Governance & Risk Management

A Framework for Proving Security Control Effectiveness

Chris Strand of Carbon Black Outlines an Approach
Chris Strand, senior director, compliance strategy; security risk and compliance officer, Carbon Black

Organizations in all sectors need a framework for proving the effectiveness of security controls through the various stages of the threat lifecyle, says Chris Strand of Carbon Black.

See Also: Live Discussion | Securing Business Growth: The Road to 24/7 Threat Detection and Response

In a video interview at Information Security Media Group's recent Fraud & Breach Prevention Summit: Toronto, Strand discusses:

  • Steps in determining the stages of a threat;
  • Asset management in the cloud;
  • Building a more proactive approach to risk management.

Strand is senior director, compliance strategy, and security risk and compliance officer at Carbon Black. With more than 20 years of information technology and compliance experience, he oversees the development of enterprise network and application security solutions.

About the Author

Nick Holland

Nick Holland

Director, Banking and Payments

Holland, an experienced security analyst, has spent the last decade focusing on the intersection of digital banking, payments and security technologies. He has spoken at a variety of conferences and events, including Mobile World Congress, Money2020, Next Bank and SXSW, and has been quoted by The Wall Street Journal, CNN Money, MSNBC, NPR, Forbes, Fortune, BusinessWeek, Time Magazine, The Economist and the Financial Times. He holds an MSc degree in information systems management from the University of Stirling, Scotland.

Around the Network

Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing, you agree to our use of cookies.