Becoming a strategic cybersecurity leader

Presented at BSides Austin 2018, March 8, 2018, 4:30 p.m. (60 minutes).

We have heard for years that the role of the CISO is moving into the executive suite, but it is perpetually held back by historical connections to the CIO, constraints to the CIO budget, and the technical foundation necessary for a CISO. Lately a new model has emerged from high-governance organizations to split risk management and compliance (termed the 2nd line of defense) from technical operations, risk ownership, and business-line-level responsibility (termed the 1st line of defense). Progressive organizations requiring more advanced digital risk management recognize the need to move cyber risk management into the second line of defense, and are taking steps necessary to mature cyber risk management into the executive suite.


Presenters:

  • Earl Crane - Founder, CEO - Emergent Network Defense
    Emergent Network Defense, Inc. (END) provides a Digital Risk Management solution to "secure what matters" by identifying, measuring, and distributing cyber risk ownership throughout the enterprise. We use a biological ant-based swarming approach to identify the most likely attack paths to your greatest risks-and those that cause the most damage-so you can reduce your risk before an incident happens. Our solution enables business owners to understand the amount of cyber risk to which they are exposed and for which they are responsible in a dollar-based impact amount. This enables the CISO or CRO to take action to automatically reduce cyber risk exposure. It also answers the regulatory requirement for an established and monitored cyber risk appetite. Here is a short four-minute video on what we do: https://end.app.box.com/v/Explainer

Links:

Similar Presentations: