As security professionals growing in our roles, we face challenges in creating cost effective security for those we serve. At the individual contributor level, we face deadlines for solutions and analysis. At the manager level we face challenges in hiring qualified staff, prioritising work and building effective teams. As one moves to more senior roles, we determine and justify an accountability model to stakeholders outside security. This talk discusses the profession of security, in light of other similar professions. It then focuses on how we can grow our members and interface with non-security stakeholders through formal governance. The talk makes liberal use of real-world experiences, real stories of difficult choices, and real-world examples of organisations that have had governance success.
Robert Fritz brings 30 years of experience of security leadership to the individuals and organizations he works with. He served his country as a US Air Force officer, including assignments at Langley AFB and at the Pentagon, and has served as a leader in public and private companies ever since. At Hewlett-Packard, he led research and development of security technology. As an Executive Director at Morgan Stanley, he served as Canada CISO. He then served as Director of Cyber Security at Emera and at Irving Oil. His last 5 years have concentrated on board and executive level cyber security and privacy governance advice and reporting, as well as cyber security operations. Robert received his Bachelor’s in Computer Science at the US Air Force Academy, and his Master’s in Computer Science: Software Engineering, from Old Dominion University in Norfolk, VA. He serves his Atlantic Canada security community as a frequent speaker and as the Vice President of the Atlantic Canada Chapter of ISC2