A CISO’s Guide to Demystifying Cyber Risk for the Board

It’s no surprise that one of the most daunting challenges faced by CISOs is the task of persuading their organization to invest in security capabilities. Security experts often focus on very granular, technical details, while boards want ROI and risk quantified in dollars and cents. But in an era of increasing regulations, cost-cutting measures, and a surge in third-party cyber risk at the enterprise level, how can cybersecurity practitioners and CISOs better translate cyber risk into the language of their board and stakeholders? Join distinguished CISO and security leader, Jim Routh and Aleksandr Yampolskiy, CEO and Co-founder of SecurityScorecard, as they discuss strategies on how CISOs can: - Demonstrate ROI in cybersecurity, aligning priorities of the security organization to broader business goals - Identify KPIs that matter, including the benefits and pitfalls of security ratings - Understand your audience and speak the same language as the board, opting for the economics and storytelling over tech talk - Navigate the evolving cybersecurity landscape, including how the new SEC regulations and increased C-level personal liability will change the way CISOs communicate with the board About Jim Routh Jim Routh is a distinguished CISO and security leader with over 3 decades of experience at Fortune 500 companies, including American Express, Aetna, CVS Health, JPMorgan Chase, and MassMutual. He also serves as an Advisor and Board Member at multiple companies, including SecurityScorecard. About Aleksandr Yampolskiy Dr. Aleksandr Yampolskiy, Co-Founder and CEO of SecurityScorecard, is a globally recognized cybersecurity innovator, leader, and expert. Yampolskiy has served as CTO at BlogTalkRadio and was also CISO at Gilt Groupe, overseeing IT infrastructure security, fraud, application development, and PCI compliance.