Abstract

Data breaches in 2017 were worse than those in 2016, and the 2016 breaches were worse than 2015, and so on. Are information security programs learning the lessons from organizations in the news? Probably not, as many of the reported breaches are due to failures of basic information technology processes. Simply put, organizations are failing at fundamental security tasks which if implemented would lead to fewer breaches and greater security for their data. We will explore the basics, why they matter, and when failure to implement the basics led to breaches you may have heard of (and some you may not have). To be effective at defining and deploying a strategy you must understand the rules (customers, frameworks, ISMS). This session will explore the elements necessary to define, assess, improve, & mature your information security program. Start with the basic blocking and tackling and the rest will become evident.

Presented by