Lee Edge Head Archer Business UK&I RSA Advanced Cyber Defence Summit London 30-April-2015 1
64% 8% 2014 Gartner CEO and Senior Executive Survey: 'Risk-On' Attitudes Will Accelerate Digital Business. 2
The Challenge Results Resource overload Rate of Change Compliance Lack of resources Lack of business context Risk Opportunity 64% 3,400+ >$100M 20 PERCENT 8% Reach 3
Risk Intelligence Results Transform Compliance Harness Risk Exploit Opportunity Reach 4
The Market Evolution IT Security IT Risk IT Compliance Corporate Compliance Enterprise Risk Audit Vendor Management Crisis Management Business Continuity Disaster Recovery GRC IT & Security Risk Management Enterprise & Operational Risk Management Regulatory & Corporate Compliance Management Audit Management Third Party Governance Business Resiliency 5
RSA Archer s Evolution Oriented around Faster key core Time GRC processes (policy, to Value risk, compliance, incident, etc.) BE the Flexibility to address Human immaturity of practices Interface Circa 2009 Enterprise Foster convergence Scale 2015 6
Building Enterprise Capabilities Identify & resolve security deficiencies Detect & respond to attacks Manage the lifecycle of 3 rd party relationships Track inherited risks Establish IT policies & standards Prepare for & recover from IT outages Identify & prepare business resumption strategies Manage crisis & communications Catalog & resolve operational incidents Establish business policies & standards Monitor performance Establish business policies & standards Implement and Monitor Controls Identify, assess & track emerging & operational risks Identify & meet regulatory obligations Implement and Monitor Controls Independently review & assure management actions We are moving to a world where risk management will become the primary source of competitive advantage 7
Your Internal Evolution To be successful, you must present a compelling picture to the business to get buy-in. It isn t rocket science but it is a challenge. Keys to Success Reduce Risk of Execution Foster culture of Adoption Take command of the journey 8
Reduce Risk of Execution Executives do not like Surprises A Digestible Strategy Understand your Audience 9
Foster Culture of Adoption Understand the power of Frustration Make it Personal Know where technology is an answer and where it isn t 10
Take Command of the Journey Keep end game constantly in mind Address the Pain Don t GRC to just GRC 11
Partnering for the Journey Reduce Risk of Execution Provide platform and solution updates that make it easier to perform GRC tasks Continue our execution of our product roadmap Foster Culture of Adoption Significant investment in walk up friendly user interface Streamlined workflow capabilities Take Command of the Journey Nurturing maturing processes within the product Maturity Models 12
Taking Command of The GRC Journey Siloed compliance focus, disconnected risk, basic reporting Managed automated compliance, expanded risk focus, improved analysis/metrics Advantaged fully risk aware, exploit opportunity Reduce compliance cost Compliance Manage Gain Known resource & & unknown risk visibility risks Risk Identify new business opportunities Opportunity 13
Final Thoughts Talking Opportunity vs. Compliance Your Evolution Keys to Success: Reduce Risk of Execution Foster Culture of Adoption Take Command of the Journey Fuel Your Enterprise 14
Thank you. Questions? 15
EMC, RSA, the EMC logo and the RSA logo are trademarks of EMC Corporation in the U.S. and other countries.