Session ID: 
120

Building Business Narratives to Sell Security to the Board

10:00am - 11:00am Wednesday, February 13
Orlando - Orange County Convention Center
W320

Description

With massive cyberattacks such as WannaCry and NotPetya hitting the healthcare industry in the last few years, cybersecurity continues to be an area of significant vulnerability for provider organizations. While a CIO or CISO may appropriately understand the cybersecurity risks facing the organization and the resources needed to maintain an ongoing security program, selling cybersecurity at the board level continues to be a challenge. Presenters will outline the current cybersecurity landscape and the business impact of recent data breaches to illustrate that cybersecurity is a business issue, not just an information and technology issue. The speakers will also draw from their 20+ years of experience to elaborate on the narrative strategies attendees can leverage to translate cybersecurity risk into business risks that board members can relate to.

Learning Objectives: 

  • Assess the current cybersecurity threat landscape and business impact of recent data breaches to educate the board and senior leadership of the business risks associated with security programs
  • Compare how "selling" cybersecurity to the board is not as effective as using storytelling to educate board members on the threats and get them involved in establishing good information security governance
  • Evaluate real-world examples of how a CIO effectively leveraged key strategies to build awareness and support for security projects, initiatives and culture with her organization
  • Outline key strategies security leaders can utilize to gain resources to develop a strong security program and establish a relationship with the board
  • Illustrate how security leaders can leverage metrics/data, peer comparison and third party validation to showcase the business risk associated with security programs to senior business leaders

Speaker(s): 

Senior Vice President and CIO,
Cook Children's Health Care System...
Executive Vice President, Strategic Innovation,
CynergisTek

Audience: 

CIO, CTO
CISO/CSO
CMIO/CMIO

Level: 

Intermediate