Creating and Maintaining Effective Metrics for Assessing Enterprise Security

When IT security leaders speak with top management, they're typically asked two questions:

  1. How safe is the organization from cyber threats
  2. How well are enterprise defenses working

During this webinar, top experts will discuss key metrics for assessing security posture, as well as the performance of the security team. You'll learn about some useful ways to measure cybersecurity effectiveness, and how to use those metrics to demonstrate new risks as well as the ongoing performance of your security initiatives.

Available:
Tue, Oct 15, 2019 10:00 AM PDT / 01:00 PM EDT
Duration:
1h 00min

When you attend this webinar, you will:

  • Discover why telling CEOs how many vulnerabilities you patched isn't useful
  • Find metrics that demonstrate your program's effectiveness without minimizing the magnitude of the threats you still face
  • Learn tricks for putting cybersecurity into a business context -- and help both IT staff and business leaders do their jobs more effectively

Featured Speakers

  • Stacey Halota
    Stacey Halota
    Vice President–Information Security and Privacy
    Graham Holdings Company

    Stacey Halota joined Graham Holdings Company (then The Washington Post Company) in 2003. Graham Holdings is a diversified education and media company whose operations include educational services, television broadcasting, online, print and local TV news, home health and hospice care, manufacturing, car dealerships and restaurants. She leads the development and implementation of information security and privacy programs, including Sarbanes Oxley, privacy law, Payment Card Industry compliance and other data protection efforts. Stacey has more than 25 years of experience in the information technology, security and privacy field. Before joining Graham Holdings, she served as the federal government and southeast region leader of Guardent (now part of Verisign), a security and privacy consulting and managed security services company. Prior to Guardent, she worked at PricewaterhouseCoopers in the Technology Risk Services consulting practice working with federal government and Fortune 500 clients.

    Stacey is a past recipient of Secure Computing Magazine’s Chief Security Officer of the Year award and was also named Mid-Atlantic Information Security Executive of the Year (Commercial Category) by the Executive Alliance. She is a Certified Information Systems Security Professional (CISSP), a Certified Information Privacy Professional (CIPP) and a Certified Information Systems Auditor (CISA). Stacey is a frequent speaker on information security and privacy topics and is on the strategic advisory boards of CyberVista and Y/L Ventures.

  • Mike Ware
    Mike Ware
    Managing Principal
    Synopsys

    Mike leads the Mid-Atlantic consulting and services practice for Synopsys out of Dulles, Virginia. Mike joined Cigital, now Synopsys in 2008 and has successfully lead the organization’s largest software security implementations, particularly in the Financial and Healthcare sectors. Mike leverages a unique background in software engineering, information security, and management consulting when advising clients on establishing and maturing software security initiatives.

  • Sara Peters
    Sara Peters
    Senior Editor
    Dark Reading

    Sara Peters is Senior Editor at Dark Reading and formerly the editor-in-chief of Enterprise Efficiency. Prior that she was senior editor for the Computer Security Institute, writing and speaking about virtualization, identity management, cybersecurity law, and a myriad of other topics. She authored the 2009 CSI Computer Crime and Security Survey and founded the CSI Working Group on Web Security Research Law -- a collaborative project that investigated the dichotomy between laws regulating software vulnerability disclosure and those regulating Web vulnerability disclosure.

Sponsored By