IT Security is often characterized as a pure technology problem. An industry has developed over the past two decades to address it. There is a plethora of tools, software products and technology experts to provide a solution to its various facets. But how should a business executive approach the issue? What is the nature of the business problem beyond the headlines? What needs to be addressed in a specific business? How do we determine priorities? How much will IT Security cost and how much is enough? Part of the answer is in basing IT Security investment decisions on security risk assessment expressed in business terms. John will relate how business risk decisions are being used to direct BP’s security programme and what lessons BP has learnt in using this approach.
About this presentation
- Speaker: John Knowles, BP International (view biography)
Thursday, June 30th — 09.00-09.45