Wed Apr 1 CEST (over 1 year ago)
In your timezone (EDT): Wed Apr 1 11:00am - Wed Apr 1 11:00am
New Cap Event Center
3 Quai de Grenelle, 75015 Paris, France
In one sense, cybersecurity is mature: information security has been recognised as a core business issue for at least 20 years, and regulations, policies, procedures and solutions have been developed throughout those decades.
But in another sense, it can feel as though we are still at the very beginning.
Recent fines by the CNIL in France on, for example, SERGIC and Active Assurances (largely under GDPR Article 32) were triggered by basic failures to implement appropriate security measures to keep customer data safe. GDPR disclosure requirements and fines seem to indicate that in digitalising their businesses, companies are still struggling to secure core data assets.
So why is this?
Is cybersecurity risk exceptional? Is it material? Is it so different to other types of operational risk faced by businesses that it must be analysed, resourced and managed differently?
Or do the kinds of quantitative risk management techniques used to analyse long-tail, 'Black Swan' risks elsewhere in businesses apply equally to cybersecurity?
And what about the traditional silos that have separated data privacy, data security, fraud, KYC/AML, business continuity, and physical security? As digital transformation continues at pace, do these traditional demarcations still make sense or do they represent unnecessary segregation?
In leading firms, convergence of some or all of these silos has begun. And for companies without those resources, is the Cloud and moving as much technology and data as possible off-premises the answer?
So is GDPR finally forcing firms to address these core questions of risk assessment, risk management and technology management? Or will cybersecurity continue in its present form?
Global Security Coordinator, Orange
Director of Information Security Systems, Club Med
CISO, BNP Paribas
Chargé de Threat Intelligence, Crédit Agricole
Cybersecurity Expert, Octopus Cybercrime Community, Council of Europe
Head of Fraud Prevention, HSBC
Information Security and Systems Director, Alstom
Head of Compliance, La Française des Jeux
• Pulse Secure
EDUCATION SEMINAR SPONSORS:
• Manage Engine