The State of Security Risk Management...Thoughts for today • Where we’re coming from –The...

10
The State of Security Risk Management Caleb Jones Manger – Security Risk Management Practice [email protected]

Transcript of The State of Security Risk Management...Thoughts for today • Where we’re coming from –The...

Page 1: The State of Security Risk Management...Thoughts for today • Where we’re coming from –The ‘preconditions’ on which the industry currently stands ... “DoD lacks a common

The State of Security Risk Management

Caleb JonesManger – Security Risk Management [email protected]

Page 2: The State of Security Risk Management...Thoughts for today • Where we’re coming from –The ‘preconditions’ on which the industry currently stands ... “DoD lacks a common

SLIDE 2

The setting…security always mattered

The complexity of information protection and security has changed

Page 3: The State of Security Risk Management...Thoughts for today • Where we’re coming from –The ‘preconditions’ on which the industry currently stands ... “DoD lacks a common

SLIDE 3

Thoughts for today

• Where we’re coming from – The ‘preconditions’ on which the industry currently stands

• Where we’re at – The capabilities that are currently being achieved

• Where the industry is going – What senior managers and security professionals can expect to see…soon

• What can you do – What will drive innovation in the future for security enterprise risk management

Page 4: The State of Security Risk Management...Thoughts for today • Where we’re coming from –The ‘preconditions’ on which the industry currently stands ... “DoD lacks a common

SLIDE 4

What was the universal condition?

“DoD lacks a common business process to assess security risks. Currently, components assess risk through a variety of assessments. These assessments are frequently conducted manually and occur at different times throughout the year with no coordinated mechanism for enterprise reporting of findings.”

Air Force Security Business Process Review 2010

Page 5: The State of Security Risk Management...Thoughts for today • Where we’re coming from –The ‘preconditions’ on which the industry currently stands ... “DoD lacks a common

SLIDE 5

What changed?

“Current enterprise security is based upon disjointed organizations, manual processes, and an army of disconnected point tools. I firmly believe we are at the beginning of a tipping point. Enterprises need a vast improvement in enterprise security analytics, automation, efficacy, integration, and intelligence soon.”

CSO Mag “The Enterprise Security Model Is Experiencing “Death by a Thousand Cuts”

AUG 15, 2013, Jon Oltsik

Page 6: The State of Security Risk Management...Thoughts for today • Where we’re coming from –The ‘preconditions’ on which the industry currently stands ... “DoD lacks a common

SLIDE 6

Where are we at now?

The automation of security assessment and other data has allowed us to aggregate data and converge it into a unified picture for leadership.

Page 7: The State of Security Risk Management...Thoughts for today • Where we’re coming from –The ‘preconditions’ on which the industry currently stands ... “DoD lacks a common

SLIDE 7

Where are we going?

“As quality and volume of data within the security enterprise increases, the opportunity exists to leverage advances in machine learning to develop predictive modeling and allow security practitioners to become truly proactive.”

Page 8: The State of Security Risk Management...Thoughts for today • Where we’re coming from –The ‘preconditions’ on which the industry currently stands ... “DoD lacks a common

SLIDE 8

What can you do to help?

Empower your organization to break compliance-based security paradigms and provide resources to promote the transition to data-driven and risk-based security enterprises.

Page 9: The State of Security Risk Management...Thoughts for today • Where we’re coming from –The ‘preconditions’ on which the industry currently stands ... “DoD lacks a common

The State of Security Risk Management

Caleb JonesManger – Security Risk Management [email protected]

Page 10: The State of Security Risk Management...Thoughts for today • Where we’re coming from –The ‘preconditions’ on which the industry currently stands ... “DoD lacks a common

To learn more, visit www.alionscience.com

Big ideas. Real solutions.


Value Retention: Preconditions for Moving from Demolition to ...essay.utwente.nl/81331/1/Value retention preconditions...MASTER THESIS Value Retention: Preconditions for Moving from

Value Retention: Preconditions for Moving from Demolition to ...essay.utwente.nl/81331/1/Value retention preconditions...MASTER THESIS Value Retention: Preconditions for Moving from

lacks march dining rooms

lacks march dining rooms

! Eduard Bernstein - The Preconditions of Socialism

! Eduard Bernstein - The Preconditions of Socialism

DoD Needs to Require Performance of Software Assurance ......DoD Policy Does Not Require Performance of SwA Countermeasures and Lacks Implementation Procedures Although DoD policy14

DoD Needs to Require Performance of Software Assurance ......DoD Policy Does Not Require Performance of SwA Countermeasures and Lacks Implementation Procedures Although DoD policy14

US Government Mrs. Lacks

US Government Mrs. Lacks

Henrietta Lacks’ immortal cellstjuddslanguagearts.weebly.com/uploads/5/8/2/9/58297159/henrietta_lacks... · Henrietta Lacks’ "immortal" cells TOP: Henrietta Lacks' (left) cells

Henrietta Lacks’ immortal cellstjuddslanguagearts.weebly.com/uploads/5/8/2/9/58297159/henrietta_lacks... · Henrietta Lacks’ "immortal" cells TOP: Henrietta Lacks' (left) cells

Collocation Preconditions

Collocation Preconditions

Lacks March Living Rooms

Lacks March Living Rooms

Pramana and Preconditions

Pramana and Preconditions

Lacks Lamps & Table Tops

Lacks Lamps & Table Tops

Lacks Supplier Manual - Lacks Enterprises. Supplier Codes ... Lack’s delivery terms with all international suppliers are “Incoterms 2010, DDP Lacks Receiving Dock”, ...

Lacks Supplier Manual - Lacks Enterprises. Supplier Codes ... Lack’s delivery terms with all international suppliers are “Incoterms 2010, DDP Lacks Receiving Dock”, ...

The Immortal Life of Henrietta Lacks - St. Louis Public ... › cms › lib03 › MO01001157 › ... · The Immortal Life of Henrietta Lacks by Rebecca Skloot Henrietta Lacks was

The Immortal Life of Henrietta Lacks - St. Louis Public ... › cms › lib03 › MO01001157 › ... · The Immortal Life of Henrietta Lacks by Rebecca Skloot Henrietta Lacks was

Lacks Supplier Manual

Lacks Supplier Manual

BERNSTEIN - The Preconditions of Socialism

BERNSTEIN - The Preconditions of Socialism

An important topic: preconditions and postconditions. They are a method of specifying what a method accomplishes. Preconditions and Postconditions.

An important topic: preconditions and postconditions. They are a method of specifying what a method accomplishes. Preconditions and Postconditions.

Preconditions of Socialism - e Bernstein

Preconditions of Socialism - e Bernstein

Preconditions for the social entrepreneurship developments

Preconditions for the social entrepreneurship developments

Embryonic developmental oxygen preconditions ...Sep 20, 2019  · © 2019. Published by The Company of Biologists Ltd. Embryonic developmental oxygen preconditions cardiovascular function

Embryonic developmental oxygen preconditions ...Sep 20, 2019  · © 2019. Published by The Company of Biologists Ltd. Embryonic developmental oxygen preconditions cardiovascular function

Bernstein_the Preconditions of Socialism_21.08.2015

Bernstein_the Preconditions of Socialism_21.08.2015

Preconditions and Preparatory Steps of Implementing CLIL ...

Preconditions and Preparatory Steps of Implementing CLIL ...