Managing the Subversion of IT Financial Procedures - Training

Some of the most prolific cases of organisational damage instigated by IT misuse have occurred in the financial sector. Resulting in huge financial loss and damage to reputation, this persistent area of criminal activity poses a continual risk to financial organizations as security measures are overcome by cunning and determined minds and technologies.

“Managing the Subversion of IT Financial Procedures” has been designed specifically for IT investigators and managers working specifically within the finance industry. It aims to align the participants' knowledge of the industry with a sound understanding of the investigative theories and procedures needed to develop both contingency and response plans should such incidents occur.

Duration: 3 days Participants: 8-16 Fee: POA

Participants attending the course will learn to:

» Understand the primary threats from IT misuse to the financial sector
» Identify incidents of IT misuse within their organisation
» Effectively respond to incidents of IT misuse within their company, devising and executing first response and contingency plans
» Co-ordinate and manage a major financial enquiry
» Understand and apply proven procedures and theories, laws and litigation
» Instil awareness and train employees

COURSE SCHEDULE

DAY 1

Lecture-based discussions focusing on the key threats from IT misuse to the finance industry. Instructors will use industry examples – some prolific, some new – to explore and exemplify the key issues that arise as a result of IT misdemeanour.

Legal Ramifications
Topics include: Data Protection Act; Police and Criminal Evidence Act; Regulation of Investigatory Powers Act; Criminal Procedures and Investigations Act.

Threats to the Financial Organisation
Topics include: Common IT frauds; Data Ransom and attempted extortion; Electronic Funds Transfer manipulation and settlements fraud; Impersonation and hacking; IP theft and breach of contract; Password compromise.

Early Warnings
Topics include: Early warning indicators; Planning the investigation; Discreet evidential sources; Audit trails, money trails; Data interrogation tools.

Approaching the IT “Scene of Crime”
Topics include: How to secure ADMISSIBLE evidence; Overlooked essential sources; Computer forensic techniques; Personal computers and storage media; Disk imaging technologies and investigative software; Management of different operating systems; Circumventing password controls; Mainframes, minicomputers LANS, WANS and distributed environments.

Using the Power of the Courts
Topics include: Search Warrants; Civil Search Orders; Legal Discovery.

Investigative Resources
Topics include: Electronic surveillance and monitoring technology; Forensic support, Questioned documents, video and audio enhancement.

Preserving IT Evidence
Topics include: Handling and storing computer media; Continuity of evidence; Non-repudiation techniques and technology; ACPO guidelines.

End Game
Topics include: Securing exposed systems and processes; Handling the suspect; Interview methods; Cautioning; Termination of employment and dismissal.

Who should attend?

Managers and investigators working in the financial sector who have some responsibility for the management and protection of their company’s financial data. Also advisors to financial organizations who need to understand the potential ramifications of IT misuse on the operations and exposure of their client.

Job titles of delegates on past courses:

Financial controller, Auditor, Lawyer, Managing Director, Head of Finance Department, Data Manager, Corporate investigators.

DAYS 2 & 3

Days two and three present the participant with two very different investigative simulations based on real-life industry incidents of IT misuse.

Each day begins with an in-depth briefing on the case in question in which instructors set the investigative scene and present some of the key issues to address throughout the day. Over both days, the instructors are on hand to help with queries, provide examples and evaluate the progress of each participant.

Working in small teams participants will be required to draw on their learning from day one in order to devise, manage and close a successful financial investigation. They will be asked to prepare regular reports for senior management, analysing their progress and explaining their strategic decisions. These updates need to be delivered to deadline, must include certain information, and generally serve so increase the pressure on the groups again reflecting real-life constraints.

These hands-on instructive tools demand that participants demonstrate that they have understood the subjects of day one, and are able to filter out relevant information for this particular situation. Critical to the evaluation will be the participants’ ability to apply procedures and theories correctly, while using their own knowledge of the financial industry to refine their approach. Both simulations are designed to place emphasis on lateral thought, encouraging participants to view the investigative landscape in its entirety, rather than focusing on the software or technology alone.

Both days two and three, and the course itself, close with interactive feedback sessions, led by the instructors, in which participants analyse their actions and consider alternative approaches that might have been taken. These wrap-up sessions contextualize the events of the day and relate them back to the subjects covered in day one.

JOIN THIS COURSE:

If you would like to apply to this course or discuss your interest further:

CLICK HERE TO APPLY

Or request further information:

Email: subversion@ambertec.net

Tel: +44 (0)207 871 4429

Tel: + 44 (0) 1202 828088