The failure of cyber security investment

Thursday
 
28
 
November
1:00 pm
 - 
1:40 pm
Topic
Security Strategy / Leadership
Agenda
Sign in to add this session to your agenda
Add to My AgendaAdded to My Agenda
Location
Room 212
Theme
Leadership & Governance in Cyber Security

Speakers

Robert Laurie
Robert Laurie

Robert Laurie

Robert Laurie

Director
Hellorisk
Ankur Kumar
Ankur Kumar

Ankur Kumar

Ankur Kumar

CISO
Cyberstrat (AUS)

Synopsis

The failure of cyber security investment. You can't explain the business value of a cyber investment to your C-suite, and because of that we can't have an adult conversation about business led cyber investment.

Boards agree that cybersecurity is a business issue, not a technical one. How do we know that we've got a level of protection that balances the needs to protect against the needs to run the business. When an organization gets hacked, society sees pariahs who let them down. This session addresses how do we close the gap between CIOs, CISOs, the C-suite and the Board.

In this session:

  1. Learn to drive cybersecurity investment aligned with business outcomes.
  2. What is the business value of any cybersecurity investment and the message you need to give to your board to reset their expectation around how security actually works.
  3. What metrics should you report to your board?
  4. How to use outcome driven metrics to measure cybersecurity value?
  5. How do you support stakeholder defensibility?
  6. How can we measure risk and demonstrate that we are meeting risk targets?
Back to Program

Acknowledgement of Country

We acknowledge the traditional owners and custodians of country throughout Australia and acknowledge their continuing connection to land, waters and community. We pay our respects to the people, the cultures and the elders past, present and emerging.

Acknowledgement of Country