To be successful in presenting IT security to senior leadership, it's important it is done in ways that they can ingest, process, and understand; because ultimately, IT risk management decisions are business decisions, not technical decisions.
This session will discuss approaches to present to individual business decision makers, understanding that each has his/her own goals, incentives, currency, and biases. We will discuss three simple concepts to be defined and agreed upon by senior leadership to move forward:
1. What does success look like?
2. What does failure look like?
3. How do we measure these?
This session will be very conversational and interactive, so bring your questions!