Infosec Europe 2019: Expense in Depth – Managing Your Total Cost of Controls

Lacking backgrounds in finance and economics, many CISOs struggle to communicate the business value of maintaining a robust information security infrastructure to senior executives and members of the board.

Information risk and security practices are now recognized as integral components of corporate governance and accountability, yet the risk-adjusted costs of security investments are often poorly understood. Consequently, an organization’s Total Cost of Controls (TCC) will often increase rapidly without producing comparable improvements in risk management efficiency.

How can a CISO meet expectations for reducing risks while minimizing costs? How can these costs be accurately measured and assessed within the context of an organizations’ overall risk management strategy?

Register Here: Expense in Depth - Managing Your Total Cost of Controls

04 June 2019, 14:00 - 14:25

Speaker: John McClurg

In this informative and interactive session, attendees will be introduced to a TCC model that makes it possible to measure information security as a business function, balancing risks against costs to maximize value and efficiency. Session leader BlackBerry Cylance VP & Ambassador-At-Large John McClurg brings the unique perspectives of a seasoned security executive with a dozen years of career experience in finance-related positions.

McClurg will show how current approaches to information security are economically inefficient and why a TCC model is more cost-effective at managing digital risks. He’ll detail the key cost drivers, their budget and bottom line effects and how a TCC approach enables information security to be managed with maximum business efficiency, while minimizing risk exposure.

When the session concludes, attendees will be able to measure their organizations’ TCC, position TCC within the larger context of corporate governance, and justify information security investments in terms executives will find both engaging and persuasive, including:

  • Outline top 10 cost and risk drivers attendees should share with executives
  • Provide examples of communicating total cost and risk in the context of the business
  • Provide examples demonstrating how a company can manage risk and cost

Speaker:

About John McClurg

John McClurg is VP & Ambassador-At-Large at BlackBerry Cylance. He came to the company from Dell, where he served as its CSO, advancing responsibilities that included the strategic focus and tactical operations of Dell’s internal global security services, both physical and cyber. He was also charged with the advocacy of business resilience and general security prowess.

Before joining Dell, McClurg served at Honeywell International; Lucent Technologies/Bell Laboratories; and in the Federal Bureau of Investigation (FBI), where he held an assignment with the US Department of Energy (DOE) as a Branch Chief charged with establishing a Cyber-Counterintelligence program within the DOE’s newly created Office of Counterintelligence.

BlackBerry Cylance at InfoSecurity Europe 2019

Join BlackBerry Cylance at Infosecurity Europe!  We will be at Booth# H85 and a full list of our on-stand speaking sessions can be found here.