Selling Security to the Business

Peter FrøkjærADP Global Security Organization

@: peter.froekjaer@adp.comIn: dk.linkedin.com/in/froekjaer/: +45 6155 2021 / +1 530 683 5388

How Security communicate with the BusinessHow to add value to the business

How to build a Global Security Organization

2

What is ADP?

Payroll Services, Human Resource Management & Benefits Administration

Dealer Management System & Digital Marketing Solutions

ADPCORP

Roseland, NJ, USA

ADP - ES(Employer Services)Roseland, NJ, USA

ADP – DS(Dealer Services)

Hoffman Estates, IL, USA

ADP – DS(Dealer Services)

Hoffman Estates, IL, USA

ADP - ESI(Employer Services International)

Paris, France

ADP – DSI(Dealer Services International)

Hungerford, UK

ADP – DSI(Dealer Services International)

Hungerford, UK

ADP, Inc. [NASDAQ: ADP]Outsourced Human Resources, payroll, tax and benefits administration

· Began in1949 as a Payroll Company · $9 billion in revenue· Over 550,000 clients· 55,000 associates worldwide· Fortune 300 company · One of Fortune’s “Most Admired”· AAA-ratings from both Moody’s and

Standard & Poor’s

ADP Dealer Services (Division of ADP, Inc.)Global technology solutions and business partner dedicated to helping dealers drive measurable results across every area of their operation

· Founded in 1972· $1.3 billion in revenue · Over 30 years of experience· 25,000+ clients· 7,500 associates worldwide

ADP – DSI - CEur/SA/Nord(Dealer Services International)

Vigonza, Italy

ADP – DSI - CEur/SA/Nord(Dealer Services International)

Vigonza, Italy

ADP – DSI - Norddic(Dealer Services International)

Vantaa, Finland

ADP – DSI - Norddic(Dealer Services International)

Vantaa, Finland

ADP – DSI - Denmark(Dealer Services International)

Vejle, Denmark

ADP – DSI - ….(Dealer Services International)

ADP – DSI - ...(Dealer Services International)

ADP – ESI - ASIAPAC(Employer Services International)

ADP – ESI – China(Employer Services International)

ADP – ESI - ...(Employer Services International)

ADP – ESI - ...(Employer Services International)

ADP - ...(other dev.)

3

Security as a Business Enabler

The way Security interact with the business has changed.

Today, however the time where the default answer from Security was

“No” has changed. We are now primarily Influencing and motivating

the Business as a key Player.

We are now supporting Business Decisions, providing Security

Services, ensuring Compliance and adding Business Value by Political

Influence.

To be a Successful Influencer, we need to understand the Business

Strategy.

We are responsible to design our communication to fit the recipients!

4

How should Security navigate in a global Enterprise?

– Build a Global Security Organization (and Business Security Org.) :

– Integrate into the Business.

– Integrate into IT, and other critical processes.

5

Communicate with the business

The Language Of The Boardroom: RI$K!!

Security MUST learn the language of the

Business.

geert-hofstede.com/countries.html

Expect the unexpected

You don’t know what you don’t know.

Jungian theory on personality types

Understand and Adapt toPersonalities and Personality Types.

Understand and Adapt toCultural differences.

6

Communicating with the Business

BU Requests and Consumes Consulting & ServicesGSO Provides Consulting & ServicesGSO Drives Projects, Program & Policies

7

An example of: Influence by motivation

EU Data Protection proposals -

Administrative sanctions

Fines of up to 250,000 EUR or 0.5% of annual worldwide turnover

(mechanisms for requests or non- response)

Fines of up to 500,000 EUR or 1% of annual worldwide turnover

(incomplete information, not transparent, right to be forgotten,

form/format)

Fines of up to 1,000,000 EUR or 2 % of annual turnover (no legal

basis, no representative, security provisions, breach reporting)

8

Add value to the Business:Monitor Security events and detect Fraud

RSA and other Anti-Fraud Command

Centers

Protect and ensure: Integrity of

the Brand Client Assets Personal Info Compliance DLP

Event Enrichment

Lo

catio

nId

entity

Div

isio

nB

us

ine

ss

Da

ta V

alu

e

As

set V

alu

eG

eo

Info

Re

gu

latio

n

CIR

C

NCC

SCC

Th

reats

Incid

ents

As

sets

GRC

Eng.

HRLegal

Sales

Ag

greg

ation

Enterprise Reporting

9

Add value to the Business:Securely implement Business Enabling technologies

F5

Internet

Firewall

PDAN

Firewall

DB

FirewallPDAN

PDAN

Firewall

App

Web

PDAN

• SSL Offload• Adoptive Authentication• Web Application Firewall• Load Balancing

Mobile access Web Services New Innovation

Event Enrichment

Lo

ca

tion

Ide

ntity

Div

isio

nB

us

ine

ss

Da

ta V

alu

e

As

se

t Va

lue

Ge

o In

fo

Re

gu

latio

n

CIR

C

NCC

SCC

Th

rea

ts

Inc

ide

nts

As

se

ts

GRC

Eng.HR

Legal

Sales

Ag

gre

ga

tion

Enterprise Reporting

10

Thank You – Q&A

AVAuth

WAF

DLP

ADWLAN

DPI

URL

FW

IDS

Event Enrichment

Lo

catio

nId

entity

Div

isio

nB

us

ine

ss

Da

ta V

alu

e

As

set V

alu

eG

eo

Info

Re

gu

latio

n

CIR

C

NCC

SCC

Th

reats

Incid

ents

As

sets

GRC

Security Events

Eng.

HRLegal

Sales

VPN

MDM

uVM

SB

AI

Ag

greg

ation

Enterprise Reporting