LASCON 2018 has ended
Back To Schedule
Thursday, October 25 • 3:00pm - 4:00pm
How to Assess the Maturity of your Security Program

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Feedback form is now closed.
We are continuously improving our security programs and controls – to protect against new threats, keep up with evolving compliance requirements, or to just get better at what we are doing. But how can we quantify the impact of these efforts on the overall maturity of our organization's security posture?
The ability to express maturity in a consistent fashion helps to communicate the value of our initiatives to executives and provide an objective way to visualize gaps and identify priorities on the path to a robust security program.
In this talk, we will discuss the challenges and importance of measuring the maturity of a security program, available solutions, and then dive into how our team combined NIST's Cybersecurity Framework with a defined way of expressing maturity to solve this problem.
Attendees will leave with ideas on how to assess and measure the maturity of a security program, using methods beyond check-the-box compliance frameworks.

avatar for David Ochel

David Ochel

Director of Security and Compliance, AllClear ID
David Ochel (@lostgravity) is a security & privacy technologist with extensive experience in pragmatic information risk and compliance management. David serves as the Director of Security and Compliance at AllClear ID.

Thursday October 25, 2018 3:00pm - 4:00pm CDT
Under Armour Room