The cybersecurity landscape is constantly evolving, and financial institutions require a consistent, simple, and agile approach to mitigate widespread threats within their sector. In this webinar, the Ostrich Cyber-Risk and the Cyber Risk Institute (CRI) will collaborate to discuss NIST CSF 2.0 concerning financial institutions and strategies for maximizing the benefits of the CRI Profile, following the release of the Profile 2.0. In this session, the focus will be on understanding your organization's most significant cyber risks and identifying the controls that efficiently reduce those risks.
Key takeaways:
-Gain insight into your organization's most significant cyber risks.
-Identify the most effective controls for reducing these risks.
-Understand how to easily forecast and quantify risk in financial terms.
-Learn how to utilize these insights to drive proactive decision-making, aligned with your organization's governance.
Meet your speaker:
John Goodman, Senior Vice President @ The Cyber Risk Institute
John Goodman is a Senior Vice President for the Cyber Risk Institute. Mr. Goodman specializes in cybersecurity control standards for the financial services sector. He currently acts as the principal lead for CRI’s Profile, a NIST CSF-based standard for financial services.
He previously served as the Vice President of IT Management and Controls and as Deputy CIO for PenFed Credit Union. While there Mr. Goodman was primarily responsible for technology governance, cybersecurity compliance, and technology risk management. Mr. Goodman also contributed to the development of the CRI Profile as a volunteer while at PenFed.
Mr. Goodman holds a Bachelor of Science degree in Computer Science and Psychology (double major) from the University of Maryland, College Park and maintains several industry-recognized certifications, to include the CISSP, CCSK, CISM, CRISC, CGEIT, Open FAIR, and PMP. He currently lives in Fairfax, Virginia
Meet your speaker:
Greg Spicer, Co-Founder & CRO @ Ostrich Cyber-Risk
Greg Spicer has several years of experience in cybersecurity, working with organizations to provide solutions to their cybersecurity challenges. He has worked in many sectors, including Legal, Finance, Insurance, Manufacturing, and Healthcare. He was most recently CRO of Braintrace, a Salt Lake City MDR provider, before their successful sale to Sophos in July 2021.
Greg is now the CRO and Co-Founder of Ostrich Cyber-Risk, a leading Cybersecurity Risk Management organization that empowers risk and security teams to proactively assess cyber risk exposure in financial terms. Our Birdseye™ Cyber Risk Management application, grounded in industry benchmarks like NIST CSF, ISO, MITRE, and CRI, combines qualitative risk analysis and quantitative scenario simulation through the Open FAIR™ ontology. This unique approach enables organizations to swiftly prioritize and quantify financial and operational risks in real-time to make informed business decisions on cybersecurity.