Registration required: December 12, 2024, 7:00pm – 9:00pm Pacific Time
Session One: The Frugal CISO: Running a strong Cyber Security on a Budget
Session Detail: As cybersecurity threats grow and businesses face tighter budgets, the role of the CISO has evolved. The challenge today is how to build a robust cybersecurity program that effectively mitigates risks while staying within financial constraints. This session on “The Frugal CISO” addresses how security leaders can maximize their resources, making every dollar count while maintaining a resilient security posture. Attendees will explore practical strategies for running a strong cybersecurity program on a budget, including how to prioritize spending on critical assets, leverage existing tools, and adopt open-source solutions. The session will highlight ways to automate processes, reduce operational inefficiencies, and outsource intelligently through Managed Security Services (MSS). Additionally, the discussion will focus on the importance of aligning cybersecurity efforts with business growth strategies, ensuring that security investments not only protect assets but also support business goals. Key tactics include optimizing cybersecurity budgets by focusing on the most impactful areas, automating where possible to save time and reduce manual efforts, and utilizing free or low-cost tools without compromising on protection.
The session also covers how to leverage training and awareness programs to mitigate the human element in cyber risks, which contributes to more than 50% of breaches. Attendees will learn how to: Prioritize spending based on critical business assets and operational risks using frameworks like NIST and CIS Controls. Maximize ROI from existing tools and processes by reducing redundancies and ensuring each tool’s effectiveness. Automate security tasks such as log analysis, patch management, and incident response with budget-friendly tools. Outsource strategically to take advantage of MSS for threat monitoring, incident response, and compliance at a lower cost. Master vendor negotiations to secure better deals and flexible pricing for security products. This session is ideal for CISOs and security leaders looking to enhance their cybersecurity posture under constrained budgets, providing practical insights on maintaining resilience without breaking the bank.
Abstract: This session explores how CISOs can maximize limited budgets while maintaining a strong security posture. Key takeaways include: prioritizing spending on critical assets, leveraging existing tools, using free/open-source solutions, automating processes to reduce costs, and outsourcing smartly to optimize security operations.
Cyber Security & GRC Leader
https://www.linkedin.com/in/athangaraju
Anand is a seasoned Product leader with over 20 years of experience in the Financial Services industry. Throughout his career, he has collaborated closely with CIOs, CISOs, and CDOs, gaining valuable insight into various functions such as Sales & Operations, Business Development, Data & Analytics, Risk & Compliance, Cyber & Privacy, and Product Management.
Holding multiple roles simultaneously, Anand is a true multitasker, donning hats as a Virtual CISO, Startup Mentor, Board Observer, Public Speaker, and Angel Investor within the vibrant Bay Area innovation ecosystem. His expertise spans across Financial Technology, Enterprise Software, Cybersecurity, and Management Consulting, allowing him to provide invaluable guidance in advisory and industry roles
An avid speaker at roundtables and conferences, Anand shares his knowledge on board governance, cyber, FinTech, and the ever-evolving banking regulatory landscape. As an emerging manager and Angel investor, he focuses on nurturing startups in the realms ofCybersecurity, AI/ML, Fintech, and Climate tech.
Session Two: ISC2 East Bay Year in Review – The Year We Had and The Year Ahead – Thanks and Acknowledgements to our Board and Sponsors
ISC2 East Bay Chapter is in its eleventh year of operation, providing a cybersecurity and GRC community with friendship, education, challenge, and opportunities to grow in our careers.
There are several benefits to being a member of an ISC2 Chapter. Not only will you gain a sense of fellowship with colleagues in your profession, but you will be able to network and exchange knowledge with fellow ISC2 credential holders and other information security professionals in your local area.
