel like you are ill-equipped to be in senior leadership of a financial institution to address cybersecurity and data privacy responsibilities, you are not alone. Technology is confusing, technical, and spreading into every part of the banking ecosystem.

Open banking is the buzz, along with AI, digital currency, and fintech. Begin to demystify this area with this webinar.

Topics

What You'll Learn

  • Understand data security laws, regulations, and the IT examination process
  • Learn how to set a security appetite at the board level for the C-suite to operationalize
  • Learn what security-related roles and committees you should establish at your financial institution
  • Understand the roles and responsibilities of a board member as it relates to cyber • Understand the roles and responsibilities of all C-suite roles, including CEO, COO, CFO, CIO, CTO, CISO, CMO, and CHRO
  • Understand what a top-down Information Security Program looks like for your financial institution
  • Learn what documentation is necessary for information security program governance
  • Describe the components of an effective management testing and IT auditing program as part of a governance program
  • Review security metrics for security governance
Speaker(s)

Dr. Kevin Streff is Founder of several cyber startups and acquisitions, including American Security and Privacy, LLC, Secure Banking Solutions, LLC, SBS Cyber, LLC, and Blu3 Technologies, LLC. His businesses have worked across all fifty states and internationally helping organizations comply with legal and regulatory data protection mandates, as well as planning and implementing sound information security and privacy strategies. For over 20 years, Dr. Streff was Professor & Research Lab Director at Dakota State University, a National Center of Excellence in Cyber Defense through the National Security Agency, and The Department of Homeland Security. Dr. Streff recently left the university to become Founder and Managing Partner at American Security and Privacy, the first company focused primarily on both security and data privacy in the banking sector. He speaks nationally and internationally on data security and privacy, and has been featured in Money Magazine, CNN Online, The Wall Street Journal, and NBC News. His research is published in top academic journals and promoted at prestigious academic conferences. Dr. Streff has testified to Congress in field hearings as well as in Washington, DC to promote sound national policy on these critical issues.

Additional Information

Who Should Attend?

This session is ideal for board members and C-suite personnel.

Fees

Live Webinar - $299.00

  • Live Access
  • 30 Days OnDemand Playback
  • Presenter Materials and Handouts

Available Upgrades

  • 12 Months OnDemand Playback - $120.00
  • 12 Months OnDemand Playback + Digital Download - $150.00
  • Additional Live Access - $95.00 per person

**100% surcharge applied to non-members.

Association Contact

Katie Yates
Education Coordinator
o: 317-387-9380
d: 317-333-7162
kyates@indiana.bank