Registration Time: 09:00
Sessions Time: 09:15 - 12:30  including a 15-minute break
Speakers: Mr Sandro Psaila &B Ms Allaine Pascual
Venue:   Online Webinar

Participation Fees 
MIA Members: €40.00
Non-MIA Members: €75.00
Retired Members: €20.00
Students: €30.00

*Group bookings for 3 or more participants available.

BACKGROUND INFORMATION

Financial data has become one of the most attractive targets for cybercriminals, exposing organisations to fraud, regulatory sanctions, operational disruption, and reputational damage. As finance teams increasingly rely on cloud platforms, digital workflows, third party providers, and AI enabled tools, cybersecurity risk is now firmly a finance and governance issue, not just an IT concern. Regulators, auditors, and boards expect finance professionals to understand how cyber risk affects financial reporting, compliance, and business resilience.

SPECIFIC TOPICS TO BE COVERED DURING THE SESSION

• Why financial data is a prime cyber target
• Phishing, Business Email Compromise (BEC), ransomware, and insider threats
• AI enabled fraud, deepfakes, and emerging cyber risks
• Core cybersecurity controls for finance teams
• Access management, segregation of duties, and payment controls
• Regulatory and audit expectations (GDPR, DORA, NIS2, SOX, SOC reports, PCI DSS)
• Incident response and regulatory notification requirements
• Third party and supply chain cyber risk
• Building a cyber resilient finance function

• A practical action plan for immediate improvement

Why is the session of relevance to our members?

Cyber incidents now have direct financial, audit, and regulatory consequences. This session provides finance professionals with clear, practical insights into today’s most relevant cyber threats, the controls auditors and regulators expect to see, and the actions that genuinely reduce risk. Attendees will leave with actionable knowledge they can immediately apply—making this session essential for both members and non members seeking to strengthen their professional effectiveness and protect their organisations.

Target Audience

• CFOs, Finance Directors, and Financial Controllers

• Accountants, Auditors and finance professionals

• Risk, compliance, and governance professionals

• Board and audit committee members, particularly in regulated sectors

Speaker's Profile

Sandro Psaila

With over 20 years of experience in IT Audit, Information Security, and Revenue Assurance, Sandro is a Computer Science and Artificial Intelligence (CSAI) graduate and a Certified Information Systems Auditor (CISA) since 2007. He joined Deloitte Malta in 2016 and leads IT audit engagements supporting statutory audits for national and international organisations. Sandro specialises in assessing the design, implementation and operating effectiveness of IT and cybersecurity controls that mitigate risks to financial reporting, data integrity, and regulatory compliance, particularly within the online gambling and financial services sectors. He leads Deloitte Malta’s IT audit quality approach and technology focused third party assurance engagements under the ISAE 3402 and ISAE 3000 frameworks.

Allaine Pascual
Allaine has over a decade of experience in security governance, risk and compliance (GRC), with a strong focus on cybersecurity risk management and control effectiveness. She joined Deloitte Malta in 2025 and has extensive experience supporting PCAOB audits, Sarbanes‑Oxley (SOX) compliance, Information Security Management System (ISMS) and SWIFT audits. Her expertise includes cybersecurity and IT control assessments, third‑party cyber risk management, critical asset and threat assessments, security policy development, and security awareness programmes. Allaine has worked across a wide range of industries, including financial services, gaming, telecommunications, manufacturing, pharmaceuticals, and business process outsourcing.

EVeNT CPE COMPETENCies

3 Core

WEBINARS TERMS AND CONDITIONS

Terms and conditions  apply

DISCLAIMER

By Registering and/or Booking for this event, you agree that MIA will collect your information which will be using it in accordance with its Privacy Notice available at the following link.

Please note that all webinars are recorded by the MIA. Such recordings will be retained by the MIA for internal use.