As digital estates complexify, attack surfaces are multiplied and most organisations face the same challenge: How do we make sense of the data we have to protect ourselves from cyber threats?
- Data: How do you ensure the entire estate is truly covered? How do you deal with the proliferation of tools? How do you deal with assets in the Cloud? What to collect (event data vs. state data)? IT vs. OT vs. IoT: What to do with those layers?
- Metrics: How do you aggregate data into meaningful metrics? SOC, Management, both: Who owns and drives metrics? Could AI be a game-changer going forward in the exploitation of security data, or is it just hype (or incremental innovation)?
- Dashboards: Formats, audiences and frequencies? Is GRC still a relevant driver in the age of “when-not-if”? Is Management going back to more conventional reporting on progress against execution milestones? How much is this worth in terms of effort, in a context of limited resources? How do you make reporting as efficient as can be?
Presenter: Jean-Christophe Gaillard, Managing Director & Founder, Corix Partners & CIO WaterCooler Consultant