Recorded: February 13 | 2020 Attend
GRC is neither a project nor a technology, but a corporate objective for improving governance through more-effective compliance and a better understanding of the impact of risk on business performance. GRC can vary dramatically depending on the businesses vertical market, and even further complexity can be found from one business unit to another. This complexity drives the need for different, highly specialized tools, which raises a huge set of cost, integration, and management issues.
To address this challenge, many businesses are opting for an automated GRC (eGRC) solution, which aims to resolve the challenges associated with scattered and disconnected operational security processes through the centralization of data, alignment of processes and workflows, and clear enterprise-level visibility with trend and analysis metrics and reporting. The benefits of Automating GRC are substantial when businesses have a mature GRC program in place. Attend this expert CPE webinar to gain insights on:
- Understanding the GRC Business Drivers.
- Defining Your GRC Strategy.
- Developing a GRC Roadmap that is aligned with the Mission, Value, and Strategic Agenda of Your Business.
- Getting Leadership Support and Enabling Cross-Departmental Collaboration.
Moderator
Colin Whittaker, PCI Industry Alumni, Founder and Director Informed Risk Decisions Ltd. Colin has been instrumental in driving forward a risk and security strategy for payments over the last 15 years since he retired from the military in 2001, and took up the role of Head of Security at APACS. At APACS he started the move to confront the reality of the threat to payment systems and the implications this has on any risk and security decisions taken. He was instrumental in helping the industry coordinate the response to the wave of e-banking attacks that started in 2004, and the development of a card based customer authentication strategy to protect e-banking channels. Whilst there he was one of the first people to be elected to the PCI SSC Board of Advisors where he was always keen to try and promote the differences in threat between Europe and UK, and the US. Since that election he hasn't moved far from the PCI domain. In 2010 he moved to Visa Europe and became the Vice President Payment System Risk with responsibilities for designing and operating the Visa Europe PCI compliance strategy for European merchants and service providers. This included contributing to the strategic development of the Council through representing Visa Europe at the PCI SSC's Executive Committee, as well as the technical development of the standards. He was also responsible for coordinating Visa Europe's approach to cardholder data breaches in Europe. Colin was responsible for the changes to the Visa Europe Compliance strategy through the creation of the Technology Innovation Programme which gave the very first PCI DSS compliance relief for EMV chip accepting merchants. He has now built on this experience by learning first-hand what PCI DSS means to merchants through his experience at Carlson Wagonlit Travel. Applying PCI DSS to probably one of the most complex industry verticals and one where it is almost impossible to spend money as a customer without using credit cards! He is now working as a freelance consultant helping retailers and service providers solve their cyber security and payment security compliance dilemmas.
Matt Kunkel is the CEO and co-founder of LogicGate, Inc. Mr. Kunkel has over a decade of experience delivering cutting edge technology solutions to solve complex business issues related to audits, investigations, risk management, regulatory compliance, and process automation. He is an industry leading expert in solving organizations governance, risk, and compliance issues using technology. He regularly consults and leads large teams that solve client needs in the areas of Financial Services, Healthcare, Insurance, Pharmaceuticals, Medical Device Manufacturing, and Energy.
James Rice is the Vice President of Customer Solutions at Greenlight Technologies. I have over seventeen years of client consulting and enterprise software experience, focusing on Integrated Risk Management capabilities for Financial, Regulatory and Security business processes. Most recently he has been working with organizations across industries on Governance, Risk and Compliance, Information Security and Data Privacy, and IT General Controls. James’ background includes a mix of strategy and implementation engagements at large, global clients around the world. Prior to joining Greenlight, he worked at both PricewaterhouseCoopers and Accenture doing Security, Risk & Compliance consulting. James earned his BBA from the University of Texas majoring in Management Information Systems with a minor in Computer Science.
Allan Liska is a senior security architect at Recorded Future. Allan has more than 15 years of experience in information security and has worked as both a security practitioner and an ethical hacker. Through his work at Symantec, iSIGHT Partners, FireEye, and Recorded Future, Allan has helped countless organizations improve their security posture using more effective intelligence. He is the author of “The Practice of Network Security, Building an Intelligence-Led Security Program,” and “Securing NTP: A Quickstart Guide,” and the co-author of “DNS Security: Defending the Domain Name System and Ransomware: Defending Against Digital Extortion.”
Scott Bridgen serves as the Offering Manager at OneTrust GRC — part of the largest and most widely used technology platform to operationalize third-party risk, security, and privacy management. In his role, Bridgen is responsible for driving the development and delivery OneTrust's integrated risk management product as well as driving the refinement of the toolset and offerings. He works with clients to deliver a complete, measured view of their business' risk portfolio while connecting departments, fast-tracking audits, and implementing dynamic controls to support governance, risk and compliance. Bridgen takes a customer-based approach to product development and derives the majority of his backlog from customer feedback and direction.