charlotte issa summit - building resiliency into your ... · }reputation: the coherent framework...
TRANSCRIPT
![Page 1: Charlotte ISSA Summit - Building Resiliency into Your ... · }Reputation: The coherent framework built by resilience supports the organization in understanding and acting on the interdependency](https://reader034.vdocuments.net/reader034/viewer/2022042300/5ecb72fe0746fe0230439eeb/html5/thumbnails/1.jpg)
9/6/18 CONFIDENTIAL 1
Building Resiliency into Your Security
Program
CharlotteISSASummitMay10,2018
![Page 2: Charlotte ISSA Summit - Building Resiliency into Your ... · }Reputation: The coherent framework built by resilience supports the organization in understanding and acting on the interdependency](https://reader034.vdocuments.net/reader034/viewer/2022042300/5ecb72fe0746fe0230439eeb/html5/thumbnails/2.jpg)
9/6/18 CONFIDENTIAL 2
Introduction
Gary SheehanAsCSOofASMGi,Garyhasresponsibilityforallsecuritymattersoftheorganizationandisresponsibleformanagingthedesign,deliveryandimplementationofGRCcustomersolutions.
linkedin.com/in/garyjsheehan/
![Page 3: Charlotte ISSA Summit - Building Resiliency into Your ... · }Reputation: The coherent framework built by resilience supports the organization in understanding and acting on the interdependency](https://reader034.vdocuments.net/reader034/viewer/2022042300/5ecb72fe0746fe0230439eeb/html5/thumbnails/3.jpg)
Abstract
Areyousatisfiedwithyoursecurityprogramanditseffectiveness,orisittimetotakeanewapproachtoprotectingyourorganizationandyourorganization’sassets?
9/6/18 CONFIDENTIAL 3
![Page 4: Charlotte ISSA Summit - Building Resiliency into Your ... · }Reputation: The coherent framework built by resilience supports the organization in understanding and acting on the interdependency](https://reader034.vdocuments.net/reader034/viewer/2022042300/5ecb72fe0746fe0230439eeb/html5/thumbnails/4.jpg)
Agenda, Overview and Objectives}UnderstandingResiliency}UsingResiliencyConceptsforSecurityandSecurityConceptsforResiliency} People} Process} Technology
}WrapUp
9/6/18 CONFIDENTIAL 4
Governance,RiskandCompliancearecriticalcomponentstoEnterpriseResiliency.
![Page 5: Charlotte ISSA Summit - Building Resiliency into Your ... · }Reputation: The coherent framework built by resilience supports the organization in understanding and acting on the interdependency](https://reader034.vdocuments.net/reader034/viewer/2022042300/5ecb72fe0746fe0230439eeb/html5/thumbnails/5.jpg)
Understanding Enterprise Resiliency
Enterprise ResiliencyResiliencyistheabilityofanorganizationtoanticipate,preparefor,andrespondandadapttoincrementalorchronicchangeandsuddendisruptions,aswellasminoreverydayeventsandacuteshocksinordertosurviveandprosper.
} Resiliencyisastrategicobjectiveintendedtohelpanorganizationtosurviveandprosper.
} Resiliencyisagoal,notafixedactivityorstate.} Resiliencyisarelative,dynamicconceptand,assuch,anorganizationcanonlybemoreorlessresilient.
} Resiliencyisnotjustdisasterrecoveryandbusinesscontingencyplanning.
9/6/18 CONFIDENTIAL 5
![Page 6: Charlotte ISSA Summit - Building Resiliency into Your ... · }Reputation: The coherent framework built by resilience supports the organization in understanding and acting on the interdependency](https://reader034.vdocuments.net/reader034/viewer/2022042300/5ecb72fe0746fe0230439eeb/html5/thumbnails/6.jpg)
Understanding Enterprise Resiliency
Enterprise | Organization | Company | Business}Notnecessarilyinterchangeable,butareoftenusedtomeanthesamething.
}Canrepresentahierarchywithinacompany.}Beawareofthesubtledifferenceinmeaningsbetweenorganizations.
9/6/18 CONFIDENTIAL 6
![Page 7: Charlotte ISSA Summit - Building Resiliency into Your ... · }Reputation: The coherent framework built by resilience supports the organization in understanding and acting on the interdependency](https://reader034.vdocuments.net/reader034/viewer/2022042300/5ecb72fe0746fe0230439eeb/html5/thumbnails/7.jpg)
Understanding Enterprise Resiliency
EnterpriseResiliencyistheabilityanorganizationhastoquicklyadapttodisruptionswhilemaintainingcontinuousbusinessoperationsandsafeguardingpeople,assetsandoverallbrandequity.
Governance,RiskandCompliancearecriticalcomponentstoEnterpriseResiliency.
9/6/18 CONFIDENTIAL 7
![Page 8: Charlotte ISSA Summit - Building Resiliency into Your ... · }Reputation: The coherent framework built by resilience supports the organization in understanding and acting on the interdependency](https://reader034.vdocuments.net/reader034/viewer/2022042300/5ecb72fe0746fe0230439eeb/html5/thumbnails/8.jpg)
Understanding Enterprise Resiliency
Security Program ResiliencyYouknowyourSecurityProgramisresilientwhen:
} Itcananticipate,preparefor,andrespondandadapttoincrementalorchronicchangeandsuddendisruptionsintheorganization
} Itcananticipate,preparefor,andrespondandadapttoincrementalorchronicchangesinyourorganization’sbusiness,securityandcompliancerequirements.
} Itcananticipate,preparefor,andrespondandadapttoincrementalorchronicchangesinthethreats,threatagentsandthreattrendsthataffectyourorganization.
9/6/18 CONFIDENTIAL 8
![Page 9: Charlotte ISSA Summit - Building Resiliency into Your ... · }Reputation: The coherent framework built by resilience supports the organization in understanding and acting on the interdependency](https://reader034.vdocuments.net/reader034/viewer/2022042300/5ecb72fe0746fe0230439eeb/html5/thumbnails/9.jpg)
Understanding Enterprise Resiliency
Benefits / Challenges
9/6/18 CONFIDENTIAL 9
Each organization comes to its own decisions on
these issues according to the amount and type of
risk it is willing to pursue or retain, and the amount
it is willing to invest in resilience.
![Page 10: Charlotte ISSA Summit - Building Resiliency into Your ... · }Reputation: The coherent framework built by resilience supports the organization in understanding and acting on the interdependency](https://reader034.vdocuments.net/reader034/viewer/2022042300/5ecb72fe0746fe0230439eeb/html5/thumbnails/10.jpg)
Understanding Enterprise Resiliency
Benefits of Resiliency}Competitiveness: Thebehaviorsthatanorganizationdevelopsaspartofaresilientculturecanalsohelptobuildinnovationandcommonvaluesandvision,anddevelopanabilitytoanticipateandadapttochangeandevolvethebusinessmodel.
}Coherence: Resiliencebothrequiresandallowsorganizationalsilostobecomemoreintegratedandinteroperable.
}EfficiencyandEffectiveness:Workingwithinacoherentandintegratedframeworkhastime- andcost-savingimplications.
9/6/18 CONFIDENTIAL 10
![Page 11: Charlotte ISSA Summit - Building Resiliency into Your ... · }Reputation: The coherent framework built by resilience supports the organization in understanding and acting on the interdependency](https://reader034.vdocuments.net/reader034/viewer/2022042300/5ecb72fe0746fe0230439eeb/html5/thumbnails/11.jpg)
Understanding Enterprise Resiliency
Benefits of Resiliency (continued)}Reputation: Thecoherentframeworkbuiltbyresiliencesupportstheorganizationinunderstandingandactingontheinterdependencyofbrand,trustandreputation,therebymanagingandenhancingitsreputation.
}Societal/communityResilience: Resiliencycanalsogiveassurancetootherinterestedparties,suchasregulators,thirdparties,government,customers,partnersandshareholders.
9/6/18 CONFIDENTIAL 11
![Page 12: Charlotte ISSA Summit - Building Resiliency into Your ... · }Reputation: The coherent framework built by resilience supports the organization in understanding and acting on the interdependency](https://reader034.vdocuments.net/reader034/viewer/2022042300/5ecb72fe0746fe0230439eeb/html5/thumbnails/12.jpg)
Understanding Enterprise Resiliency
Challenges}Understandingwhentotakeaction.}Resolvingpotentialtensionsbetweencostandresilienceinbuildingjust-in-timeprocessesandjust-in-caseredundancy.
}Determininganappropriatetrade-offbetweencontrollingcostsandachievinggreaterresilience.
} Identifyingwhentoembracenewvaluesratherthanpersistingwithexistingbehaviors.
9/6/18 CONFIDENTIAL 12
![Page 13: Charlotte ISSA Summit - Building Resiliency into Your ... · }Reputation: The coherent framework built by resilience supports the organization in understanding and acting on the interdependency](https://reader034.vdocuments.net/reader034/viewer/2022042300/5ecb72fe0746fe0230439eeb/html5/thumbnails/13.jpg)
Understanding Enterprise Resiliency
Challenges (continued)}Resolvingconflictsbetweentheneedtokeepinformationfromcompetitorsandtheneedtoshareinformationforresiliencewhencollaboratingwithothers.
} Identifyinglegalandregulatoryconstraints,aswellasvoluntarycodesadoptedbydifferentsectors,thatcanlimitdesirableresilienceactions.
9/6/18 CONFIDENTIAL 13
Each organization comes to its own decisions on these issues according to the amount and type of risk it is willing to pursue
or retain, and the amount it is willing to invest in resilience.
![Page 14: Charlotte ISSA Summit - Building Resiliency into Your ... · }Reputation: The coherent framework built by resilience supports the organization in understanding and acting on the interdependency](https://reader034.vdocuments.net/reader034/viewer/2022042300/5ecb72fe0746fe0230439eeb/html5/thumbnails/14.jpg)
RESILIENCYThe New Model For Security
![Page 15: Charlotte ISSA Summit - Building Resiliency into Your ... · }Reputation: The coherent framework built by resilience supports the organization in understanding and acting on the interdependency](https://reader034.vdocuments.net/reader034/viewer/2022042300/5ecb72fe0746fe0230439eeb/html5/thumbnails/15.jpg)
Resiliency – The New Model For Security
BASEDONFRAMEWORKSAframeworkisanextensiblestructurefordocumentingandimplementingasetofconcepts,processes,methods,technologies,proceduresandculturalchangesnecessaryforacompleteproduct.
Byaligningtheframeworkobjectivestoenterprisestrategies,theframeworkhelpstokeepthefocusonachievingthegoalsoftheenterprise.
9/6/18 CONFIDENTIAL 15
Provides:Consistency
StandardizationMeasurement
Efficiencies
![Page 16: Charlotte ISSA Summit - Building Resiliency into Your ... · }Reputation: The coherent framework built by resilience supports the organization in understanding and acting on the interdependency](https://reader034.vdocuments.net/reader034/viewer/2022042300/5ecb72fe0746fe0230439eeb/html5/thumbnails/16.jpg)
Resiliency – The New Model For Security
9/6/18 CONFIDENTIAL 16
PROCESS FUNCTION/TECHNOLOGY
PEOPLE
![Page 17: Charlotte ISSA Summit - Building Resiliency into Your ... · }Reputation: The coherent framework built by resilience supports the organization in understanding and acting on the interdependency](https://reader034.vdocuments.net/reader034/viewer/2022042300/5ecb72fe0746fe0230439eeb/html5/thumbnails/17.jpg)
Resiliency – The New Model For Security
9/6/18 CONFIDENTIAL 17
BS65000 ISONIST
Team/Leadership
PROCESS FUNCTION/TECHNOLOGY
PEOPLE
![Page 18: Charlotte ISSA Summit - Building Resiliency into Your ... · }Reputation: The coherent framework built by resilience supports the organization in understanding and acting on the interdependency](https://reader034.vdocuments.net/reader034/viewer/2022042300/5ecb72fe0746fe0230439eeb/html5/thumbnails/18.jpg)
Resiliency – The New Model For Security
Thismodelwillprovide:}Clarity}Commitment}Alignment}Collaboration}Standardization}Measurement
9/6/18 CONFIDENTIAL 18
Thismodelrequires:}CulturalChange}Commitment}Accountability}Leadership}Participation}Support
![Page 19: Charlotte ISSA Summit - Building Resiliency into Your ... · }Reputation: The coherent framework built by resilience supports the organization in understanding and acting on the interdependency](https://reader034.vdocuments.net/reader034/viewer/2022042300/5ecb72fe0746fe0230439eeb/html5/thumbnails/19.jpg)
9/6/18 CONFIDENTIAL 19
Resiliency – The New Model For Security
EnterpriseResiliency GRC
WORKFLOWS
![Page 20: Charlotte ISSA Summit - Building Resiliency into Your ... · }Reputation: The coherent framework built by resilience supports the organization in understanding and acting on the interdependency](https://reader034.vdocuments.net/reader034/viewer/2022042300/5ecb72fe0746fe0230439eeb/html5/thumbnails/20.jpg)
9/6/18 CONFIDENTIAL 20
Understanding Enterprise Resiliency
EnterpriseStrategy
EnterpriseMissionandVision
BusinessGoalsandObjectives
BusinessToolsandCriticalProcesses
Department’sGoalsandObjectives
Department’sToolsandCriticalProcesses
YourToolsandCriticalAssets
You
Are You Informed,
Alignedand
Engaged?
![Page 21: Charlotte ISSA Summit - Building Resiliency into Your ... · }Reputation: The coherent framework built by resilience supports the organization in understanding and acting on the interdependency](https://reader034.vdocuments.net/reader034/viewer/2022042300/5ecb72fe0746fe0230439eeb/html5/thumbnails/21.jpg)
Resiliency – The New Model For Security
9/6/18 CONFIDENTIAL 21
BS65000 ISONIST
Team/Leadership
PROCESS TECHNOLOGY
PEOPLE
![Page 22: Charlotte ISSA Summit - Building Resiliency into Your ... · }Reputation: The coherent framework built by resilience supports the organization in understanding and acting on the interdependency](https://reader034.vdocuments.net/reader034/viewer/2022042300/5ecb72fe0746fe0230439eeb/html5/thumbnails/22.jpg)
BS 65000:2014
BS65000:2014givesguidanceonbuildingenterpriseresilienceby:
}Clarifyingthenatureandscope.} Identifyingtheprincipalcomponentsofresilience.
} Identifyingandrecommendinggoodpractice.
9/6/18 CONFIDENTIAL 22
![Page 23: Charlotte ISSA Summit - Building Resiliency into Your ... · }Reputation: The coherent framework built by resilience supports the organization in understanding and acting on the interdependency](https://reader034.vdocuments.net/reader034/viewer/2022042300/5ecb72fe0746fe0230439eeb/html5/thumbnails/23.jpg)
9/6/18 CONFIDENTIAL 23
BS 65000:2014Resiliencerequirestheabilitytomakegooddecisionsinformedbyanunderstandingofwhattheorganizationstandsforandwhereitistryingtogo,theorganization’senvironment,whatmatterstotheorganizationandwhatresourcesithasatitsdisposal.TheBritishStandards
Institute- 2014
Actions necessary to make the
organization more resilient.
![Page 24: Charlotte ISSA Summit - Building Resiliency into Your ... · }Reputation: The coherent framework built by resilience supports the organization in understanding and acting on the interdependency](https://reader034.vdocuments.net/reader034/viewer/2022042300/5ecb72fe0746fe0230439eeb/html5/thumbnails/24.jpg)
BS 65000:2014
Building a Foundation for ResiliencyThefundamentalattributesdefinetheattitudesthatshapedecisionsandactions,andultimatelyunderpinresiliencyare:
} GovernanceandAccountability} Thesystemsofrules,structuresandprocessesthatdrivecoherentdecisionmakingwithinacceptableparametersofcost,riskandspeedcontributetoresilience.
} LeadershipandCulture} Staffshouldbeappropriatelyempoweredbyacultureoftrust,opennessandinnovation.
} CommonVisionandPurpose} Shouldberecognizedandsharedthroughouttheorganization.
9/6/18 CONFIDENTIAL 24
![Page 25: Charlotte ISSA Summit - Building Resiliency into Your ... · }Reputation: The coherent framework built by resilience supports the organization in understanding and acting on the interdependency](https://reader034.vdocuments.net/reader034/viewer/2022042300/5ecb72fe0746fe0230439eeb/html5/thumbnails/25.jpg)
BS 65000:2014
Building ResiliencyResiliencyrequirestheabilitytomakegooddecisionsinformedbyanunderstandingofwhattheenterprisestandsforandwhereitistryingtogo,thebusinessenvironment,whatmatterstotheenterpriseandwhatresourcesithasatitsdisposal.}Actionsinclude:
} Beinformed} Setdirection} Bringcoherence} Developadaptivecapacity} Strengthentheorganization} Validateandreview
9/6/18 CONFIDENTIAL 25
![Page 26: Charlotte ISSA Summit - Building Resiliency into Your ... · }Reputation: The coherent framework built by resilience supports the organization in understanding and acting on the interdependency](https://reader034.vdocuments.net/reader034/viewer/2022042300/5ecb72fe0746fe0230439eeb/html5/thumbnails/26.jpg)
Resiliency – The New Model For Security
9/6/18 CONFIDENTIAL 26
BS65000 ISONIST
Team/Leadership
PROCESS TECHNOLOGY
PEOPLE
![Page 27: Charlotte ISSA Summit - Building Resiliency into Your ... · }Reputation: The coherent framework built by resilience supports the organization in understanding and acting on the interdependency](https://reader034.vdocuments.net/reader034/viewer/2022042300/5ecb72fe0746fe0230439eeb/html5/thumbnails/27.jpg)
Security Frameworks - ISO 27x
}Thestandard"establishedguidelinesandgeneralprinciplesforinitiating,implementing,maintaining,andimprovinginformationsecuritymanagementwithinanorganization“.
}Theactualcontrolslistedinthestandardareintendedtoaddressthespecificrequirementsidentifiedviaaformalriskassessment.
}Thestandardisalsointendedtoprovideaguideforthedevelopmentoforganizationalsecuritystandardsandeffectivesecuritymanagementpracticesandtohelpbuildconfidenceininter-organizationalactivities.
9/6/18 CONFIDENTIAL 27
![Page 28: Charlotte ISSA Summit - Building Resiliency into Your ... · }Reputation: The coherent framework built by resilience supports the organization in understanding and acting on the interdependency](https://reader034.vdocuments.net/reader034/viewer/2022042300/5ecb72fe0746fe0230439eeb/html5/thumbnails/28.jpg)
Security Frameworks - NIST
International Harmonization and Context}TheFramework,createdthroughcollaborationbetweenindustryandgovernment,consistsofstandards,guidelines,andpracticestopromotetheprotectionofcriticalinfrastructure.
}Theprioritized,flexible,repeatable,andcost-effectiveapproachoftheFrameworkhelpsownersandoperatorsofcriticalinfrastructuretomanagecybersecurity-relatedrisk.
9/6/18 CONFIDENTIAL 28
![Page 29: Charlotte ISSA Summit - Building Resiliency into Your ... · }Reputation: The coherent framework built by resilience supports the organization in understanding and acting on the interdependency](https://reader034.vdocuments.net/reader034/viewer/2022042300/5ecb72fe0746fe0230439eeb/html5/thumbnails/29.jpg)
Security Frameworks- NIST
InFebruary2013,PresidentObamaissuedExecutiveOrder(EO)13636,ImprovingCriticalInfrastructureCybersecurity,inFebruary2013.ItdirectedNISTtoworkwithstakeholderstodevelopavoluntaryframework– basedonexistingstandards,guidelines,andpractices- forreducingcybersecurityrisks.
9/6/18 CONFIDENTIAL 29
“Thecyberthreattocriticalinfrastructurecontinuestogrowandrepresentsoneofthemostseriousnationalsecuritychallengeswemustconfront.ThenationalandeconomicsecurityoftheUnitedStatesdependsonthereliablefunctioningoftheNation'scriticalinfrastructureinthefaceofsuchthreats”~SectionIoftheExecutiveorder~
![Page 30: Charlotte ISSA Summit - Building Resiliency into Your ... · }Reputation: The coherent framework built by resilience supports the organization in understanding and acting on the interdependency](https://reader034.vdocuments.net/reader034/viewer/2022042300/5ecb72fe0746fe0230439eeb/html5/thumbnails/30.jpg)
Resiliency – The New Model For Security
9/6/18 CONFIDENTIAL 30
BS65000 ISONIST
Team/Leadership
PROCESS TECHNOLOGY
PEOPLE
![Page 31: Charlotte ISSA Summit - Building Resiliency into Your ... · }Reputation: The coherent framework built by resilience supports the organization in understanding and acting on the interdependency](https://reader034.vdocuments.net/reader034/viewer/2022042300/5ecb72fe0746fe0230439eeb/html5/thumbnails/31.jpg)
7.0 - Building a Team for Resiliency
![Page 32: Charlotte ISSA Summit - Building Resiliency into Your ... · }Reputation: The coherent framework built by resilience supports the organization in understanding and acting on the interdependency](https://reader034.vdocuments.net/reader034/viewer/2022042300/5ecb72fe0746fe0230439eeb/html5/thumbnails/32.jpg)
7.0 - Building a Team for Resiliency
}ACHIEVINGTRUST
• Trustisknowingthatwhenateammemberdoespushyou,they’redoingitbecausetheycareabouttheteam
• Goodintentions- noreasontobeprotectiveorcarefularoundthegroup
• Takerisksinofferingfeedbackandassistance• Appreciateandtapintooneanother’sskillsandexperiences• Focustimeandenergyonimportantissues,notpolitics
![Page 33: Charlotte ISSA Summit - Building Resiliency into Your ... · }Reputation: The coherent framework built by resilience supports the organization in understanding and acting on the interdependency](https://reader034.vdocuments.net/reader034/viewer/2022042300/5ecb72fe0746fe0230439eeb/html5/thumbnails/33.jpg)
7.0 - Building a Team for Resiliency
}MASTERINGCONFLICT
• Thedesiretopreserveartificialharmonystiflestheoccurrenceofproductiveideologicalconflict
• Greatteamsdonotholdbackwithoneanother.Theyareunafraidtoairtheirdirtylaundry.Theyadmittheirmistakes,theirweaknesses,andtheirconcernswithoutfearofreprisal
• Havelively,interestingmeetings• Extractandexploittheideasofallteammembers• Solverealproblemsquickly
![Page 34: Charlotte ISSA Summit - Building Resiliency into Your ... · }Reputation: The coherent framework built by resilience supports the organization in understanding and acting on the interdependency](https://reader034.vdocuments.net/reader034/viewer/2022042300/5ecb72fe0746fe0230439eeb/html5/thumbnails/34.jpg)
7.0 - Building a Team for Resiliency
}ACHIEVINGCOMMITMENT
• Thelackofclarityorbuy-inpreventsteammembersfrommakingdecisionstheywillstickto
• Organizationsneedtrustandconflictsopeoplecanfullycommit• Mostreasonablepeoplejustneedtobeheardandtoknowthattheirinput
wasconsideredandrespondedto• Createsclarityarounddirectionandpriorities• Alignstheentireteamaroundcommonobjectives• Developsanabilitytolearnfrommistakes• Leadersmustcommunicatetheresultstotheirteams
![Page 35: Charlotte ISSA Summit - Building Resiliency into Your ... · }Reputation: The coherent framework built by resilience supports the organization in understanding and acting on the interdependency](https://reader034.vdocuments.net/reader034/viewer/2022042300/5ecb72fe0746fe0230439eeb/html5/thumbnails/35.jpg)
7.0 - Building a Team for Resiliency
}ACCOUNTABILITY
• Everyteammemberisresponsibleforholdingtheteamaccountable• AppliestoALLLEVELSoftheorganization• AccountabilitytoTrust,ConflictandCommit• Helpspoorperformersimprove• Identifiespotentialproblemsquickly• Establishesrespectamongteammembers• Avoidsexcessivebureaucracy
![Page 36: Charlotte ISSA Summit - Building Resiliency into Your ... · }Reputation: The coherent framework built by resilience supports the organization in understanding and acting on the interdependency](https://reader034.vdocuments.net/reader034/viewer/2022042300/5ecb72fe0746fe0230439eeb/html5/thumbnails/36.jpg)
7.0 - Building a Team for Resiliency
}RESULTS
• Thepursuitcollectivesuccessmustbe#1• Clarity- Makeresultssoclearthatnoonewouldevenconsiderdoingsomethingpurelytoenhancehisorherindividualstatusorego
• Retainsachievement-orientedemployees• Minimizesindividualisticbehavior• Enjoyssuccessandsuffersfailureasateam
![Page 37: Charlotte ISSA Summit - Building Resiliency into Your ... · }Reputation: The coherent framework built by resilience supports the organization in understanding and acting on the interdependency](https://reader034.vdocuments.net/reader034/viewer/2022042300/5ecb72fe0746fe0230439eeb/html5/thumbnails/37.jpg)
Wrap Up
![Page 38: Charlotte ISSA Summit - Building Resiliency into Your ... · }Reputation: The coherent framework built by resilience supports the organization in understanding and acting on the interdependency](https://reader034.vdocuments.net/reader034/viewer/2022042300/5ecb72fe0746fe0230439eeb/html5/thumbnails/38.jpg)
9/6/18 CONFIDENTIAL 38
Resiliency/Securitymustbeembeddedthroughouttheorganization,cuttingacrosssilos,organizationalstructuresandhierarchies,withoperationalactivitiesalignedtostrategicpriorities.
![Page 39: Charlotte ISSA Summit - Building Resiliency into Your ... · }Reputation: The coherent framework built by resilience supports the organization in understanding and acting on the interdependency](https://reader034.vdocuments.net/reader034/viewer/2022042300/5ecb72fe0746fe0230439eeb/html5/thumbnails/39.jpg)
9/6/18 CONFIDENTIAL 39
Buildingaresilientworkgroup,department,businessunit,organization,companyororganizationishardwork- forEVERYONE.
![Page 40: Charlotte ISSA Summit - Building Resiliency into Your ... · }Reputation: The coherent framework built by resilience supports the organization in understanding and acting on the interdependency](https://reader034.vdocuments.net/reader034/viewer/2022042300/5ecb72fe0746fe0230439eeb/html5/thumbnails/40.jpg)
Resilience/Securityisinherentlyrelative,andnoorganization,person,networkorsystemcanbeabsolutelyresilientorsecure,astheyexperienceconstantchangeandoperateundervaryingdegreesofuncertaintyandrisk.
9/6/18 CONFIDENTIAL 40
![Page 41: Charlotte ISSA Summit - Building Resiliency into Your ... · }Reputation: The coherent framework built by resilience supports the organization in understanding and acting on the interdependency](https://reader034.vdocuments.net/reader034/viewer/2022042300/5ecb72fe0746fe0230439eeb/html5/thumbnails/41.jpg)
9/6/18 CONFIDENTIAL 41
}Everyoneinanorganizationplaysaroleinresiliency/security.
}Youmustunderstandyourbusinessandtheroleyouplayinhelpingyourorganizationachieveresiliency/security.
}Allemployeesmustbeactiveparticipantsintheresiliencyplan/securityplan.
}Don’tbethemissingpiece!