• Skip to primary navigation
  • Skip to main content
  • Skip to primary sidebar
  • Skip to footer
  • About
    • Secure360
    • UMSA
    • Get Involved
  • Events
    • Secure360 2021
    • Student360
    • Past Events
      • 2020 Secure360 Twin Cities
      • 2020 Student360
      • 2019 Secure360 Twin Cities
      • 2019 Student360
      • 2018 Secure360 Twin Cities
      • 2018 Secure360 Wisconsin
      • 2018 Student360
      • 2017 Secure360 Twin Cities
      • 2017 Student360
      • 2016 TC Secure360 Conference
      • 2015 Secure360 Conference
      • 2014 Secure360 Conference
      • 2013 Secure360 Conference
        • 2013 Secure360 Conference Speaker Presentations
      • 2012 Secure360 Conference
  • For Sponsors
    • Secure360 Twin Cities
    • Student360 Sponsors
  • For Speakers
    • Secure360 Speaker Details
    • Student360 Speaker Details
  • Blog
  • Nav Social Menu

    • Facebook
    • LinkedIn
    • Twitter
    • Vimeo

Secure360

Communicating Risk to Executive Leadership

IT security is in a perpetual struggle for resources, attention, and comprehension. As security practitioners, it is not enough for us to implement security controls or write policies, we must communicate the complexities of IT security to executives who are not IT security experts.  The answer is to “repackage” security and risk data into business risk intelligence (BRI). BRI is not a traditional risk assessment report or security dashboard. It is a strategy for communicating complex risk and security concepts to executive leadership in a manner that they can understand and use to make decisions.

In this presentation, we will discuss strategies for improving how to communicate risk to executive leadership in a more effective manner.

** Can’t make the session at this time?  Andrew will present it for the first time on Tuesday @ 9:45am

Key learning points:
  • How current risk management techniques fail to communicate
  • Strategies for explaining risk to leadership
  • Making risk assessments a tool for executive decision-making

About Andrew Plato

In 1995 while working at Microsoft, Andrew Plato executed the first known instance of a SQL Injection attack against an early e-commerce site.  When he demonstrated this attack to the developers, they dismissed the issue as irrelevant. Intrigued, Plato left Microsoft to found Anitian, an information security intelligence firm. Today, Anitian is one of the most trusted names in security intelligence with clients worldwide. Anitian has a mission to Build Great Security. For the past 20 years, Plato and Anitian have consistently executed on this mission with innovative, pragmatic answers to the most vexing security, compliance, and risk challenges. Plato’s career encompasses nearly every dimension of information security. He has participated in thousands of security projects, written hundreds of articles, and advised hundreds of C-level executives. Being both a business owner and a security practitioner allows Plato to bring a unique perspective to any discussion regarding security, technology, and governance.  Plato is well-known for delivering entertaining presentations that challenge conventional thinking and deliver practical answers to complex IT security challenges.

Primary Sidebar

Details

Wednesday May 13, 2015
1:30 PM - 2:30 PM
Room 10
Level: Intermediate
Focus: , GRC (Governance, Risk & Compliance), Professional Development

Share this page

Share on Facebook
Facebook
Tweet about this on Twitter
Twitter
Share on LinkedIn
Linkedin
Buffer this page
Buffer
Email this to someone
email

Footer

Contact

For more information about UMSA events, contact: Marie Strawser

Email List Signup

Join our email list for monthly Secure360 news and updates!




Join our tradeshow email list for updates on sponsorship opportunities and upcoming exhibitor deadlines.

Sponsored by:
© 2021 Secure360. All rights reserved.