NIST's Ron Ross on Risk Mgt. Framework

RSA Conference Preview: How to Put Theory into Practice
An information risk management framework isn't implemented in a vacuum, as National Institute of Standards and Technology Fellow Ron Ross points out.

In a brief audio interview, which previews the RSA security conference panel Risk Management: How to Put Theory into Practice, Ross explains how organizations can deploy the information risk management framework in a volatile environment with business objectives, cyberthreats and vulnerabilities in constant flux.

Ross, who's the key author of a number of NIST special publications focused on information risk management, will be joined on the panel by John Streufert, Department of Homeland Security director of federal network resilience, and Justin Somaini, former chief information security officer at IT security provider Symantec and web portal Yahoo. The panel will be moderated by Eric Chabrow, executive editor at Information Security Media Group.

The panel will be held 9:20 to 10:20 a.m. PST, Wednesday, Feb. 27, in Room 133 in the Moscone Center, San Francisco.


Also listen to Ron Ross on New Risk Assessment Guide and check out the webinar Ross led Risk Management Framework: Learn from NIST.

Additional Summit Insight:
Hear from more industry influencers, earn CPE credits, and network with leaders of technology at our global events. Learn more at our Fraud & Breach Prevention Events site.

Around the Network

Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing, you agree to our use of cookies.