Focusing Control Resources in an Unfocused Landscape

No ratings

Presented at New York CISO Executive Summit 2012 by

Thomas Doughty

The threat landscape continues to get more diverse while being judicious with our control investments and resources remains a growing concern. How to balance the two? Security threats and potential exposures in the forefront of senior stakeholders minds is a positive first-step. However, the increased attention can potentially unravel a well-structured, forward looking security effort by building a culture which reacts to events and bright shiny objects. To keep the organization focused on systematic, risk based framework, security teams must proactively manage the message of what security efforts are focusing on and why. Session discovery topics: The balance between hype and reality How to manage the message Partnering with your audit