Assume Breach Presenation
Marcus Morissette
Given that most of the costs of a data breach are linked to the effectiveness of how an organization responds to the breach and communicates their response strategy, why do so many organizations not focus more on putting effective response plans in place before a breach occurs? Our Assume Breach approach starts with the assumption that a breach will occur, and that an effective response plan can and should be implemented prior to spending months of effort building out preventative controls that may not prevent a breach anyway.
This presentation was presented at the Washington chapter of Infragard and the Seattle chapter of NAISG on 1/28/2010
Marcus Morissette
Given that most of the costs of a data breach are linked to the effectiveness of how an organization responds to the breach and communicates their response strategy, why do so many organizations not focus more on putting effective response plans in place before a breach occurs? Our Assume Breach approach starts with the assumption that a breach will occur, and that an effective response plan can and should be implemented prior to spending months of effort building out preventative controls that may not prevent a breach anyway.
This presentation was presented at the Washington chapter of Infragard and the Seattle chapter of NAISG on 1/28/2010
| Assume Breach Presentation |
Data Governance
Aaron Weller
Maintaining complete, accurate and available data is crucial to organizations in the Financial Services Industry. If a custodian cannot determine who owns a particular security, or the value of inter-bank payments their business will not survive very long.
Many organizations do not realize that the volume of data they create and use is increasing at an exponential rate, and the methods that have been used to manage it in the past may no longer be fit for purpose. To respond to these changes, financial services organizations need to invest in some level of Data Governance.
Data Governance is a broad field, covering data quality, security, privacy, efficiency and legal & regulatory considerations. It is the framework that allows business data to be managed in accordance with its value to the organization.
This article discusses trends in the usage of data and the implications these have on the way that business will be conducted in future. The article describes many relevant considerations when implementing a program of Data Governance.
Aaron Weller
Maintaining complete, accurate and available data is crucial to organizations in the Financial Services Industry. If a custodian cannot determine who owns a particular security, or the value of inter-bank payments their business will not survive very long.
Many organizations do not realize that the volume of data they create and use is increasing at an exponential rate, and the methods that have been used to manage it in the past may no longer be fit for purpose. To respond to these changes, financial services organizations need to invest in some level of Data Governance.
Data Governance is a broad field, covering data quality, security, privacy, efficiency and legal & regulatory considerations. It is the framework that allows business data to be managed in accordance with its value to the organization.
This article discusses trends in the usage of data and the implications these have on the way that business will be conducted in future. The article describes many relevant considerations when implementing a program of Data Governance.
| Data Governance |
Maturing Information Security
Aaron Weller and Jodi Letkiewicz
There is no question that organizations need to secure their data. As a professional with responsibility for information security, how can you gain assurance that this part of your business is appropriately protected? What models can you use to gain assurance that the right areas are being considered?
Aaron Weller and Jodi Letkiewicz
There is no question that organizations need to secure their data. As a professional with responsibility for information security, how can you gain assurance that this part of your business is appropriately protected? What models can you use to gain assurance that the right areas are being considered?
| Maturing Information Security |