Setting Common Language When Talking to Leadership About IT Risks presented at SecureWorldCharlotte 2020

by Rick Doten,

Summary : To be successful in presenting IT security to senior leadership, it’s important it is done in way that they can ingest, process, and understand; because ultimately, IT risk management decisions are business decisions, not technical decisions.This session will discuss approaches to present to individual business decision makers, understanding that each as his/her own goals, incentives, currency, and biases. We will discuss 3 simple concepts to be defined and agreed on by senior leadership to move forward: what does success look like?; what does failure look like?; how do we measure these? This session will be very conversational and interactive, so bring questions!