Name
G6. Building a Security Strategy Without a Security Staff
Date & Time
Thursday, May 11, 2017, 2:00 PM - 3:00 PM
Andrew Hay
Description
Session Description:
 
Where do I start? Am I at risk of being targeted? How much should it cost? What is the ROI? What happens if I do it wrong? What do I do?!?! These are some of the questions that every small or medium (SMB) sized business owner is asking in the wake of some of the most prolific and highly publicized data security breaches in history. This session will present real world strategies to prepare for, mitigate, and respond to incidents posed by opportunistic attackers, malicious insiders, and targeted attackers - taking into account real-world constraints such as time, expertise, business continuity, and money.
 
 
Location Name
Room 702/704
Full Address
Colorado Convention Center
700 14th Street
Denver, CO 80202
United States
Category
Security Management
Learner Objectives
After completing this session, the learner will:
  • Understand how to prepare for, mitigate, and respond to incidents from a wide range of attackers
  • Have an easy to follow framework for building a security program without spending a fortune
  • Know how to ask for project funding by balancing security and business requirements
 
Speaker Bio(s)
Andrew Hay is the CISO at DataGravity where he is responsible for the development and delivery of the company 's comprehensive information security strategy. Prior to that, Andrew was the Director of Research at OpenDNS (acquired by Cisco) and was the Director of Applied Security Research and Chief Evangelist at CloudPassage.
Sorting Order
5