session

Keynote Presentation - 10:10 am - 10:40 am

Enterprise Security Risk Management "ESRM for short" is changing the way security professionals manage their programs. While the principles appear simple, the culture change and path to risk isn't. For so many years, security team members in organizations focused on no or relied on enforcement instead of collaboration. ESRM is a paradigm shift toward a risk based, business focused approach that creates a trusted advisor relationship between a CISO and their executives. The benefits for any CISO (or CSO) are significant, including the opportunity to have meaningful conversations about the risks facing their organizations' IT assets.

Takeaways:

• Learn about the basic principles of ESRM
• Understand how using a risk based, business focused approach can benefit your security program
• Appreciate how our presenter learned from his mistakes to implement ESRM based programs throughout his career

Presented by: