170 likes | 322 Views
Managing IT Risk in a digital Transformation AGE. Looking Around the Corner Khalid Majed Sr. Systems Engineer. @ RSAsecurity. Digital transformation. Digital Business. MODERNIZATION. Social Media. IoT. Cloud. Robotics. Digital Business. Hackers & Malware. MALICE. Social Media. IoT.
E N D
Managing IT Risk in a digital Transformation AGE Looking Around the Corner Khalid Majed Sr. Systems Engineer @RSAsecurity
Digital Business MODERNIZATION Social Media IoT Cloud Robotics
Digital Business Hackers & Malware MALICE Social Media IoT Phishing MODERNIZATION Cloud Vulnerabilities Robotics
Digital Business Corporate Governance GDPR Hackers & Malware MANDATES Social Media IoT Privacy Phishing MODERNIZATION MALICE Cloud Vulnerabilities Regulatory Change Robotics
SPEED MANDATES OF CHANGE & IMPACT MODERNIZATION MALICE
COMPLEXITY OF BUSINESS & THREATS
AMPLIFICATION OF OPPORTUNITY & RISKS
DIGITAL RISK is the greatest facet of risk that businesses face… HIGH DIGITAL RISK MEDIUM RISK LOW TRADITIONAL BUSINESS RISK DIGITALADOPTION
RISK …that requires a NEW PERSPECTIVE RISK DIGITALADOPTION RISK IT SECURITY RISK MANAGEMENT
ASSESSING, MONITORING AND RESPONDING TO NEW RISKS RESULTING FROM DIGITAL TRANSFORMATION AND CONTINUED ADOPTION OF DISRUPTIVE TECHNOLOGY DIGITAL RISK MANAGEMENT
CEO / BOARD ? ? ? DIGITAL RISK VISIBILITY INSIGHTS ACTIONS IT SECURITY RISK MANAGEMENT
Digital risk maturity • Optimized • Sharing and Collaborating Across Silos • Integrated business & risk context • Priorities and resources aligned with risk and business objectives • Managed • Platform Approach • Pervasive Visibility • Leverage Technology • Integrate Silos MATURITY • Siloed • Ad Hoc, Reactive • Trigger Events • Tactical POV INFORMATION TECHNOLOGY SECURITY OFFICE RISK MGT /COMPLIANCE OFFICE BOD / EXECS
RSA Risk Frameworks: Building Maturity in Four Key Areas MATURITY CYBER INCIDENT RISK 3RD PARTY RISK DATA PRIVACY RISK BUSINESS CONTINUITY RISK
MANAGE RISK & OPTIMIZE YOUR BUSINESS • TREAT • RISK IDENTIFY RISK • ASSESS • RISK MANAGE PROCESS AUTOMATION RISK MITIGATE CYBER ATTACK RISK MODERNIZE YOUR COMPLIANCE PROGRAM MANAGE DYNAMIC WORKFORCE RISK MANAGE THIRD PARTY RISK SECURE YOUR CLOUD TRANSFORMATION COORDINATE BUSINESS RESILIENCY EVOLVE DATA GOVERNANCE & PRIVACY DIGITAL RISK VISIBILITY INTEGRATED RISK MANAGEMENT INSIGHTS EVOLVED SIEM / ADVANCED THREAT DETECTION & RESPONSE SECURE, RISK-BASED ACCESS & AUTHENTICATION ACTIONS OMNI-CHANNEL FRAUD PREVENTION ADVANCED RISK AND CYBERSECURITY SERVICES IT SECURITY RISK MANAGEMENT