SlideShare una empresa de Scribd logo

ciso-platform-annual-summit-2013-Key pillars of an effective risk management program

Priyanka Aash
Priyanka Aash

Presented by K S Narayanan at CISO Platform Annual Summit, 2013. Narayanan is the Head Information Risk Management at ING Vysya Bank responsible for strategy, policy, risk management and information security program management implementation for ING Vysya Bank.

EmpresarialesEconomía y finanzas
1 de 7
Key pillars of an effective Risk Management Program Prepared by: K.S.Narayanan Head – Information Risk Management - ING Vysya Bank Date: 15th Nov 2013
Information Security & Risk Information Security is • More focused on technology • Compliance driven • Identify threats • Defines controls • Monitor controls Information Risk Management defines • The areas which should be secured • Business value & Business Impact • Compliance and strategy • Structured Approach • Provides information to decision makers • Does not make decisions for business
Current IT Security Scenario
“Volvo Bus Security Syndrome” • Is there a Governance Issue ? • Are Risks & Controls not aligned ? • Weak architecture and control design for fire safety ? • Who assessed the risk appetite ? Is this an outcome of only technology driven and compliance focused assurance ! 14th Nov 13 :- 7 dead after Mumbai-Bangalore Volvo bus catches fire 30th Oct 13 :- 45 charred to death in Volvo bus blaze near Hyderabad Disclaimer :- This analysis is not intended to question Volvo technical and safety controls. Only used here for the purpose of a case study for an effective risk management.
Effective Risk Management - Critical Factors • Suitable Governance Model • Common Risk Language & Risk footprints • Risk Assessments – Standard based + Scenario based • Risk Appetite for business/risk decision making • Reference Architecture based – Security controls implementation • Data centric approach
ERM Framework – IT Risk • • • • • • Aligning risk appetite and strategy Enhancing risk response decisions Reducing operational surprises and losses Identifying and managing multiple and cross-enterprise risks Seizing opportunities Improving deployment of capital
THANK YOU 7

Recomendados

Simple Present, Past and Future Tenses
Simple Present, Past and Future TensesSimple Present, Past and Future Tenses
Simple Present, Past and Future Tenses
thirumaraikkadu
 
EPA RMP Regulations
EPA RMP RegulationsEPA RMP Regulations
EPA RMP Regulations
sanjeev saraf
 
ciso-platform-annual-summit-2013-Hp enterprise security overview
ciso-platform-annual-summit-2013-Hp enterprise security overviewciso-platform-annual-summit-2013-Hp enterprise security overview
ciso-platform-annual-summit-2013-Hp enterprise security overview
Priyanka Aash
 
Advanced program management risk mitigation and management
Advanced program management risk mitigation and managementAdvanced program management risk mitigation and management
Advanced program management risk mitigation and management
Marcus Vannini
 
Depositories
DepositoriesDepositories
Depositories
Vikram Sankhala IIT, IIM, Ex IRS, FRM, Fin.Engr
 
Role of Depositories and Depository Participants
Role of Depositories and Depository ParticipantsRole of Depositories and Depository Participants
Role of Depositories and Depository Participants
Sai Surya Teja Maddikonda
 
Simple past, simple present and simple future
Simple past, simple present and simple futureSimple past, simple present and simple future
Simple past, simple present and simple future
Murderdoll_Natty
 
Simple present, past, and future tenses
Simple present, past, and future tensesSimple present, past, and future tenses
Simple present, past, and future tenses
Jeff Moses
 

Recomendados

Simple Present, Past and Future Tenses
Simple Present, Past and Future TensesSimple Present, Past and Future Tenses
Simple Present, Past and Future Tenses
thirumaraikkadu
 
EPA RMP Regulations
EPA RMP RegulationsEPA RMP Regulations
EPA RMP Regulations
sanjeev saraf
 
ciso-platform-annual-summit-2013-Hp enterprise security overview
ciso-platform-annual-summit-2013-Hp enterprise security overviewciso-platform-annual-summit-2013-Hp enterprise security overview
ciso-platform-annual-summit-2013-Hp enterprise security overview
Priyanka Aash
 
Advanced program management risk mitigation and management
Advanced program management risk mitigation and managementAdvanced program management risk mitigation and management
Advanced program management risk mitigation and management
Marcus Vannini
 
Depositories
DepositoriesDepositories
Depositories
Vikram Sankhala IIT, IIM, Ex IRS, FRM, Fin.Engr
 
Role of Depositories and Depository Participants
Role of Depositories and Depository ParticipantsRole of Depositories and Depository Participants
Role of Depositories and Depository Participants
Sai Surya Teja Maddikonda
 
Simple past, simple present and simple future
Simple past, simple present and simple futureSimple past, simple present and simple future
Simple past, simple present and simple future
Murderdoll_Natty
 
Simple present, past, and future tenses
Simple present, past, and future tensesSimple present, past, and future tenses
Simple present, past, and future tenses
Jeff Moses
 
Depositories
DepositoriesDepositories
Depositories
Vikram Sankhala IIT, IIM, Ex IRS, FRM, Fin.Engr
 
Past, Present and future
Past, Present and futurePast, Present and future
Past, Present and future
Jose Maria Jaramillo Salazar
 
Past present and future verb tense
Past present and future verb tensePast present and future verb tense
Past present and future verb tense
judithgonzalez
 
Present, past and future tenses
Present, past and future tensesPresent, past and future tenses
Present, past and future tenses
jay8
 
Tenses: past, present, future
Tenses: past, present, futureTenses: past, present, future
Tenses: past, present, future
Sarah Tanti
 
Curriculum Development Process
Curriculum Development ProcessCurriculum Development Process
Curriculum Development Process
Sathish Rajamani
 
Curriculum development
Curriculum developmentCurriculum development
Curriculum development
christy Ador
 
Curriculum development
Curriculum developmentCurriculum development
Curriculum development
Arjay Esguerra
 
Psychological Dimension of Curriculum Development
Psychological Dimension of Curriculum DevelopmentPsychological Dimension of Curriculum Development
Psychological Dimension of Curriculum Development
Mhia Maravilla
 
Curriculum development
Curriculum developmentCurriculum development
Curriculum development
cuterodz042909
 
The Purpose And Goals Of Risk Management
The Purpose And Goals Of Risk ManagementThe Purpose And Goals Of Risk Management
The Purpose And Goals Of Risk Management
Lisa Shannon, RN, BSN, JD.
 
Curriculum development: Processes and models
Curriculum development: Processes and modelsCurriculum development: Processes and models
Curriculum development: Processes and models
DianneCarmela Delacruz
 
Curriculum Development Lesson 1: Concepts, Nature and Purposes of Curriculum ...
Curriculum Development Lesson 1: Concepts, Nature and Purposes of Curriculum ...Curriculum Development Lesson 1: Concepts, Nature and Purposes of Curriculum ...
Curriculum Development Lesson 1: Concepts, Nature and Purposes of Curriculum ...
Leen Venti
 
English tenses
English tensesEnglish tenses
English tenses
Oksana Pantiuchina
 
Digital Personal Data Protection (DPDP) Practical Approach For CISOs
Digital Personal Data Protection (DPDP) Practical Approach For CISOsDigital Personal Data Protection (DPDP) Practical Approach For CISOs
Digital Personal Data Protection (DPDP) Practical Approach For CISOs
Priyanka Aash
 
Verizon Breach Investigation Report (VBIR).pdf
Verizon Breach Investigation Report (VBIR).pdfVerizon Breach Investigation Report (VBIR).pdf
Verizon Breach Investigation Report (VBIR).pdf
Priyanka Aash
 
Top 10 Security Risks .pptx.pdf
Top 10 Security Risks .pptx.pdfTop 10 Security Risks .pptx.pdf
Top 10 Security Risks .pptx.pdf
Priyanka Aash
 
Simplifying data privacy and protection.pdf
Simplifying data privacy and protection.pdfSimplifying data privacy and protection.pdf
Simplifying data privacy and protection.pdf
Priyanka Aash
 
Generative AI and Security (1).pptx.pdf
Generative AI and Security (1).pptx.pdfGenerative AI and Security (1).pptx.pdf
Generative AI and Security (1).pptx.pdf
Priyanka Aash
 
EVERY ATTACK INVOLVES EXPLOITATION OF A WEAKNESS.pdf
EVERY ATTACK INVOLVES EXPLOITATION OF A WEAKNESS.pdfEVERY ATTACK INVOLVES EXPLOITATION OF A WEAKNESS.pdf
EVERY ATTACK INVOLVES EXPLOITATION OF A WEAKNESS.pdf
Priyanka Aash
 
DPDP Act 2023.pdf
DPDP Act 2023.pdfDPDP Act 2023.pdf
DPDP Act 2023.pdf
Priyanka Aash
 
Cyber Truths_Are you Prepared version 1.1.pptx.pdf
Cyber Truths_Are you Prepared version 1.1.pptx.pdfCyber Truths_Are you Prepared version 1.1.pptx.pdf
Cyber Truths_Are you Prepared version 1.1.pptx.pdf
Priyanka Aash
 

Más contenido relacionado

Destacado

Past present and future verb tense
Past present and future verb tensePast present and future verb tense
Past present and future verb tense
judithgonzalez
 
Present, past and future tenses
Present, past and future tensesPresent, past and future tenses
Present, past and future tenses
jay8
 
Tenses: past, present, future
Tenses: past, present, futureTenses: past, present, future
Tenses: past, present, future
Sarah Tanti
 
Curriculum development
Curriculum developmentCurriculum development
Curriculum development
Arjay Esguerra
 
Curriculum development
Curriculum developmentCurriculum development
Curriculum development
cuterodz042909
 

Destacado (14)

Depositories
DepositoriesDepositories
Depositories
 
Past, Present and future
Past, Present and futurePast, Present and future
Past, Present and future
 
Past present and future verb tense
Past present and future verb tensePast present and future verb tense
Past present and future verb tense
 
Present, past and future tenses
Present, past and future tensesPresent, past and future tenses
Present, past and future tenses
 
Tenses: past, present, future
Tenses: past, present, futureTenses: past, present, future
Tenses: past, present, future
 
Curriculum Development Process
Curriculum Development ProcessCurriculum Development Process
Curriculum Development Process
 
Curriculum development
Curriculum developmentCurriculum development
Curriculum development
 
Curriculum development
Curriculum developmentCurriculum development
Curriculum development
 
Psychological Dimension of Curriculum Development
Psychological Dimension of Curriculum DevelopmentPsychological Dimension of Curriculum Development
Psychological Dimension of Curriculum Development
 
Curriculum development
Curriculum developmentCurriculum development
Curriculum development
 
The Purpose And Goals Of Risk Management
The Purpose And Goals Of Risk ManagementThe Purpose And Goals Of Risk Management
The Purpose And Goals Of Risk Management
 
Curriculum development: Processes and models
Curriculum development: Processes and modelsCurriculum development: Processes and models
Curriculum development: Processes and models
 
Curriculum Development Lesson 1: Concepts, Nature and Purposes of Curriculum ...
Curriculum Development Lesson 1: Concepts, Nature and Purposes of Curriculum ...Curriculum Development Lesson 1: Concepts, Nature and Purposes of Curriculum ...
Curriculum Development Lesson 1: Concepts, Nature and Purposes of Curriculum ...
 
English tenses
English tensesEnglish tenses
English tenses
 

Más de Priyanka Aash

Ethical Hacking
Ethical HackingEthical Hacking
Ethical Hacking
Priyanka Aash
 

Más de Priyanka Aash (20)

Digital Personal Data Protection (DPDP) Practical Approach For CISOs
Digital Personal Data Protection (DPDP) Practical Approach For CISOsDigital Personal Data Protection (DPDP) Practical Approach For CISOs
Digital Personal Data Protection (DPDP) Practical Approach For CISOs
 
Verizon Breach Investigation Report (VBIR).pdf
Verizon Breach Investigation Report (VBIR).pdfVerizon Breach Investigation Report (VBIR).pdf
Verizon Breach Investigation Report (VBIR).pdf
 
Top 10 Security Risks .pptx.pdf
Top 10 Security Risks .pptx.pdfTop 10 Security Risks .pptx.pdf
Top 10 Security Risks .pptx.pdf
 
Simplifying data privacy and protection.pdf
Simplifying data privacy and protection.pdfSimplifying data privacy and protection.pdf
Simplifying data privacy and protection.pdf
 
Generative AI and Security (1).pptx.pdf
Generative AI and Security (1).pptx.pdfGenerative AI and Security (1).pptx.pdf
Generative AI and Security (1).pptx.pdf
 
EVERY ATTACK INVOLVES EXPLOITATION OF A WEAKNESS.pdf
EVERY ATTACK INVOLVES EXPLOITATION OF A WEAKNESS.pdfEVERY ATTACK INVOLVES EXPLOITATION OF A WEAKNESS.pdf
EVERY ATTACK INVOLVES EXPLOITATION OF A WEAKNESS.pdf
 
DPDP Act 2023.pdf
DPDP Act 2023.pdfDPDP Act 2023.pdf
DPDP Act 2023.pdf
 
Cyber Truths_Are you Prepared version 1.1.pptx.pdf
Cyber Truths_Are you Prepared version 1.1.pptx.pdfCyber Truths_Are you Prepared version 1.1.pptx.pdf
Cyber Truths_Are you Prepared version 1.1.pptx.pdf
 
Cyber Crisis Management.pdf
Cyber Crisis Management.pdfCyber Crisis Management.pdf
Cyber Crisis Management.pdf
 
CISOPlatform journey.pptx.pdf
CISOPlatform journey.pptx.pdfCISOPlatform journey.pptx.pdf
CISOPlatform journey.pptx.pdf
 
Chennai Chapter.pptx.pdf
Chennai Chapter.pptx.pdfChennai Chapter.pptx.pdf
Chennai Chapter.pptx.pdf
 
Cloud attack vectors_Moshe.pdf
Cloud attack vectors_Moshe.pdfCloud attack vectors_Moshe.pdf
Cloud attack vectors_Moshe.pdf
 
Stories From The Web 3 Battlefield
Stories From The Web 3 BattlefieldStories From The Web 3 Battlefield
Stories From The Web 3 Battlefield
 
Lessons Learned From Ransomware Attacks
Lessons Learned From Ransomware AttacksLessons Learned From Ransomware Attacks
Lessons Learned From Ransomware Attacks
 
Emerging New Threats And Top CISO Priorities In 2022 (Chennai)
Emerging New Threats And Top CISO Priorities In 2022 (Chennai)Emerging New Threats And Top CISO Priorities In 2022 (Chennai)
Emerging New Threats And Top CISO Priorities In 2022 (Chennai)
 
Emerging New Threats And Top CISO Priorities In 2022 (Mumbai)
Emerging New Threats And Top CISO Priorities In 2022 (Mumbai)Emerging New Threats And Top CISO Priorities In 2022 (Mumbai)
Emerging New Threats And Top CISO Priorities In 2022 (Mumbai)
 
Emerging New Threats And Top CISO Priorities in 2022 (Bangalore)
Emerging New Threats And Top CISO Priorities in 2022 (Bangalore)Emerging New Threats And Top CISO Priorities in 2022 (Bangalore)
Emerging New Threats And Top CISO Priorities in 2022 (Bangalore)
 
Cloud Security: Limitations of Cloud Security Groups and Flow Logs
Cloud Security: Limitations of Cloud Security Groups and Flow LogsCloud Security: Limitations of Cloud Security Groups and Flow Logs
Cloud Security: Limitations of Cloud Security Groups and Flow Logs
 
Cyber Security Governance
Cyber Security GovernanceCyber Security Governance
Cyber Security Governance
 
Ethical Hacking
Ethical HackingEthical Hacking
Ethical Hacking
 

Último

Call Girls Jp Nagar Just Call 👗 7737669865 👗 Top Class Call Girl Service Bang...
Call Girls Jp Nagar Just Call 👗 7737669865 👗 Top Class Call Girl Service Bang...Call Girls Jp Nagar Just Call 👗 7737669865 👗 Top Class Call Girl Service Bang...
Call Girls Jp Nagar Just Call 👗 7737669865 👗 Top Class Call Girl Service Bang...
amitlee9823
 
The Path to Product Excellence: Avoiding Common Pitfalls and Enhancing Commun...
The Path to Product Excellence: Avoiding Common Pitfalls and Enhancing Commun...The Path to Product Excellence: Avoiding Common Pitfalls and Enhancing Commun...
The Path to Product Excellence: Avoiding Common Pitfalls and Enhancing Commun...
Aggregage
 
Call Girls Navi Mumbai Just Call 9907093804 Top Class Call Girl Service Avail...
Call Girls Navi Mumbai Just Call 9907093804 Top Class Call Girl Service Avail...Call Girls Navi Mumbai Just Call 9907093804 Top Class Call Girl Service Avail...
Call Girls Navi Mumbai Just Call 9907093804 Top Class Call Girl Service Avail...
Dipal Arora
 
unwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabi
unwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabiunwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabi
unwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabi
Abortion pills in Kuwait Cytotec pills in Kuwait
 
Call Girls From Pari Chowk Greater Noida ❤️8448577510 ⊹Best Escorts Service I...
Call Girls From Pari Chowk Greater Noida ❤️8448577510 ⊹Best Escorts Service I...Call Girls From Pari Chowk Greater Noida ❤️8448577510 ⊹Best Escorts Service I...
Call Girls From Pari Chowk Greater Noida ❤️8448577510 ⊹Best Escorts Service I...
lizamodels9
 
👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...
👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...
👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...
rajveerescorts2022
 
Call Girls In Noida 959961⊹3876 Independent Escort Service Noida
Call Girls In Noida 959961⊹3876 Independent Escort Service NoidaCall Girls In Noida 959961⊹3876 Independent Escort Service Noida
Call Girls In Noida 959961⊹3876 Independent Escort Service Noida
dlhescort
 
Russian Call Girls In Gurgaon ❤️8448577510 ⊹Best Escorts Service In 24/7 Delh...
Russian Call Girls In Gurgaon ❤️8448577510 ⊹Best Escorts Service In 24/7 Delh...Russian Call Girls In Gurgaon ❤️8448577510 ⊹Best Escorts Service In 24/7 Delh...
Russian Call Girls In Gurgaon ❤️8448577510 ⊹Best Escorts Service In 24/7 Delh...
lizamodels9
 
Call Girls In Panjim North Goa 9971646499 Genuine Service
Call Girls In Panjim North Goa 9971646499 Genuine ServiceCall Girls In Panjim North Goa 9971646499 Genuine Service
Call Girls In Panjim North Goa 9971646499 Genuine Service
ritikaroy0888
 
Call Girls In DLf Gurgaon ➥99902@11544 ( Best price)100% Genuine Escort In 24...
Call Girls In DLf Gurgaon ➥99902@11544 ( Best price)100% Genuine Escort In 24...Call Girls In DLf Gurgaon ➥99902@11544 ( Best price)100% Genuine Escort In 24...
Call Girls In DLf Gurgaon ➥99902@11544 ( Best price)100% Genuine Escort In 24...
lizamodels9
 

Último (20)

Call Girls Jp Nagar Just Call 👗 7737669865 👗 Top Class Call Girl Service Bang...
Call Girls Jp Nagar Just Call 👗 7737669865 👗 Top Class Call Girl Service Bang...Call Girls Jp Nagar Just Call 👗 7737669865 👗 Top Class Call Girl Service Bang...
Call Girls Jp Nagar Just Call 👗 7737669865 👗 Top Class Call Girl Service Bang...
 
The Path to Product Excellence: Avoiding Common Pitfalls and Enhancing Commun...
The Path to Product Excellence: Avoiding Common Pitfalls and Enhancing Commun...The Path to Product Excellence: Avoiding Common Pitfalls and Enhancing Commun...
The Path to Product Excellence: Avoiding Common Pitfalls and Enhancing Commun...
 
Organizational Transformation Lead with Culture
Organizational Transformation Lead with CultureOrganizational Transformation Lead with Culture
Organizational Transformation Lead with Culture
 
Ensure the security of your HCL environment by applying the Zero Trust princi...
Ensure the security of your HCL environment by applying the Zero Trust princi...Ensure the security of your HCL environment by applying the Zero Trust princi...
Ensure the security of your HCL environment by applying the Zero Trust princi...
 
Call Girls Navi Mumbai Just Call 9907093804 Top Class Call Girl Service Avail...
Call Girls Navi Mumbai Just Call 9907093804 Top Class Call Girl Service Avail...Call Girls Navi Mumbai Just Call 9907093804 Top Class Call Girl Service Avail...
Call Girls Navi Mumbai Just Call 9907093804 Top Class Call Girl Service Avail...
 
unwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabi
unwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabiunwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabi
unwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabi
 
Falcon's Invoice Discounting: Your Path to Prosperity
Falcon's Invoice Discounting: Your Path to ProsperityFalcon's Invoice Discounting: Your Path to Prosperity
Falcon's Invoice Discounting: Your Path to Prosperity
 
Phases of Negotiation .pptx
Phases of Negotiation .pptx Phases of Negotiation .pptx
Phases of Negotiation .pptx
 
Mondelez State of Snacking and Future Trends 2023
Mondelez State of Snacking and Future Trends 2023Mondelez State of Snacking and Future Trends 2023
Mondelez State of Snacking and Future Trends 2023
 
John Halpern sued for sexual assault.pdf
John Halpern sued for sexual assault.pdfJohn Halpern sued for sexual assault.pdf
John Halpern sued for sexual assault.pdf
 
Call Girls From Pari Chowk Greater Noida ❤️8448577510 ⊹Best Escorts Service I...
Call Girls From Pari Chowk Greater Noida ❤️8448577510 ⊹Best Escorts Service I...Call Girls From Pari Chowk Greater Noida ❤️8448577510 ⊹Best Escorts Service I...
Call Girls From Pari Chowk Greater Noida ❤️8448577510 ⊹Best Escorts Service I...
 
👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...
👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...
👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...
 
Katrina Personal Brand Project and portfolio 1
Katrina Personal Brand Project and portfolio 1Katrina Personal Brand Project and portfolio 1
Katrina Personal Brand Project and portfolio 1
 
MONA 98765-12871 CALL GIRLS IN LUDHIANA LUDHIANA CALL GIRL
MONA 98765-12871 CALL GIRLS IN LUDHIANA LUDHIANA CALL GIRLMONA 98765-12871 CALL GIRLS IN LUDHIANA LUDHIANA CALL GIRL
MONA 98765-12871 CALL GIRLS IN LUDHIANA LUDHIANA CALL GIRL
 
Call Girls In Noida 959961⊹3876 Independent Escort Service Noida
Call Girls In Noida 959961⊹3876 Independent Escort Service NoidaCall Girls In Noida 959961⊹3876 Independent Escort Service Noida
Call Girls In Noida 959961⊹3876 Independent Escort Service Noida
 
Russian Call Girls In Gurgaon ❤️8448577510 ⊹Best Escorts Service In 24/7 Delh...
Russian Call Girls In Gurgaon ❤️8448577510 ⊹Best Escorts Service In 24/7 Delh...Russian Call Girls In Gurgaon ❤️8448577510 ⊹Best Escorts Service In 24/7 Delh...
Russian Call Girls In Gurgaon ❤️8448577510 ⊹Best Escorts Service In 24/7 Delh...
 
Call Girls In Panjim North Goa 9971646499 Genuine Service
Call Girls In Panjim North Goa 9971646499 Genuine ServiceCall Girls In Panjim North Goa 9971646499 Genuine Service
Call Girls In Panjim North Goa 9971646499 Genuine Service
 
Call Girls Ludhiana Just Call 98765-12871 Top Class Call Girl Service Available
Call Girls Ludhiana Just Call 98765-12871 Top Class Call Girl Service AvailableCall Girls Ludhiana Just Call 98765-12871 Top Class Call Girl Service Available
Call Girls Ludhiana Just Call 98765-12871 Top Class Call Girl Service Available
 
Call Girls In DLf Gurgaon ➥99902@11544 ( Best price)100% Genuine Escort In 24...
Call Girls In DLf Gurgaon ➥99902@11544 ( Best price)100% Genuine Escort In 24...Call Girls In DLf Gurgaon ➥99902@11544 ( Best price)100% Genuine Escort In 24...
Call Girls In DLf Gurgaon ➥99902@11544 ( Best price)100% Genuine Escort In 24...
 
Call Girls Service In Old Town Dubai ((0551707352)) Old Town Dubai Call Girl ...
Call Girls Service In Old Town Dubai ((0551707352)) Old Town Dubai Call Girl ...Call Girls Service In Old Town Dubai ((0551707352)) Old Town Dubai Call Girl ...
Call Girls Service In Old Town Dubai ((0551707352)) Old Town Dubai Call Girl ...
 

ciso-platform-annual-summit-2013-Key pillars of an effective risk management program

  • 1. Key pillars of an effective Risk Management Program Prepared by: K.S.Narayanan Head – Information Risk Management - ING Vysya Bank Date: 15th Nov 2013
  • 2. Information Security & Risk Information Security is • More focused on technology • Compliance driven • Identify threats • Defines controls • Monitor controls Information Risk Management defines • The areas which should be secured • Business value & Business Impact • Compliance and strategy • Structured Approach • Provides information to decision makers • Does not make decisions for business
  • 4. “Volvo Bus Security Syndrome” • Is there a Governance Issue ? • Are Risks & Controls not aligned ? • Weak architecture and control design for fire safety ? • Who assessed the risk appetite ? Is this an outcome of only technology driven and compliance focused assurance ! 14th Nov 13 :- 7 dead after Mumbai-Bangalore Volvo bus catches fire 30th Oct 13 :- 45 charred to death in Volvo bus blaze near Hyderabad Disclaimer :- This analysis is not intended to question Volvo technical and safety controls. Only used here for the purpose of a case study for an effective risk management.
  • 5. Effective Risk Management - Critical Factors • Suitable Governance Model • Common Risk Language & Risk footprints • Risk Assessments – Standard based + Scenario based • Risk Appetite for business/risk decision making • Reference Architecture based – Security controls implementation • Data centric approach
  • 6. ERM Framework – IT Risk • • • • • • Aligning risk appetite and strategy Enhancing risk response decisions Reducing operational surprises and losses Identifying and managing multiple and cross-enterprise risks Seizing opportunities Improving deployment of capital