How to Talk to Management About Cybersecurity and Risk

Episode 3 of the Dark Reading Cybersecurity Crash Course

As an IT professional, you’ve developed some ideas on how cyber attackers might compromise your enterprise data, and how you can defend against them. Now you have another challenge: how to present those threats and strategies to business managers who know nothing about IT security technology. How can you convey the current state of your IT security posture to top management? How can you make a business case for investing in additional IT security resources? 

In this informative session, you’ll get advice and recommendations on how to present security issues to your management – in language they can understand.

On Demand
1h 00min

Attend this webinar and you'll learn:

  • Which metrics to share with managers and which not to
  • How to reframe conversations about "IT security threats" into conversations about "business risks"   
  • What terms, tools and techniques you need to get the budget you need and the authority to spend it

Featured Speaker

  • John   Pironti
    John Pironti
    IP Architects

    John P. Pironti is the President of IP Architects, LLC. He has designed and implemented enterprise wide electronic business solutions, information security and risk management strategy and programs, enterprise resiliency capabilities, and threat and vulnerability management solutions for key customers in a range of industries, including financial services, energy, government, hospitality, aerospace, healthcare, pharmaceuticals, media and entertainment, and information technology on a global scale. John has a number of industry certifications including Certified in the Governance of Enterprise IT (CGEIT), Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), Certified Information Systems Security Professional (CISSP), Certified in Risk and Information System Control (CRISC), Information Systems Security Architecture professional and (ISSAP) and Information Systems Security Management Professional (ISSMP). He is also a published author and writer, highly quoted and often interviewed by global media, and a award winning frequent speaker on electronic business and information security and risk management topics at domestic and international industry conferences.