In today's shifting and complex risk landscape, and the need for faster strategic decision making, CISOs are supporting evolving information risk decisions more than ever while facing increased visibility from regulators, executive teams, and boards of directors. To enable risk decisions and deliver value while protecting the business from security threats and data breaches, security leaders must develop processes, build relationships, and strengthen risk culture to continue to embed risk management into the organization.
In this interactive conversation among peers, CISOs will discuss their role in proactively balancing organizational risk.
Topic 1: Enabling risk decisions to prompt business agility
How are you setting the risk management strategy and enabling risk decisions in your organization?
What areas of risk do you own in your role, and what would you change or enhance in the future?
What metrics do you use that effectively quantify and describe risk within, and outside of, security?
Topic 2: Fostering a risk-ownership mindset
What communication strategies around risk have been most persuasive as you discuss information security with other business units?
How do you feel the conversation around information risk is evolving, and what does that mean for the sorts of skills you will need in your teams going forward?
How would you describe the perspective of your board of directors when it comes to risk appetite? Is this constructive for your goals?