Daniel Ziesmer will be presenting at the ISSA International Summit again this year, on the topic of: “Policies, Programs, and Procedures, Oh My!“
(And, yes, this is the same topic to be presented at the Colorado Springs Peak Cyber Symposium. They accepted the proposal first, so…)
Despite the apparent ubiquity of policy, program, and procedural documents in cybersecurity programs, the simple truth is that far too many companies do them incorrectly and incompletely. The problem is further exacerbated when it comes to creating documents that navigate and satisfy the complex interactions between practical execution, technology infrastructure oversight, risk management, and the ability for them (and their work products) to satisfy regulatory and compliance requirements. In this session, the presenter will share examples of the good, the bad, and the ugly, and discuss different practical ways to make documentation manageable, compliant, and auditable. The session will be an open discussion – attendees are even encouraged and welcomed to bring their own examples to share with the group (properly redacted).
This year, the Summit is being held in Irving, TX. Members of ISSA get a discount on the conference costs, and even bigger discounts can be had if you are willing to do a little volunteer work to support the conference activities.
We hope to see you there!