THEME: Security Vital Signs

Pulse, blood pressure, and temperature: These are the critical factors for measuring human health; not something arbitrary like hair growth. Yet in the realm of information security, enterprises are often measuring the wrong things—not the appropriate enterprise “security vital signs”—or they aren’t measuring anything at all. This has to change.

In addition, the vitality of a patient is driven by healthful practices. The same is true for IT. Not only must we define and assess proper metrics, we have to apply right protection in the first place. The correct balance of vitamins and minerals includes doses of data security, endpoint protection, good decisions about perimeters, and controls that encompass the increasingly global organization. Only this broad view of the patient—and the security program—will bring vitality to information protection.

Attendees will learn:

• Managing with meaningful security metrics
• Healthful controls for the expanding global enterprise
• Realistic automation around governance, risk-management, and compliance
• How to balance competing data protection mechanisms
• The role of the (de)volving security perimeter

TOPICS:

Governance in the Global Enterprise: Bringing Together Manageable Metrics, Risk, and Compliance
Global enterprises must govern increasingly complex, diverse environments. Oftentimes, metrics aren’t adequately addressed. These sessions will bring clarity to the broad “Governance, Risk, and Compliance” management market in the context of improved metrics.
Topic Details

Data Security: More than the Reach of the Breach
Preventing data leakage and avoiding information breaches are important concerns. But data security must also involve e-discovery, information availability, and appropriate management of encryption to ensure the vitality of a secure enterprise.
Topic Details

Conducting Secure Business over Open Networks
For many enterprises the network perimeter firewall is unable to guarantee that only trusted users and traffic are present on the managed network. Network and security vendor attempts to shore up the network with Network Access Control solutions are incomplete and over-hyped. Burton Group experts and customers will propose an overlay architecture approach that shifts defenses to the endpoints, application systems, information systems, and data centres and challenge vendors to justify the value of NAC products and their strategy for building security intelligence into networks.
Topic Details

Featured Speakers

Rogue Securities Trader Nick Leeson

Rogue securities trader Nick Leeson will be presenting the limitations of governance, risk and compliance (GRC) with enterprise IT organizations. Leeson will draw from his role in bringing down the Barings Bank in 1995 to demonstrate the inadequacies of GRC regulations.

TOP

Featured Speakers