The Department of Training and Academic Development at the Center organized a lecture on Governance, Risk Management and Compliance for the employees of the Informatics and Cybersecurity Department, in conjunction with the Cybersecurity Awareness Month.

The trainer, Ms. Zainab Al-Shahimiya, information technology consultant at Atqaa Company, addressed a number of topics during the lecture, including: defining policy governance and its relationship to risk management and internal controls, how to apply compliance with policies, the importance of managing information security risks and internal and external environmental changes, managing security incidents, and defining controls. The occasion was carried out within the various departments and processes in the organization.

The lecture was attended by the Head of the Informatics and Cybersecurity Department, his deputy, the official of the cybersecurity team, officials of the rest of the sections in the department, members, and all those interested in governance and risk management.

Mr. Suleiman Al Rawahi, Information Security Officer, said: “The lecture was valuable and taught us the basics of compliance with our organization’s information security policies and the concept of risk management, in addition to ways to improve processes and procedures that will help us manage risks in the field of information technology.”

Alaa Al-Dawoudi, Information Security Officer, added that the lecture was educational and inspiring due to its knowledge of the concepts of governance, risk and compliance. The introduction to the lecture explained the appropriate methods to improve the processes and procedures that help manage policies between the organization’s departments in risk management and information security.

 The meeting included a number of useful discussions and a lot of advice was provided regarding the systems and programs used in the field of information security and classification.