Presentation is loading. Please wait.

Presentation is loading. Please wait.

Larry Clinton Operations Officer Internet Security Alliance 703-907-7028 202-236-0001.

Published byDwayne Conley Modified over 8 years ago

Similar presentations

Presentation on theme: "Larry Clinton Operations Officer Internet Security Alliance 703-907-7028 202-236-0001."— Presentation transcript:

1 Larry Clinton Operations Officer Internet Security Alliance lclinton@ISAlliance.org 703-907-7028 202-236-0001

2 Cyber Security and the Economy The state of Internet security is eroding quickly. Trust in online transactions is evaporating, and it will require strong security leadership for that trust to be restored. For the Internet to remain the juggernaut of commerce and productivity it has become will require more, not less, input from security. PWC Global Cyber Security Survey

3 Obama: How to link Cyber Security to the Economy If the risks and consequences can be assigned monetary value, organizations will have greater ability and incentive to address cybersecurity. In particular, the private sector often seeks a business case to justify the resource expenditures needed for integrating information and communications system security into corporate risk management and for engaging partnerships to mitigate collective risk. Government can assist by considering incentive-based legislative or regulatory tools to enhance the value proposition and fostering an environment that encourages partnership.” --- President’s Cyber Space Policy Review May 30, 2009 page 18

4 Where We Are Going “Security seems to be following the trajectory of the quality movement of 20-30 years ago. With quality, everyone created a VP for quality, but in 10 years the positions were gone or buried. It may be that quality became ingrained and didn’t need its own VP. But the evidence in the survey suggests that security is neither ingrained nor valued” Source PWC Global Info Security Survey

5 Where We Need to go Security investment must shift from the technology- heavy, tactical operation it has been to date to an intelligence-centric, risk analysis and mitigation philosophy... We have to start addressing the human element of information security, not just the technological one, It's only then that companies will stop being punching bags. Only then will they be able to hit back. PWC Global Cyber Security Survey

6 What’s Missing We have the technology but still don't have our hands around what's important and what we should be monitoring and protecting. Where's that console that says, 'Hey, credit card numbers are crossing the firewall and this is a PCI issue that has a real business impact?'" PWC Global Cyber Security Survey 2008

7 What We need to Do “ The security discipline has so far been skewed toward technology—firewalls, ID management, intrusion detection—instead of risk analysis and proactive intelligence gathering. “ PWC Global Cyber Security Survey

8 Obama: What We Need to Do It is not enough for the information technology workforce to understand the importance of cybersecurity; leaders at all levels of government and industry need to be able to make business and investment decisions based on knowledge of risks and potential impacts. – President’s Cyber Space Policy Review May 30, 2009 page 15

9 Communicating? Not Really Are security and IT communicating enough with the CEO? By comparing their answers, one finds some startling disconnects... CEOs seem to think their enterprises are a lot more secure (and their employees more reliable) than CIOs and security leaders do.

10 The Insider Threat This year marks the first time "employees" beat out "hackers" as the most likely source of a security incident. Executives in the security field, with the most visibility into incidents, were even more likely to name employees as the source.

11 Larry Clinton Operations Officer Internet Security Alliance lclinton@ISAlliance.org 703-907-7028 202-236-0001

Download ppt "Larry Clinton Operations Officer Internet Security Alliance 703-907-7028 202-236-0001."

Similar presentations

ETHICAL HACKING A LICENCE TO HACK

ETHICAL HACKING A LICENCE TO HACK
Managing Up Helping leaders 'get' digital March 21, 2013 Lisa Welchman Introduction by Gerry McGovern.

Managing Up Helping leaders 'get' digital March 21, 2013 Lisa Welchman Introduction by Gerry McGovern.
Robert Gregg CEO ID Experts

Robert Gregg CEO ID Experts
© 2010 Deloitte & Touche LLP The Cyber-Savvy Organization: 10 Steps to a New Cyber Mission Discipline May 2010.

© 2010 Deloitte & Touche LLP The Cyber-Savvy Organization: 10 Steps to a New Cyber Mission Discipline May 2010.
Classification The Threat Environment Joyce Corell, NCSC Assistant Director for Supply Chain National Defense Industrial Association Global Supply Chain.

Classification The Threat Environment Joyce Corell, NCSC Assistant Director for Supply Chain National Defense Industrial Association Global Supply Chain.
Information & Communication Technologies 08 2014 NMSU All About Discovery! Risk-Based Information Security Program at NMSU presented by Norma Grijalva.

Information & Communication Technologies NMSU All About Discovery! Risk-Based Information Security Program at NMSU presented by Norma Grijalva.
1 Federal Communications Commission Public Safety and Homeland Security Bureau NARUC Summer Committee Meetings Dallas, Texas July 13, 2014 Clete D. Johnson.

1 Federal Communications Commission Public Safety and Homeland Security Bureau NARUC Summer Committee Meetings Dallas, Texas July 13, 2014 Clete D. Johnson.
(ISC) 2 2015 Global Information Security Workforce Study (GISWS) Results U.S. Federal Government.

(ISC) Global Information Security Workforce Study (GISWS) Results U.S. Federal Government.
Technology & Talent: Towards A New Paradigm John Cooksey General Manager, HR & Employment Services.

Technology & Talent: Towards A New Paradigm John Cooksey General Manager, HR & Employment Services.
CORPORATE RISK MANAGEMENT & INSURANCE BY R P BLAH D.G.M. INCHARGE THE ORIENTAL INSURANCE COMPANY LIMITED REGIONAL OFFICE BHUBANESWAR.

CORPORATE RISK MANAGEMENT & INSURANCE BY R P BLAH D.G.M. INCHARGE THE ORIENTAL INSURANCE COMPANY LIMITED REGIONAL OFFICE BHUBANESWAR.
Corporate Ethics Compliance *

Corporate Ethics Compliance *
1 The importance of credit bureau and need of legal framework for it LITHUANIA.

1 The importance of credit bureau and need of legal framework for it LITHUANIA.
Competency Models Impact on Talent Management

Competency Models Impact on Talent Management
By: Dr. Mohammed Alojail College of Computer Sciences & Information Technology 1.

By: Dr. Mohammed Alojail College of Computer Sciences & Information Technology 1.
Resiliency Rules: 7 Steps for Critical Infrastructure Protection.

Resiliency Rules: 7 Steps for Critical Infrastructure Protection.
AN ECONOMIC DEVELOPMENT STRATEGY Business Retention & Expansion WEDA Summer Economic Development Conference – August 18, 2010 Presented by Lisa Johnson,

AN ECONOMIC DEVELOPMENT STRATEGY Business Retention & Expansion WEDA Summer Economic Development Conference – August 18, 2010 Presented by Lisa Johnson,
Chapter 20 20-1 © 2012 Pearson Education, Inc. Publishing as Prentice Hall.

Chapter © 2012 Pearson Education, Inc. Publishing as Prentice Hall.
Chapter 13: Data Security & Disaster Recovery Database Management Systems.

Chapter 13: Data Security & Disaster Recovery Database Management Systems.
The Financial Impact of Cyber Security 50 Questions Every CFO Should Ask A publication of the American National Standards Institute and the Internet Security.

The Financial Impact of Cyber Security 50 Questions Every CFO Should Ask A publication of the American National Standards Institute and the Internet Security.
1 Deployment of Computer Security in an Organization CE-408 Sir Syed University of Engineering & Technology 99-CE-282, 257 & 260.

1 Deployment of Computer Security in an Organization CE-408 Sir Syed University of Engineering & Technology 99-CE-282, 257 & 260.

Similar presentations

Ads by Google