Document Actions
Department Colloquium: Cybersecurity
Approaches and Challenges in Controlling Cyber Risk – An Industry Perspective
Categories |
|
---|---|
When |
Apr 14, 2021 from 01:00 pm to 02:00 pm |
Hosting organization | Computer Science Department |
Speaker | Dr. Patrick Duessel, VP & BISO, ViacomCBS |
Speaker Information | Dr. Patrick Duessel is the Business Information Security Officer for the ViacomCBS Television Stations Group, leading the division’s cyber security program. Prior to joining ViacomCBS, Dr. Duessel spent eight years in cyber risk consulting at Deloitte and McKinsey, where he led numerous cybersecurity, risk & governance as well as transformation engagements with leading companies within the financial services and telecommunication, media & technology industries. He has also advised Chief Information Security Officers (CISOs) in various industries on implementing and operating effective cyber programs and has presented cybersecurity topics to senior management and audit committees. His areas of expertise include cyber strategy, cyber risk management & governance and cyber program optimization using quantitative methods. Dr. Duessel started his career as a researcher at the Fraunhofer Institute and Technical University of Berlin, where he worked on self-learning network intrusion detection systems capable to detect and prevent zero-day threats in computer networks. As co-founder of a start-up, he received several national and European technology and innovation awards. Patrick Duessel has a PhD in Computer Science (2018) from the Rheinische Friedrich-Wilhelms-University in Bonn, Germany, as well as a Masters of Science in Computer Science and a Bachelor of Science in Software Engineering from the University of Potsdam, Germany. Apart from his day-to-day responsibilities, he maintains his security certifications collected over years while staying abreast of recent advances in security by actively contributing to the scientific community. He is co-author of numerous articles on machine learning and computer security published in internationals conferences and journals and participates in program committees of scientific, conferences and industry boards. |
Where | On-line |
Contact Name | Sven Dietrich |
Contact Email | spock@hunter.cuny.edu |
Add event to calendar |
vCal iCal |
In the era of digital transformation, the threat of cyber-attacks could not be more imminent. Numerous examples of data breaches (e.g., Solarwinds, Microsoft DNS, VMWare ESXi) in the recent past demonstrate how organizations continue to be exposed to a variety of cyber risks. An effective cyber risk management is needed to understand risks and their potential impact on an organization and maintain a security program that is tailored to the risk appetite of the organization. An effective cyber risk management program involves the entire organization. Although Information Security may ultimately own cybers risk management, cyber risk is dispersed throughout the organization, requiring an integrated approach and cross-divisional collaboration to effectively manage and mitigate exposure.
This talk provides an overview of which methodologies, frameworks and governance models are needed to establish a proper cyber risk management functionality. We will also show how to use these methodologies to systematically identify, prioritize and manage cyber risks in large, real-world organizations.