CISOs are from Mars
CIOs are from Venus
[email protected] @bcaplin
http://about.me/barrycaplin
http://securityandcoffee.blogspot.com
Barry CaplinChief Information Security
OfficialFairview Health Services
http://about.me/barrycaplin
securityandcoffee.blogspot.com
@bcaplin
3
Different worlds
The Sword of Anti-Virus
4
The Light Saber of Endpoint Protection
5
The Shield of Next-Gen Firewall
6
Next Gen
Firewall
The Scepter of IT Budget
7
The Cloud of…
8
Different worlds – reporting structure
CISO reports to CIO
• Security overruled?
CISO reports to {CRO, CEO, CxO}
• Visibility into IT?
• Budget?
9
Different languages
10
• Nation States
• Hacktivists
Threats
• Malicious hackers
• Malware
11
• Over-time; over-budget
• Outsourcing
Confidentiality
• Protection of Data
• Minimum Necessary
12
What happens in the boardroom, stays in the boardroom
• Coherence of financial data
Integrity
• Data in correlates with data out
• Chain of custody of log and forensic data
13
• Transparency
• Coherence of financial data
Risk
• Probability/Impact of Threats
• Data Breach
14
• Not meeting business needs
• Data Breach
IO
15
CIO
C
onsidering
nterim
pportunities
OSCI
16
CISOareers
veroon
Meet in the middle
18
Unite Against theCommon Enemy
19
Key Opportunities
• Mobile/BYOD/Cloud
• “V”OI
• Management – Vendor; Configuration; Incident; Risk
• Lifecycle/SDLC
• Keep the auditors happy
• Keep the board happy
21
Good Things are sure to follow
22
http://about.me/barrycaplin
securityandcoffee.blogspot.com
@bcaplin
Recommended
