Lacking backgrounds in finance and economics, many CISOs struggle to communicate the business value of maintaining a robust information security infrastructure to senior executives and members of the board.
Information risk and security practices are now recognized as integral components of corporate governance and accountability, yet the risk-adjusted costs of security investments are often poorly understood. Consequently, an organization’s Total Cost of Controls (TCC) will often increase rapidly without producing comparable improvements in risk management efficiency.
How can a CISO meet expectations for reducing risks while minimizing costs? How can these costs be accurately measured and assessed within the context of an organizations’ overall risk management strategy?
Register Here: Expense in Depth - Managing Your Total Cost of Controls
04 June 2019, 14:00 - 14:25
Speaker: John McClurg
In this informative and interactive session, attendees will be introduced to a TCC model that makes it possible to measure information security as a business function, balancing risks against costs to maximize value and efficiency. Session leader BlackBerry Cylance VP & Ambassador-At-Large John McClurg brings the unique perspectives of a seasoned security executive with a dozen years of career experience in finance-related positions.
McClurg will show how current approaches to information security are economically inefficient and why a TCC model is more cost-effective at managing digital risks. He’ll detail the key cost drivers, their budget and bottom line effects and how a TCC approach enables information security to be managed with maximum business efficiency, while minimizing risk exposure.
When the session concludes, attendees will be able to measure their organizations’ TCC, position TCC within the larger context of corporate governance, and justify information security investments in terms executives will find both engaging and persuasive, including:
- Outline top 10 cost and risk drivers attendees should share with executives
- Provide examples of communicating total cost and risk in the context of the business
- Provide examples demonstrating how a company can manage risk and cost
About John McClurg
John McClurg is VP & Ambassador-At-Large at BlackBerry Cylance. He came to the company from Dell, where he served as its CSO, advancing responsibilities that included the strategic focus and tactical operations of Dell’s internal global security services, both physical and cyber. He was also charged with the advocacy of business resilience and general security prowess.
Before joining Dell, McClurg served at Honeywell International; Lucent Technologies/Bell Laboratories; and in the Federal Bureau of Investigation (FBI), where he held an assignment with the US Department of Energy (DOE) as a Branch Chief charged with establishing a Cyber-Counterintelligence program within the DOE’s newly created Office of Counterintelligence.
BlackBerry Cylance at InfoSecurity Europe 2019
Join BlackBerry Cylance at Infosecurity Europe! We will be at Booth# H85 and a full list of our on-stand speaking sessions can be found here.
We will have in-booth activities, on stand presentations, even a giant buzzwire game where you can win wireless earbuds or a bluetooth speaker.
The following are parties and events we sponsor:
- Ignition “The Infosec MeetUP”, on the 4th and 5th June, at the Queens Head, 13 Brook Green, Hammersmith, London W6 7BL
- Meet & Greet with Paul Ogden, CISO, SSP Worldwide (BlackBerry Cylance & SecureLink customer), on the 5th June, 3.30pm-5pm, at the Queens Head, 13 Brook Green, Hammersmith, London W6 7BL
- CSI Breakfast Briefing with John McClurg on the 5th June, 8-10am. Full details here: https://www.csiltd.co.uk/events/infosec-breakfast-briefing/