Name
C6. Math is Hard: Compliance to Continuous Risk Management
Track
Audit, Risk & Compliance
Date
Wednesday, May 9, 2018
Time
2:00 PM - 3:00 PM
Description
Session Description:
Moving from a compliance mindset to a culture of risk management requires a progressive shift toward a secure, integrated, and continuously monitored environment. Sandia’s implementation of a risk based approach provides organization-wide awareness through the collection, correlation, and analysis of organizational data. Participants will walk through a use case demonstrating planning and implementation of a robust risk management process, while avoiding key cultural and communication pitfalls.
Learner Objectives
After completing this session, learners will be able to:
- Design and implement a strategic risk management framework
- Identify methods for gaining management buy-in
- Integrate assessment, monitoring & risk processes
- Establish organization-appropriate risk framework
Speakers
Speaker Bio(s)
Max Blumenthal is a Senior Cyber Assurance Architect at Sandia National Laboratories in Albuquerque, New Mexico. Max earned his MS in Information Security Policy and Management from Carnegie Mellon University and his BA in International Studies from American University. He also holds CISSP and GMON certifications.
Christie Gross is a Senior Cyber Assurance Architect at Sandia National Laboratories in Albuquerque, NM. She is an adjunct faculty member at the University of New Mexico, where she also received an MS in Information Systems Assurance. She also holds a CISSP, and is an RSA Archer Certified Associate.
CEUs
1