Brian Johnson, Sr. Director, Information Security at PayPal, discusses why it's critical for risk management to evolve beyond its traditional focus on compliance.
The recent COVID-19 pandemic has demonstrated that organizations must be more agile in the face of changing environmental concerns. As a result, old methods of annual, static risk assessments must therefore give way to CARTA-based approaches (Continuous Adaptive Risk Trust Assessment). Brian discusses considerations for transforming risk management into this new model, including:
Identifying and quantifying business risks, and how to look at technology and security risks as threats through a business lens
Applying business acumen and subjective context to evolve beyond a strict focus on quantitative measurements of technology risk
Ensuring continued focus on risk through processes and workflow changes versus a one time or infrequent and manual analysis of risks
Transforming an organization’s approach toward risk management starts with leadership. This on-demand webinar delivers the practical insights from an experienced security leader who’s done just that.