带着你的兴趣：将网络安全风险与企业战略对齐.pdf

《带着你的兴趣：将网络安全风险与企业战略对齐.pdf》由会员分享，可在线阅读，更多相关《带着你的兴趣：将网络安全风险与企业战略对齐.pdf（24页珍藏版）》请在三个皮匠报告上搜索。

1、General-Corning(L4)Bring Your AppetiteAligning Cybersecurity Risk with Enterprise StrategyGeneral-Corning(L4)IntroDirector GRC CorningAdjunct Professor Cybersecurity WVUGovernment and civilian experience Background in ICS/OT cybersecurity who fell into GRCMS Cybersecurity University of CharlestonCar

2、negie Mellon Chief Risk Officer Program General-Corning(L4)DisclaimerThe views and opinions expressed in this presentation are my own and do not necessarily reflect the views,policies,or positions of Corning or any of its affiliates.General-Corning(L4)“Dont be the Sushi at the Italian Restaurant”Gen

3、eral-Corning(L4)Todays MenuSpecial:Not CybersecurityStarterGet a feel for your AppetiteSoup or SaladRisk Tolerance:Two Sides of the CoinEntreService Makes the Meal:Know Your RoleSide DishMeasuring Risk DessertPractical ExampleGeneral-Corning(L4)Todays Special:Not CybersecurityWe tend to think of Cyb

4、er as a hot topic or weekly special but that does us a disservice.A special is temporary.Instead,we should be the signature entre,a core part of our restaurants success.General-Corning(L4)Choosing a restaurant:Get a feel for your(Risk)Appetite Not all businesses are the same.Cyber risk management mu

5、st be aligned to organizational risk appetite.If you arent aligned to your ERM risk appetite you may end up being a sushi dish at an Italian restaurant.ERM is building a menu to align with the business risk appetite if you go off on your own and become the sushi dish you were before you wont be effe

6、ctiveGeneral-Corning(L4)Why Risk Tolerance is important If all we serve is risk mitigation,we are running a kitchen that never puts anything on the menuGeneral-Corning(L4)Soup or Salad?The two sides of Risk ToleranceRisk MitigationIf all we serve is risk mitigation,we are running a kitchen that neve