“We try to instil the culture of resilience and defensiveness beyond the technology stack.”

Cyber Security and Cyber Risk professionals face two very diverse challenges: on the one hand, motivating IT teams to change routines and adopt security practices, and on the other hand communicating a clear picture of the organization’s Cyber Risk posture to Senior Executives. The panel agreed that it was critical to integrate compliance results from assessing IT controls or vulnerability scan data for better 360-degree visibility. Panellists also advised that organizations should leverage ISO or NIST to simplify the discussion with stakeholders and make it straightforward to get to an organization-wide risk posture.

Key discussion points:

• Aligning business goals and IT/Cyber goals
• Gaining full visibility into IT assets, processes and actors, across all units
• Not stopping just at frameworks, but having a proactive risk management strategy
• Prioritizing risks and focusing on your critical assets

Expert Panelists:

Komitas Stepanyan, CIO and Deputy Director, Central Bank of Armenia

Helen Yu, Founder and Chief Executive Officer, Tigon Advisory Corp.

Cynthia Cox, Security Compliance and Strategy Leader, Marqeta Inc

Moderated by Thomas Ludwig, Vice President - Customer Success and Quality, MetricStream