Cyber Risk Management London

We are bringing our cyber risk course to London for the second time to provide delegates with best practice strategies for ownership of cyber risk management and business wide implications such as third party vendor risk and operational resilience.<br />

This Cyber Risk Management course is designed for anyone who is working in, or interacts with cyber risk in financial services. 

Sessions will cover where cyber risk fits into overall risk strategy and works together with operational risk, how to design, implement and manage a cyber risk program, third party vendor risk and incident management amongst others. Held under Chatham House rule, this training provides delegates access to a collaborative and open learning environment. 

What Will You Learn?
  • How cyber risk fits into risk management and how to develop risk appetite limits for security risk

  • Best practice approaches to integrating risk and IT

  • How to obtain, manage and utilise risk analytics and data

  • The various options available for modelling cyber risk

  • The relationship between cyber risk and human behaviour and how to explore people controls

  • Incident management and business continuity planning from an insurance perspective

More information

Who Should Attend?

Relevant departments may include but are not limited to: 

  • Operational Risk 

  • Cyber Risk

  • Critical Infrastructure

  • Information Security 

  • Risk Quantification

  • Fraud Prevention

  • Financial Crime

  • Technology Risk


More information

Course Highlights
  • Cyber Risk in Risk Management and Governance

  • Integrating Cyber Risk and IT 

  • Designing, Implementing and Managing a Cyber Risk Programme

  • Risk Analytics and Data

  • Modelling Cyber Risk 

  • Third Party Vendor Risk 

  • Relationship between Cyber Risk and Human Behaviour

  • Incident Management and Business Continuity Planning – Insurance Perspective

More information

Course speakers

Flavius Plesu

Former Head of Information Security, Bank of Ireland

Founder, OutThink

•   Former Head of Information Security, Bank of Ireland
•   Founder, OutThink
•   Security Behaviour Practitioner, Research Institute in Science of Cyber Security (RISCS)

As Head of Information Security of Bank of Ireland, Flavius was responsible for all aspects of information security risk and compliance as well as managing the information security improvement programme. Having successfully built security culture and behavioural change programmes from the ground up Flavius brings an often opinionated and forward thinking view of assessing and managing human risk, but is able to do so with humour and pragmatism (mostly). An international public speaker Flavius contributes to a number of industry forums and events, openly sharing knowledge and best practice. 

Flavius is also the Founder of OutThink and Research Institute in Science of Cyber Security (RISCS) Practitioner. The primary objective of the Institute is to develop novel, innovative social-science and socio-cultural techniques for cyber security.

Maarten van Wieren Ph.D

Managing Director, Cyber Risk

Aon Netherlands

Maarten has been working in risk management for over 10 years, trained in financial risk management for a multinational life insurer as well as for the big-four. Over the last four years, he worked with the World Economic Forum to internationally develop the field cyber risk quantification and cyber risk management. At Aon Netherlands, he leads the Cyber Solutions Group and is responsible for serving Aon clients with state of the art solutions ranging from cyber risk management implementation to cyber insurance underwriting. Maarten holds a PhD in theoretical physics and is specialized in complex systems.

Steve Greenham

Independent Cyber Security and Risk Management Consultant

Steve is an independent Cyber Security and Risk Management Consultant specialising in the provision of risk services to clients across the enterprise, with specialism in information security environments.

Steve holds an MSc in Information Security, having graduated with distinction from Royal Holloway, University of London in 2006.  He is a Certified Information Systems Security Professional, a Certified Information Security Manager, Certified in Risk and Information System Controls, a Member of the Institute of Information Security Professionals, a Member of the British Computer Society and a Chartered IT Practitioner.

Prior to establishing his own company in 2016, Steve was a Senior Manager in Ernst & Young’s IT Risk Advisory practice, following a successful career in the pharmaceutical industry where his roles included Risk Management Service Management, Enterprise Architecture, and Information Security. Since 2016 Steve has been continuously employed in the Financial Services sector, providing first and second line oversight to cybersecurity transformation and major risk programmes for a mutual insurance society and a major high-street bank.

Courtenay Brammar

Director of Risk Analysis and Insights

Courtenay Brammar is Director of Risk Analysis and Insights at and is an experienced global enterprise and cyber risk professional. She previously led Morgan Stanley’s global operations’ risk assessment programme and prior to that was a key member of Deloitte’s Risk and Regulation consulting practice. Extensive experience of corporate governance considerations often bridging between technology teams, executive management and regulators.  Since 2014 Courtenay has been researching cyber security events facilitated by a purpose­-built technology platform, providing actionable advice and insights on the subject to clients across traditional finance, fintech and NGOs.


Paul De Luca

Risk Architecture Director, Enterprise Risk Management


Paul is significantly experienced in all aspects of information security risk and assurance.  He started building networks from the ground up in the mid 1980s, designed and secured Internet banking platforms in the 1990s and worked on chip card cryptanalysis.  He has spent many years improving risk management across financial services, commerce, manufacturing, and domestic and foreign government.

Paul is recognised as being at the leading edge of this subject and implements solutions which focus effort where it has greatest effect. His work has been included as a case study in the Information Security Forum's recent report on quantitative techniques and is contributing to Douglas Hubbard's latest book on the failure of risk management (due to be published in 2019).

Ameet Jugnauth

Head of IT Risk & Governance

Lloyds Banking Group

Ameet began his career in Financial Services in 1998 and has held a number of risk and compliance roles since. He settled in the world of Information Security and Technology Risk in 2007 when he joined Aviva, running several global security projects. In 2015 he joined Direct Line Insurance Group where he was the Head of IT and Cyber risk in the first line, leading several risk transformation initiatives. At the start of 2019 he joined Lloyds Banking Group as the Head of IT Risk and Governance in the second line.

Martin Overton

Ethical Hacker/Forensics/Malware and Cyber Security SME

Amba Hotel

Charing Cross,

Venue information