Bridging visibility gaps at the CISO office

What visibility gaps every CISO must fill or Does CISO really need to have visibility to their operations?

CISOs are held increasingly accountable by both regulators and management. Yet, more often than not, they are flying blind. Unlike in finance, sales or marketing, there are no mature data and metrics programs they can turn to, to comprehensively track and measure security performance. Manually-generated performance reports are resource-intensive and static. There is so much data available in cybersecurity but it gets bottlenecked in operations, as it needs to be analyzed and translated for management purposes. For data to be meaningful for management, a perspective on trends, accuracy, and actionable insights are required.

In this session we will discuss the gaps security leaders face today in order to gain full visibility into their security operations, as well as best practices and lessons from industry leaders to build the right infrastructure for visibility.

Speakers:

Ivan Milenkovic - CISO, Webhelp

Ivan Milenkovic is an accomplished InfoSec leader with over 20 years of experience in effectively addressing cyber and information security challenges. He is a pragmatic professional who is highly attuned to business needs, evolving risk landscapes, and complex technological environments. Ivan excels at building robust infosec programs that bring together people, processes, and technology components to improve security maturity and strengthen defences.Ivan's expertise is well-established, having worked across the United States, Europe, Africa, Asia, and Australia. For the past three years, he has held the position of Group Chief Information Security Officer at Webhelp, a large multinational BPO that provides a wide range of services, including commercial assistance, technical support, sales consulting, analytics, technology, regulated & KYC, payment, digital content, enterprise, and healthcare services. Webhelp operates in 58 countries, with a workforce of over 140,000 people.Before joining Webhelp, Ivan's professional career was split between well-known MSSPs and cyber vendors.In addition to his impressive career achievements, it's worth mentioning that Ivan is also an occasional trainer on the S-CISO by SECO Institute program and an active member in several CISO groups and chapters. This highlights his expertise and ability to effectively train and mentor other information security professionals.

Christy Emma Peel - Director of attack surface management - major US retailer

Christy is a seasoned Information Security professional with over 15 years of industry experience. Emma's expertise in connecting business processes with security system designs has advised numerous cyber-security startups on their product and roadmaps. Currently, Emma serves as the Head of Attack Surface Management at a major retailer, where she leads the identification and management of all internal and external attack surfaces. Emma previously served as a Global Information Security Officer at a global life sciences organization, where she implemented tools, practices, and procedures to manage operational risks, strategized and maintained risk management systems, and assisted organizations in meeting regulatory requirements. Emma's proven success in implementing strong cybersecurity measures and ensuring compliance with data security regulations has established her as a leading expert in the field of IT security.

Shirley Salzman - CEO, SeeMetrics

Shirley Salzman brings a decade of experience in commercial leadership (Percepto, Contguard, and Logic Industries). Prior to her high-tech career, Shirley worked for global policy and strategy firms such as the German Marshall Fund of the U.S. and the Institute for Policy and Strategy at the Interdisciplinary Center, Herzliya, Israel. Shirley holds an MA with honors in International Security and Non-Proliferation from King’s College, London.

Hosted and panel moderator by: Alon Refaeli, CEO, CyberTogether A business execution leader in the areas of cyber security.Over 20 years of experience in cyber security, mobile security for law enforcement , enterprise governance and risk, cyber resilience, threat intelligence, cloud enablement, data security, identity management, CERT management, stake holders and vendor management. A trusted advisor to several governments and senior officials in Cyber Security technologies.Participated in complex enterprise transformation and capability enhancement including: Enterprise security strategy Next generation IoT security and mobile security Board engagement (presentations and reporting). Gap analysis for cloud security enablement (security technologies and third party compliance). CSO round table world wideBuild corporation between governments, corporates and enterprises, academia , R&D institutes – all in the area of Cyber Security for knowledge sharing and POC test bed infrastructure.Graduate the Israeli Defence Forces in elite communication unit.Background of studying computer systems analysis and cyber security studies.