As they face ever-mounting threats and risks due to their cyber presence, it is easy for organizations to feel uncertain in how they should approach such a task. A cyber presence is essential to a business’s success today, but threats leave companies very much unsure of what they should or can do to protect themselves. The proliferation of “solutions” today complicates their determination of what is a wise investment versus a waste of money. Fortunately, there are some concrete steps an organization can take to be confident that they are wisely investing in organizational resilience.
What Attendees Will Learn:
- How to define risk and resilience
- A “fit for your organization” approach to resilience
- Steps in a plan for achieving resilience
Who should attend:
- Risk managers
- IT practitioners
- Supply chain managers and analysts
- Business continuity planners and analysts
About the Speakers
Alexander Petrilli is a member of the technical staff of the Cybersecurity Risk & Resilience Directorate at Carnegie Mellon University’s Software Engineering Institute, whose mission includes advancing the state of the practice of cybersecurity evaluation. Currently, his work focuses on multiple projects within the Department of Energy, CESER, including working groups focused on the development of a cloud security profile and sector-specific guide to the Cybersecurity Performance Goals. Previous project work has included the performance and development of assessments, model development, and training the next generation of cyber assessors for the US Federal government. Alexander has 24 years of experience in system engineering, cybersecurity, and project management, supporting the defense industrial base and energy sectors. He is a CISSP with a BS in electrical engineering and an MBA.
Matthew Butkovic is the Technical Director of the Cyber Risk and Resilience Directorate in the CERT Division of the Carnegie Mellon University Software Engineering Institute (SEI). Butkovic performs critical infrastructure protection research and develops methods, tools, and techniques for evaluating capabilities and managing risk. This includes addressing the challenges of complex supply chains.
