The CISO Stories Podcast Subscribe

Leadership, Data Security, Compliance Management

CSP #105 – Dear Auditor: Why is this a high risk finding? Can we talk?

January 17, 2023

Full Audio

View Show Index

Segments

1. Dear Auditor: Why Is This a High Risk Finding? Can We Talk? – Robert Findlay – CSP #105

CISOs often have a love/hate relationship with auditors, as it is the auditors that are placing judgement on the adequacy of company cybersecurity controls. Join this session from the perspective of an IT Audit leader and former CISO, as to how to view the auditors and strengthen the cybersecurity program amid adversity. This segment is sponsored by Wiz. Visit https://securityweekly.com/wiz to learn more about them!

Sponsored By

Wiz

Guest

Global Head of IT Audit at Glanbia

Currently the Global Head of IT Audit at Irish dairy and protein leader Glanbia, Bob has over 30 years IT, audit and security experience. Having started in mainframe computer operations for a French Bank in the 1980’s Bob has managed most IT functions including programming, project management and data centre operations in addition to significant stints in IT audit and as Chief Information Security Officer.
Bob started working in IT audit in the Audit Commission and has since managed and set up IT audit functions in global businesses, such as British Airways, The Co-operative Group, ARYZTA, Paddy Power and now Glanbia as well as spells consulting for EY.

Host

Todd Fitzgerald

Vice President, Cybersecurity Strategy at Cybersecurity Collaborative

https://www.cyberleadersunite.com

Todd Fitzgerald has built information Fortune 500/large company security programs for 20 years. Todd serves as VP, Cybersecurity Strategy and Chairman of the Cybersecurity Collaborative Executive Committee, was named 2016–17 Chicago CISO of the Year, ranked Top 50 Information Security Executive, authored 4 books including #1 Best Selling and 2020 CANON Hall of Fame Winner CISO COMPASS: Navigating Cybersecurity Leadership Challenges with Insights from Pioneers (2019), ground-breaking CISO Leadership: Essential Principles for Success, as well as contributions to a dozen others. Todd held senior leadership positions at Northern Trust, Grant Thornton International, Ltd, ManpowerGroup, WellPoint (Anthem) Blue Cross Blue Shield/ National Government Services, Zeneca/Syngenta, IMS Health and American Airlines.

Related

Day in the Life of a CISO, as They Consider Personal Risks and New Defenses in 2025 – BSW #376

December 16, 2024

In the leadership and communications segment, CISOs need to consider the personal risks associated with their role, CISOs: Don’t rely solely on technical defences in 2025, The Questions Leaders Need to Be Asking Themselve, and more!

The CISO’s Vital Role, As They Step Away and Companies Seek Top Cyber Talent – BSW #375

December 9, 2024

In the leadership and communications segment, How Good Leaders Become Great By Never Leading Alone, How Leaders Can Prepare Their Teams For 2025, Nervous About Public Speaking? Here’s How to Use Notes Like a Pro, and more!

Tackling Barriers on the Road To Cyber Resilience – Theresa Lanowitz – ESW #386

December 5, 2024

In this final installment of a trio of discussions with Theresa Lanowitz about Cyber Resilience, we put it all together and attempt to figure out what the road to cyber resilience looks like, and what barriers security leaders will have to tackle along the way. We'll discuss: How to identify these barriers to cyber resilience Be secure by design ...