How To Build a 3 Year Cybersecurity Program

Presented by

Diana Kelley, Cybrize | Jason Hart, Rapid7 | Fraser Scott, IriusRisk

About this talk

When it comes to operational security, a forward-facing approach is essential. Having a high-level yet comprehensive cybersecurity strategy is a great way to understand your attack surface and navigate risk. But how can you plan long-term when incidents are taking attention every day and technology and attacks continue to evolve? Being forward facing means moving away from a reactive cybersecurity strategy towards a proactive plan. However, creating a 3-year plan is no easy feat. It takes continuous monitoring, agility, and the ability to plan for the unexpected. In this episode of The (Security) Balancing Act, Diana Kelley and guests will discuss: - The benefits of a long-term cybersecurity strategy - Key considerations when building out a program or strategy - Balancing immediate and urgent tasks with long-term planning - Getting Board by-in for strategic goals - How to monitor your strategy to ensure it remains effective - The first step to building your 3-year plan - And much more!

Related topics:

More from this channel

Upcoming talks (0)
On-demand talks (10)
Subscribers (624)
IriusRisk is the industry's leading threat modeling and secure design solution in Application Security. With enterprise clients including Fortune 500 banks, payments, and technology providers, it empowers security and development teams to ensure applications have security built-in from the start - using its powerful threat modeling platform. Whether teams are implementing threat modeling from scratch, or scaling up their existing operations, the IriusRisk approach results in improved speed-to-market, collaboration across security and development teams, and the avoidance of costly security flaws.