For June’s East Coast CIO Forum, Truision will feature Rubi Aronashvili, Founder and Chief Executive Officer at CYE who will be discussing “United States: Current target for cyber security attacks – overview, root cause analysis and how to deal with this…” Wednesday, June 16, 2021 at 12:00pm EST.
Agenda:
- Overview of the latest events, summary of incidents that we managed, root cause analysis and the corresponding gaps
- Risk quantification, risk translation and fact-based approach for mitigation and remediation of the gaps
- Key lessons learned and actionable recommendations
Thoughts and approaches to consider:
Fact based approach to Cybersecurity
CISOs need to stop relying on estimations, guestimations and speculations when it comes to their organizations’ cybersecurity and instead embrace a fact-based, data-driven and mathematical approach. They need to understand their organization’s vulnerabilities, the probability of those vulnerabilities being exploited and the potential business impact if such an attack were to be executed.
Armed with facts, data and mathematics, CISOs will be able to optimize their cybersecurity investments by allocating their resources to the places that matter most while simultaneously being able to justify their investments and allocation of resources to their CEOs and boards of directors.
From Technical Risk to Business Risk
Decision makers have begun to understand that cybersecurity is no longer only the IT issue it was once considered to be, but is a business issue that is crucial for the company, its assets, employees, valuation and bottom line.
Companies have been investing significant amounts of money in cybersecurity, often not quite understanding where their money is going, how well it is being spent or whether the investment will really protect their business critical assets.
Companies need to be able to identify where their vulnerabilities lie, which business critical assets they want to protect most and the attack routes that lead to the business’s crown jewels. Cyber attacks have become too sophisticated to patch up or clean up after the fact. Companies need to proactively take steps to ensure that cybersecurity is a top business priority — not only a technical one.
Cybersecurity landscape and CISO role
CISOs are being flooded with an endless barrage of security information. They need to constantly question their sources of information, their vendors’ security postures, where to invest their resources, how to optimize their investments and which vulnerabilities pose the biggest threats to business continuity.
They need to be able to:
- Reassess Their Preconceived Notions
- Work With Data, Facts And Numbers
- Look At Their Organization In A Holistic Way
- Implement Multi Layered Security Protection
- Understand That Compliance Is Not Enough
Reuven Aronashvili’s Bio
Reuven Aronashvili is the Founder and Chief Executive Officer at CYE. He is a serial cyber security entrepreneur, having acquired deep knowledge and passion for cyber security while serving in an elite cyber security unit of the IDF. Reuven is a national-level cyber security expert, with expertise in designing and developing innovative security solutions for governments and multi-national organizations around the globe. He brings CYE an impressive track record for conducting high-profile cyber security improvement programs across a wide range of industries. Reuven serves a trusted advisor for executives in leading Fortune 500 companies and was certified by the US Department of Homeland Security as an international industrial control systems cyber security expert. Reuven holds an M.Sc. in computer science, accomplished as part of an excellence program during his military service.
