In today's enterprise, two things hold true: the business is going digital and the risk landscape is multiplying. Navigating this creates friction from the boardroom throughout the organization as teams scramble to secure data, enable innovation and manage risk. We heard this sentiment time and again from attendees at RSA® Charge 2019.
We spoke to RSA customers, partners and thought leaders and asked them for advice on how to manage the challenges of digital risk. They also shared stories "from the trenches" and provided insight on strategies designed for mitigating potential business impact.
Listen to the array of discussions below in a series of podcasts hosted by ITSPmagazine.
Hear from Industry Practitioners and RSA Customers:
A conversation with Tim Belardi, Director, GRC Technology & Third-Party Risk Management, Highmark Health
The benefits of technology innovation in healthcare is immeasurable, even life-changing for some. With innovation, though, comes risk. If something goes awry with medical technology, the consequence could be dire.
ITSPmagazine talked with Tim Belardi about exploring the need for trust and assurance throughout the entire healthcare ecosystem, including third-party vendors and suppliers that are core to the healthcare system.
A conversation with Brian Drotleff, Director of GRC & Risk Assessments, KeyBank
Operationalizing security and risk doesn't need to be tedious or discouraging. If done correctly, it can be advantageous and help the business build and deliver new, innovative services. This is precisely the philosophy that Brian Drotleff and his team at KeyBank have adopted to approach and tackle the development of their security and risk management programs.
One primary goal at KeyBank is to make the banking experience as enjoyable as possible for its customers. To do this, they look at technological advancements - embracing digital transformation - that can power applications and services with features that balance security with customer satisfaction and excitement.
Ultimately, Brian Drotleff and his team are working hard to become the team of "yes, securely" as opposed to being the department of "no."
Hear from RSA Thought Leaders:
A conversation with Rohit Ghai, President, RSA
Digital technologies drive significant transformations in business, government and society. Data fuels this transformation. Because of this, almost every company is a technology company; even when the main business or product has nothing to do with technology. The velocity of innovation can be mind-boggling—and with it comes an equal amount of mind-boggling risk.
The challenge for most companies is to identify that risk. Even more challenging is reducing exposure and mitigating the anticipated exposure and risk before the tech-enabled business processes and infrastructure are implemented.
To address this challenge head-on, Rohit Ghai tells ITSPmagazine that companies need to learn to fight fire with fire—to battle risk with risk.
A conversation with Holly Rollo, CMO & SVP Digital Transformation, RSA and Tracy Edwards, MBE, British Sailor
What does sailing have to do with risk management, you ask? The parallels are many. Listen to ITSPmagazine's discussion with Holly Rollo and Tracy Edwards, a Whitbread Round the World Race winner, to hear stories of navigation, aggravation, competition, diversity, inclusion and communication.
A conversation with Dr. Zulfikar Ramzan, Chief Technology Officer, RSA
Ask 20 people what "business risk" is, and you'll likely end up with 20 different responses.
Business risk is about the likelihood something bad could happen paired with the impact it can have on company activity and performance. There's a small, yet precise, distinction between risk and threats, or even vulnerabilities, says Dr. Ramzan. In this conversation, you'll get a much clearer picture of what matters to the business and its operations when you think of risk in these terms.
A conversation with Jim Ducharme, VP, Identity Products, RSA
Identity is not what it used to be. One can argue that our habits, our rules and the way we interact with each other hasn't changed as much — or maybe we haven't adapted, yet, to the way technology has created a new social reality that brings new conveniences as well as new risks.
Maybe what we need is a new paradigm, a new way to look at what privacy and identity mean in this new cyber society.
In this discussion with Jim Ducharme, they discuss the history, current state and the future of identity, passwords and overall access control in the digital world.
A conversation with Steve Schlarman, Director, RSA and Kelly White, Founder & CEO, RiskRecon
When it comes to your partner ecosystem, do you know who poses a risk to your business? Many take steps to evaluate the security posture of their vendors during the onboarding process, but fail to update it over time.
That's where RSA and partner, RiskRecon, come into play: together, they allow organizations to streamline the onboarding risk assessment process for their vendors while also providing a continuous security assessment that parallels how internal security teams assess, manage, and mitigate risk.
# # #
Sean Martin and Marco Ciappelli are co-founders of ITSPmagazine, a leading industry publication that examines the intersection of technology, cybersecurity and society. Follow them at @ITSPmagazine or @sean_martin and @MarcoCiappelli.
Join the #TalkingDigitalRisk conversation on Twitter and social media by following @RSAsecurity