selling security to the business peter frøkjær adp global security organization...
TRANSCRIPT
Selling Security to the Business
Peter FrøkjærADP Global Security Organization
@: [email protected]: dk.linkedin.com/in/froekjaer/: +45 6155 2021 / +1 530 683 5388
How Security communicate with the BusinessHow to add value to the business
How to build a Global Security Organization
2
What is ADP?
Payroll Services, Human Resource Management & Benefits Administration
Dealer Management System & Digital Marketing Solutions
ADPCORP
Roseland, NJ, USA
ADP - ES(Employer Services)Roseland, NJ, USA
ADP – DS(Dealer Services)
Hoffman Estates, IL, USA
ADP – DS(Dealer Services)
Hoffman Estates, IL, USA
ADP - ESI(Employer Services International)
Paris, France
ADP – DSI(Dealer Services International)
Hungerford, UK
ADP – DSI(Dealer Services International)
Hungerford, UK
ADP, Inc. [NASDAQ: ADP]Outsourced Human Resources, payroll, tax and benefits administration
· Began in1949 as a Payroll Company · $9 billion in revenue· Over 550,000 clients· 55,000 associates worldwide· Fortune 300 company · One of Fortune’s “Most Admired”· AAA-ratings from both Moody’s and
Standard & Poor’s
ADP Dealer Services (Division of ADP, Inc.)Global technology solutions and business partner dedicated to helping dealers drive measurable results across every area of their operation
· Founded in 1972· $1.3 billion in revenue · Over 30 years of experience· 25,000+ clients· 7,500 associates worldwide
ADP – DSI - CEur/SA/Nord(Dealer Services International)
Vigonza, Italy
ADP – DSI - CEur/SA/Nord(Dealer Services International)
Vigonza, Italy
ADP – DSI - Norddic(Dealer Services International)
Vantaa, Finland
ADP – DSI - Norddic(Dealer Services International)
Vantaa, Finland
ADP – DSI - Denmark(Dealer Services International)
Vejle, Denmark
ADP – DSI - ….(Dealer Services International)
ADP – DSI - ...(Dealer Services International)
ADP – ESI - ASIAPAC(Employer Services International)
ADP – ESI – China(Employer Services International)
ADP – ESI - ...(Employer Services International)
ADP – ESI - ...(Employer Services International)
ADP - ...(other dev.)
3
Security as a Business Enabler
The way Security interact with the business has changed.
Today, however the time where the default answer from Security was
“No” has changed. We are now primarily Influencing and motivating
the Business as a key Player.
We are now supporting Business Decisions, providing Security
Services, ensuring Compliance and adding Business Value by Political
Influence.
To be a Successful Influencer, we need to understand the Business
Strategy.
We are responsible to design our communication to fit the recipients!
4
How should Security navigate in a global Enterprise?
– Build a Global Security Organization (and Business Security Org.) :
– Integrate into the Business.
– Integrate into IT, and other critical processes.
5
Communicate with the business
The Language Of The Boardroom: RI$K!!
Security MUST learn the language of the
Business.
geert-hofstede.com/countries.html
Expect the unexpected
You don’t know what you don’t know.
Jungian theory on personality types
Understand and Adapt toPersonalities and Personality Types.
Understand and Adapt toCultural differences.
6
Communicating with the Business
BU Requests and Consumes Consulting & ServicesGSO Provides Consulting & ServicesGSO Drives Projects, Program & Policies
7
An example of: Influence by motivation
EU Data Protection proposals -
Administrative sanctions
Fines of up to 250,000 EUR or 0.5% of annual worldwide turnover
(mechanisms for requests or non- response)
Fines of up to 500,000 EUR or 1% of annual worldwide turnover
(incomplete information, not transparent, right to be forgotten,
form/format)
Fines of up to 1,000,000 EUR or 2 % of annual turnover (no legal
basis, no representative, security provisions, breach reporting)
8
Add value to the Business:Monitor Security events and detect Fraud
RSA and other Anti-Fraud Command
Centers
Protect and ensure: Integrity of
the Brand Client Assets Personal Info Compliance DLP
Event Enrichment
Lo
catio
nId
entity
Div
isio
nB
us
ine
ss
Da
ta V
alu
e
As
set V
alu
eG
eo
Info
Re
gu
latio
n
CIR
C
NCC
SCC
Th
reats
Incid
ents
As
sets
GRC
Eng.
HRLegal
Sales
Ag
greg
ation
Enterprise Reporting
9
Add value to the Business:Securely implement Business Enabling technologies
F5
Internet
Firewall
PDAN
Firewall
DB
FirewallPDAN
PDAN
Firewall
App
Web
PDAN
• SSL Offload• Adoptive Authentication• Web Application Firewall• Load Balancing
Mobile access Web Services New Innovation
Event Enrichment
Lo
ca
tion
Ide
ntity
Div
isio
nB
us
ine
ss
Da
ta V
alu
e
As
se
t Va
lue
Ge
o In
fo
Re
gu
latio
n
CIR
C
NCC
SCC
Th
rea
ts
Inc
ide
nts
As
se
ts
GRC
Eng.HR
Legal
Sales
Ag
gre
ga
tion
Enterprise Reporting
10
Thank You – Q&A
AVAuth
WAF
DLP
ADWLAN
DPI
URL
FW
IDS
Event Enrichment
Lo
catio
nId
entity
Div
isio
nB
us
ine
ss
Da
ta V
alu
e
As
set V
alu
eG
eo
Info
Re
gu
latio
n
CIR
C
NCC
SCC
Th
reats
Incid
ents
As
sets
GRC
Security Events
Eng.
HRLegal
Sales
VPN
MDM
uVM
SB
AI
Ag
greg
ation
Enterprise Reporting