how to handle multilayered it security today
DESCRIPTION
A presentation for INFOSECURITY MAGAZINE on how to handle multi-layered IT security in a world in motion.TRANSCRIPT
An effective strategy to handle
multi-layered IT security today
Membership Guidance &
Practices
Professional recognition
ISACA (www.isaca.org)
• Founded in 1969
• Non-profit, global
membership association for
IT & information systems
professionals
• +95,000 members
• 190 chapters in 75 countries
• globally accepted research,
certifications and community
collaboration
• trust in, and value from,
information systems.
• ISACA provides its
members with education,
resource sharing, advocacy,
professional networking and
a host of other benefits on a
local level.
ISACA (Official)
@ISACANews
2 views on controls
Information security
has become
a critical business function!
© 2011 ISACA
These materials are exclusive for HOGENT.
IT risk always exists! (whether or not it is
detected / recognised by the organisation).
ISO 27005
systemic approach
Linear versus Circular thinking:
Your solution
is as strong …
… as its weakest link
“I don’t care how many millions of
dollars you spend on security
technology. If you don’t have
people trained properly, I’m going
to get in if I want to get in.”
Susie Thunder, Cyberpunk
20
1. Information Security Governance
2. Information Risk Management
3. Information Security Program Development
4. Information Security Program Management
5. Incident Management & Response
Nov
emb
er
201
1
24 ISACA
Career Summary Expertise Summary Education/ Certification
Marc Vael
• Chief Audit Executive (Smals)
• Managing Director (Valuendo)
• Director / CISO (KPMG Belgium)
• Sr Mgr (Arthur Andersen)
• Quality Control (IBM)
• IT Audit & Assurance
• Information Security
Management
• Business Continuity /
Disaster Recovery
• Privacy & Data
Protection
• Risk Management
• IT Governance
• Master in Applied Economics (UA)
• Master in Information Mgt
(Uhasselt)
• Master in IT (KUL)
• CISA (ISACA)
• CISM (ISACA)
• CISSP (ISC2)
• CGEIT (ISACA)
• ITIL Service Mgr (BCS)
• Prince2 (BCS)
• Board Effectiveness (GUBERNA)
Involvement
• Member Flemish Privacy Commission
• Director at ISACA International
• Vice President ISACA Belgium
• Chairman Cloud Computing Task Force ISACA International
• Visiting lecturer at Antwerp Mgt School, Solvay Business School and other universities
http://www.linkedin.com/in/marcvael
@marcvael