Hi [[ session.user.profile.firstName ]]

What Does the Board Want From Your Next Cybersecurity Report

In this webinar, we will focus on How Can CISO's better engaged with senior leaders and board members on Cyber Security.

The expression " Never bring unsolved problems to the board" will be one of the topics that the experts will focus on, such as present a case study from Forrester regarding security to the board members and which date should be shared with them. 

Panelist will share their experience in the following topics:

1 - Metrics;
2 - SolarWinds;
3 - Benchmarking; 
4 - Risk quantification;
5 - How confident the board members are with reports and how data is important
;
6 - Impact of SolarWinds on the organization;
7 - The impact on the ecosystem;
8 - Which is the right communication to the board members; 
9 - How CISO’s managing the success of the program;
10 - Q&A
Recorded Apr 12 2021 58 mins
Your place is confirmed,
we'll send you email reminders
Presented by
Jeff Pollard, Forrester; Stephen Boyer, BitSight; Jake Olcott, BitSight
Presentation preview: What Does the Board Want From Your Next Cybersecurity Report

Network with like-minded attendees

  • [[ session.user.profile.displayName ]]
    Add a photo
    • [[ session.user.profile.displayName ]]
    • [[ session.user.profile.jobTitle ]]
    • [[ session.user.profile.companyName ]]
    • [[ userProfileTemplateHelper.getLocation(session.user.profile) ]]
  • [[ card.displayName ]]
    • [[ card.displayName ]]
    • [[ card.jobTitle ]]
    • [[ card.companyName ]]
    • [[ userProfileTemplateHelper.getLocation(card) ]]
  • Channel
  • Channel profile
  • Ransomware Webinar - What data tell us about the Risk? Jul 7 2021 11:00 pm UTC 50 mins
    Jacob Olcott | Vice President of Communications and Government Affairs for BitSight
    Looking back over recent years, ransomware has been an
ongoing security threat for companies around the world. Digital transformation has accelerated — largely due to the rise in remote work resulting from the COVID-19 pandemic. Unfortunately, as companies went increasingly digital, a new opportunity emerged for cyber criminals to maximize profit by exploiting this new reality. On this webinar we will cover the following topics:
    1 - How Ransomware Cases Increasing Dramatically;
    2 - How Ransomware Demands are Evolving?;
    3 - Bitsight approach;
    4 - Examples of Sectors;
    5 - Relationship Between Specific Vulnerabilities and Ransomware.
  • Why managing Third Party Risk is a Vital Part of Your Security Strategy Jun 23 2021 11:00 pm UTC 62 mins
    Nuno Almeida Silva - Consulting Engineer EMEA
    In this webinar we will discuss the following topics:

    1 - Why third-party risk management (TPRM) is necessary in today’s business world;
    2 - Why you should focus on vendor risk instead of vendor threats;
    3 - Why vendor assessments alone are not enough;
    4 - How to set up a best-in-class TPRM program;
  • The New Era of Digital Trust - Strategies to mitigate risk across the enterprise Recorded: Jun 17 2021 62 mins
    Chris Poulin - Director, Technology & Strategy/ Deputy CTO, BITSIGHT; Bruno Horta Soares - Leading Executive Advisor, IDC
    Ecosystems based on trust will ensure integrity in transactions among entities by proactively managing the collective risk of an ecosystem that spans partners, suppliers, customers, and internal employees. Trusted ecosystems deliver integrity by design in digital transactions between partner entities.  Building trusted ecosystems will depend on new “rules of engagement” and new procedures across functional domains such as marketing, finance, procurement, and even with customers. Given the need for speed and agility in the hyperconnected digital economy, organizations will also develop a “trust framework” that allows for assessing, managing, and measuring risk in the ecosystem. These frameworks will help accelerate the process of establishing relationships that drive trustworthiness within the ecosystem.

    The webinar will discuss some of the main topics related with IDC vision of the “trust framework” and how Bitsight solutions are helping enterprises around the world creating trust outcomes, by improving security performance measurement across the Organization and ecosystem.
    Some of the discussing topics:
    ● Understanding the ecosystem cyber risk in its entirety (meaning understanding risk should go beyond immediate partners and include partner’s partners).
    ● Understanding all the potential risks to the ecosystem and prioritize those risks based on the impact to the entire ecosystem (Vendor risk tiering);
    ● Understanding what measures Organizations are required to implement based on European regulations;
    ● Developing plans for continuous monitoring of risks and vulnerabilities and creating ways to measure the collective “security rating” of the entire ecosystem.
  • Improving and Speeding up the onBoarding Process Recorded: Jun 8 2021 57 mins
    Nuno Almeida Silva - Consulting Engineer EMEA
    Digital transformation is expanding your ecosystems - the business connections which are helping you scale, grow your business, and give you a leg up on the competition - everything is connected!
    However along with this expansion is also the expansion of cyber threats - which continue to change and grow in numbers - 83% is now the new statistic of how many organizations have had a “risk incident” caused by a 3rd party - one thing to remember is because of 3rd party we are ALL part of that 83% - strong as your weakest link.

    What we’ve seen is a hyperfocus on cybersecurity and cyber risk - how many of you are being asked about cyber risk at the BoD level? Executive level? - they are starting to lean in as they are responsible for accepting and setting the risk appetite for the organization...

    In this webinar we will cover the improving and Speeding up the onBoarding Process. Some of the topics are the following:

    1 - Introductions;
    2 - Challenges on Assessing ThirdParty Risk and New Vendors;
    2.1 - Visibility
    2.2 - Scale
    2.3 - Engagement
    3 - Traditional methods, and scaling visibility;
    3.1 - Prioritize Resources
    3.2 - Increase Speed and Scale
    4 - Trust... but Verify;
    4.1 - Data Conversations
    4.2 - Collaborating
    4.3 - Building a Baseline
    5 - Oversight and Re-assessment;
    5.1 - Manage by exception
    5.2 - Planning and assessing Risk over time
    5.3 - Leverage, influence, and cross functional teams
    6 - Q&A
  • Reinventing Cyber Risk Quantification Recorded: May 25 2021 58 mins
    Scott West - Principal Product Marketing BitSight; Stephen Boyer - Founder & CTO BitSight; Yakir Golan - CEO Kovrr
    Being exposed to cyber risk is an inevitable part of doing business in today’s world. But when security leaders engage in conversations about cyber risk, they find themselves at a disadvantage. For many non-technical people, cyber risk is seen as complex and too often discussed in technical terms or through the lens of remediation plans for security incidents. While risk management professionals discuss business risk in terms of its impact on financial targets, cyber risk is all too often a misunderstood topic for the non-security crowd.

    Join us for this informative webinar featuring BitSight’s pioneering new product for financially quantifying cyber risk. In this session you will learn:

    1 - How a turnkey solution for financially quantifying your exposure to cyber risk saves you time and money;
    2 - How an on-demand offering allows you to incorporate financial quantification of cyber risk more often into your key business decisions;
    3 - How proven models and technologies built for the cyber insurance industry can give you the financial analysis you need to bring about a more universal understanding of cyber risk to your organization.
  • Financial Quantification for Enterprise Cyber Risk Recorded: May 18 2021 2 mins
    BitSight
    In order to bridge the gap between security and the business, you need a framework through which to assess your exposure to cyber risk and lead meaningful conversations on its business impact with the board and other stakeholders.
    That’s where Financial Quantification for Enterprise Cyber Risk comes in — empowering you to provide the necessary business context through data-driven metrics that indicate your organization’s security program performance over time.
  • Supply Chain Risk Management: 4th Parties and Beyond Recorded: May 11 2021 16 mins
    Vanessa Jankowski - Director of Product Management
    In this webinar we will talk about the following topics:
    1 - How 4th parties impact the risk environment;
    2 - Approaches to get a better handle on this challenging extension of third party risk management;
    3 - How Cybersecurity is playing a role in business and national risk;
    4 - DORA - Harmonizing thrid party risk management;
    5 - Establishing resilience with a zero-trust approach;
    6 - Board Visibility & Ongoing Monitoring;
    7 - Takeaways.
  • The Path to Confidence: BitSight for Third-Party Risk Management Recorded: May 5 2021 2 mins
    BitSight
    Organizations are investing in digital technologies to drive business into the future. This also means they’re increasingly reliant on third-party vendors for outsourced services and solutions— expanding their attack surface and introducing more risk. While these relationships must be monitored, many businesses are still doing nothing— or have just started implementing assessments — which still leaves the door wide open for a security incident to occur.
    Using BitSight for Third-Party Risk Management, you can:
    * Immediately see & understand the cyber risk across your supply chain.
    * Target your resources to achieve significant, measurable cyber risk reduction.
    * Work with third parties to quickly and collectively reduce cyber risk.
    Whether you are launching, growing or optimizing your third-party risk management approach, BitSight puts you on the path to having confidence — the confidence you need to make faster, more strategic cyber risk management decisions with the resources you have today.
    Learn more about BitSight for Third-Party Risk Management.
  • BitSight Security Ratings for Benchmarking Recorded: May 4 2021 2 mins
    BitSight
    BitSight Security Ratings for Benchmarking enable organizations to quantify their cyber risk, measure the impact of risk mitigation efforts, benchmark their performance against industry peers, and report security progress and results to Boards of Directors more clearly and effectively.
    Learn more at: https://www.bitsighttech.com/security-ratings-for-benchmarking
  • Manage Cyber Risk Recorded: May 3 2021 3 mins
    BitSight
    Learn how BitSight helps you to identify, manage and reduce cyber risk.
    Pioneering security ratings in 2011, BitSight provides trusted, time-tested and actionable security ratings that enable organizations to effectively measure cyber risk.
    With BitSight Security Ratings, companies can:
    * Monitor and benchmark their cybersecurity performance against industry peers and competitors
    * Build and strengthen their vendor risk management program
    * Report cybersecurity program effectiveness to the Board of Directors and executives
    * Leverage ratings to underwrite cyber insurance policies
    * Evaluate merger and acquisition activities
  • BitSight Security Ratings for Vendor Risk Management Recorded: May 3 2021 2 mins
    BitSight
    BitSight Security Ratings continuously monitor and quantify the cyber risk of third parties, enabling organizations to efficiently scale their vendor risk management programs. Security ratings can be instantly shared with critical third parties fostering more effective collaboration around security.
    Find out why thousands of users in leading organizations around the globe trust BitSight Security Ratings to help drive and scale their vendor risk management programs.
  • Financial Quantification for Enterprise Cyber Risk Recorded: Apr 22 2021 2 mins
    BitSight
    In order to bridge the gap between security and the business, you need a framework through which to assess your exposure to cyber risk and lead meaningful conversations on its business impact with the board and other stakeholders.
    That’s where Financial Quantification for Enterprise Cyber Risk comes in — empowering you to provide the necessary business context through data-driven metrics that indicate your organization’s security program performance over time.
  • Cracking the Code:Communicating Cybersecurity Performance to Boards & Executives Recorded: Apr 20 2021 39 mins
    Brian Mulligan – Director of Product Management, SPM BitSight; Scott West - Principal Product Marketing Manager BitSight;
    Cybersecurity is a fundamental business risk. As a CISO, you are often asked by C-Suite executives, Boards of Directors, regulators, and your customers to demonstrate a high level of cybersecurity performance. This can be challenging given the highly technical nature of security data and lack of technical expertise in your audience. This talk will discuss how to bring the necessary context for productive conversations.

    Topics include:
    • Is the level of cybersecurity performance appropriate for the business?
    • How does cybersecurity performance vary by business unit or geography?
    • Is there a high level of consistency in performance?
    • How do you communicate cyber risk in a language non-technical people will understand?
  • What Does the Board Want From Your Next Cybersecurity Report Recorded: Apr 12 2021 58 mins
    Jeff Pollard, Forrester; Stephen Boyer, BitSight; Jake Olcott, BitSight
    In this webinar, we will focus on How Can CISO's better engaged with senior leaders and board members on Cyber Security.

    The expression " Never bring unsolved problems to the board" will be one of the topics that the experts will focus on, such as present a case study from Forrester regarding security to the board members and which date should be shared with them. 

    Panelist will share their experience in the following topics:

    1 - Metrics;
    2 - SolarWinds;
    3 - Benchmarking; 
    4 - Risk quantification;
    5 - How confident the board members are with reports and how data is important
;
    6 - Impact of SolarWinds on the organization;
    7 - The impact on the ecosystem;
    8 - Which is the right communication to the board members; 
    9 - How CISO’s managing the success of the program;
    10 - Q&A
  • Response & Remediation best practices for Third Risk Management Program Recorded: Apr 5 2021 40 mins
    Amanda Ravanesi - Product Manager Bitsight; Hayley Combs - Customer Success Manager Bitsight; Tom Stitt - Product Marketing
    How to drive the efficiency of conversations with more level of engagement, and making the conversation more focused and align? In this webinar, we will demonstrate how can companies improve Third-party Risk through Collaboration and showcase the new capabilities to continue the collaboration workstream. We will end the session with some best practices for collaboration.

    AGENDA:
    1 - Improving Third-party Risk Throughout Collaboration
    1.1 - BitSight’s new remediation Workflow
    2- New Capabilities
    2.1 - Continuous and proactive collaboration workstream
    2.2 - Improvements on the platform to give the users the capabilities to support the continuous and proactive workstream?
    2.3 - New feature - Define Collaboration Outcomes with the EVA Reason
    2.4 - New feature - Align Conversations with Message & Items for Review
    2.5 - New feature - Collaborate and Document conclusions (Collaborate Outbox)
    3 - Best practices for collaboration
    3.1 - Foundation of the collaboration
    3.2 - Establish continuous and proactive collaborate workstream
  • Leveraging Your Cybersecurity Reputation EMEA Recorded: Mar 23 2021 44 mins
    Scott West - Product Mkt Manager BitSight;Tim Grieveson- CISO Aveva; James Arden - Third Party Security Lead Brewin Dolphin
    Two different perspectives about Cybersecurity. A vision inside and outside about Cyber Security Reputation Management
  • Third Party Risk: Tough Challenges and real world solutions Recorded: Mar 10 2021 56 mins
    Evan Tegethoff - Vice President of consulting Engineering at BitSight
    This workshop is a collection of information that BitSight has gathered from several workshops around America, APAC, and EMEA. It's a set of information for everyone in compliance and information that is developing a Third-Party Risk Management Program.

    In this session, we will explore topics, such as:
    1 - Third-Party Risk Management Program;
    2 - Process and Improvements;
    3 - Dashboards and Reporting;
    4 - Continuous Monitoring;
    5 - Communication and Remediation;
    6 - Risk Assessment;
    7 - Vendor Inventory and Tiers;
    8 - Frameworks, Policies and Processes;
    9 - Cross-Functional Workflow;
    10 - Governance and Program Sponsorship
  • How to Build a Proactive Security Program Leveraging Security Ratings Recorded: Feb 18 2021 61 mins
    Alfonso Hermosillo, Consulting Engineer, BitSight; Brandon Dunlap, Moderator
    As security budgets decrease and teams continue to adjust to the “new normal” operating environment, it’s become increasingly critical for security leaders to find ways to do more with less. In order to get the most out of your investments in security tools and protect your data, you need to rethink traditional methods of mitigating risk and automate wherever possible. Join BitSight and (ISC)2 on February 18, 2021 at 1:00pm GMT as we discuss tips and best practices on how to enrich the threat intelligence you’re already collecting to maximize your cybersecurity ROI and prevent a potentially damaging breach or incident. The webcast will also cover:
    · Building a successful Predictive Security Program leveraging Security Ratings
    · How to gain increased visibility and context into your growing attack surface
    · Identify and remediate any gaps in your existing cybersecurity controls
    · Automating your risk discovery and assessment processes
  • Why Managing Third Party Risk is a Vital Part of Your Security Strategy Recorded: Jan 7 2021 62 mins
    Nuno Almeida Silva, Senior Consulting Engineer, BitSight; Brandon Dunlap, Moderator
    Are you managing the risk posed by your third parties are a part of your overall security strategy? If not, creating a third-party risk management (TPRM) program should be at the top of your list for 2021\. Why? Because in an increasingly interconnected world, nation state and sophisticated cyber syndicates have realized that third party vendors are the easiest weak point in even the strongest cybersecurity programs, since organizations typically have very limited insight into the security performance of their vendors. Creating a program that gives you continuous visibility into the current security posture of your vendors is one of the easiest things you can do to dramatically increase the overall security of your organization. Join BitSight and (ISC)2 on January 7, 2021 at 1:00pm GMT for a discussion on third party risk management where we’ll examine:

    · Why third-party risk management is necessary in today’s business world
    · Why you should focus on vendor risk instead of vendor threats

    · How to set up a best-in-class TPRM program

    · Why vendor assessments alone are not enough
  • Understanding The Impact of the SolarWinds Breach on your Supply Chain Recorded: Dec 22 2020 22 mins
    Stephen Boyer, Co-Founder & CTO, BitSight
    As security and risk leaders search their supply chain to determine potential exposure to this incident, BitSight seeks to provide insight into key questions regarding the prevalence of Orion in the business ecosystem and to help organizations assess risk to their own supply chain. We analyzed more than 260,000 organizations across 24 sectors to determine the prevalence of Orion software by organization size, sector, and geographic location, finding:

    Orion is observed most frequently within the Technology sector and Government and among large organizations with more than 10,000 employees.
    At least 14% of Fortune 1000 companies are utilizing Orion.
    Orion is observed most frequently among companies headquartered in the U.S.
Find Out How Security Ratings can Reduce Your Company's Risk.
BitSight transforms how organizations manage cyber risk. The BitSight Security Ratings Platform applies sophisticated algorithms, producing daily security ratings that range from 250 to 900, to help organizations manage their own security performance; mitigate third party risk; underwrite cyber insurance policies; conduct financial diligence; and assess aggregate risk. With over 2,100 global customers and the largest ecosystem of users and information, BitSight is the Standard in Security Ratings.

Embed in website or blog

Successfully added emails: 0
Remove all
  • Title: What Does the Board Want From Your Next Cybersecurity Report
  • Live at: Apr 12 2021 1:00 pm
  • Presented by: Jeff Pollard, Forrester; Stephen Boyer, BitSight; Jake Olcott, BitSight
  • From:
Your email has been sent.
or close