Developing an Effective Information Security Risk Management

Presented by

Linda Kostic; Director, ERM at E*Trade Financial

About this talk

Many organizations are learning that in today's environment, an information security risk management program has become a key component of an Enterprise Risk Management program. This awareness is continuing to grow as more highly publicized identity theft incidents and other security vulnerabilities occur, and as laws and regulations emerge at the State, Federal and International level. While developing an effective and efficient information risk management program is at the forefront of most executive’s minds, it can be a challenge to implement a value added framework. The objective is to design a process that can be executed, measured, controlled and reported on, and at the same time be effective, efficient, and transparent. In this session, you will learn key concepts for implementing and maintaining an information security risk management program and identify an approach that works for your firm. You will also learn to identify many examples of challenges being faced and ways to work through those challenges, including key success factors, while supporting the enterprise strategic objectives.

Related topics:

More from this channel

Upcoming talks (1)
On-demand talks (1370)
Subscribers (42911)
Increasing expectations for good data governance, effective risk management and complex demands for legislative and regulatory compliance are presenting a growing challenge for organizations of all sizes. Tune in to live and recorded presentations by respected luminaries in the fields of governance, risk and compliance for insights on how to implement successful GRC strategies and processes for your organization.