ISSA-Chicago Chapter Meeting
Topic Title: Zero to One: Building a Security & Privacy Program From the Ground Up
Presenter: Doug Brush
Co-Presenter: Christopher Lietz
If you want a great information security and privacy program, don’t settle for a copy. The best programs are cleverly architected and deliberately assembled to fit a specific risk context, culture & capacity, and take full advantage of emerging best practices and innovations. In this conversation, we’ll learn how one cloud-native tech company created a security, privacy and compliance program that earned the trust of employees, partners, customers, and investors, and enabled exponential growth.
Christopher Lietz is a software product security practitioner, an experienced CISO, and a recovering auditor, consultant and services industry executive. He helps security-forward organizations create risk-informed, pragmatic and enduring programs that earn the trust of markets and investors. He is currently the Director of Security at Homebot and the Founder/Managing Principal of Conjunction Cybersecurity.
Despite multiple degrees and industry certifications, he considers himself a lifelong learner who thrives on collaboration and innovation. He lives in Boulder Colorado, invests in the lives of college students, and grinds his way through occasional triathlons, cycling adventures and backcountry expeditions.
Doug BrushCISO Advisor
Douglas Brush is a Global Advisory CISO for Splunk and an information security executive with over 30 years of entrepreneurship & professional technology experience. He is a globally recognized expert in cybersecurity, incident response, digital forensics, and information governance. In addition to serving as a CISO and leading enterprise security assessments, he has conducted hundreds of investigations involving hacking, data breaches, trade secret theft, employee malfeasance, and various other legal and compliance issues. He also serves as a federally court-appointed Special Master and neutral expert in high-profile litigation matters involving privacy, security, eDiscovery. He is the founder and host of Cyber Security Interviews, a popular information security podcast. Doug is also committed to raising awareness about mental health, self-care, neurodiversity, and diversity, equity and inclusion in the information security industry.