It’s no longer a matter of if, but when a ransom attack against critical systems will occur. Many organizations are not fully prepared and lack an understanding of what happens next. This session will walk through a real-life ransomware attack scenario and discuss how internal audit can learn from these events when they occur. Key controls to implement to reduce post-event pain will also be discussed.

Learning Objectives

1. Learn from a breakdown of a real-life ransom attack.

2. Understand the key challenges facing organizations when a ransom attack occurs.

3. Learn about post-event actions and challenges that will help define controls and processes to be considered to reduce the post-event pain.