This course aims to teach learners how to effectively communicate security risks to senior management and board members. The course covers topics such as understanding software vulnerabilities, risk accountability, presenting security information, communication skills, external risks, and discussing security with the board. The teaching method involves practical insights and guidance on how to articulate security concerns in a business context. This course is intended for technical staff, CISOs, security professionals, and anyone needing to communicate security risks to non-technical stakeholders.
Overview
Syllabus
Intro
My background
CISOs
Software
Vulnerability
Risk
Whos accountable
Fear 1 Brand damage
Fear 2 Corporate espionage
How to present security information
Expectations from the head of security
Communication skills
External risks
Talking to the board
NACD guidance
Risk and risk posture
Presenting security to the board
Speaking in numbers
What are your top concerns
Breaches that have happened to peers
Communicate risk posture
Customer data
Taught by
Web Summit
