Jan 4, 2018
A key component of a successful data security strategy is centered on people; specifically navigating and managing cultural expectations and the organization’s philosophy on data management. Expert health system CISO, Nick Falcone, shares first-hand experiences in establishing a formal risk management program with anecdotes and strategies on working within the organization’s culture.
Show Notes:
- 1:40 Strategic Planning
- 3:00 Organizational Goals around people
- 4:00 Project Frameworks to use in Risk Management
- 6:50 Making Security understandable for C-Level
- 9:15 Communicating to the team: What to do vs. How to do
- 12:30 Pitfall Metrics to Start a Program
- 14:45 Maturity views with Metrics
- 17:00 Diversify Risk with Groups
- 19:00 Compliance vs. Risk Management
- 21:00 On-task Strategy vs. Crisis of the Day
- 22:50 Key take-aways for episode
- 23:30 Next episode introduction