Bio:
As the EMEA Subject Matter Expert on Governance, Risk and Compliance, Mr. Yves LE
ROUX is responsible for presenting the CA vision and positions on these matters. After his graduation from Paris University in 1970, he worked in the Rothschild Group where, among others tasks, he was in charge of the network security and other security related issues. In 1981, he joined the French Ministry of Industry where he was in charge of the Open Systems Standardization programs. In 1986, he took the position of European Information Security Manager at Digital Equipment. Then, he joined the security research and development team. In 1999, he went to Entrust Technologies, PKI software editor. In 2003, Yves joined Computer Associates Int. He has co-authored three books on security. He was a lecturer at Paris University and spoke in many conferences (e.g. ISSE 2007, ISMC USA 2008, ISMF 2008, ISMC Europe 2008). He is member of the European Network and Information Security Agency (ENISA) Permanent Stakeholders Group (PSG) He is member of the ISACA Security Management Committee. He is also a member of the (ISC)2 European Advisory Board (EAB), the (ISC)2 CBK Review Committee, the (ISC)2 Journal Editorial Board and a (ISC)2 authorized Instructor for the CISSP CBK Review Seminar.
The ISACA Business Model for Information Security
Abstract:
In this session, we will:
- Consider the business challenges that organizational leaders and security managers need to confront;
- Evaluate traditional approaches to protection used to address these challenges;
- Introduce systemic thinking as a better way of addressing the business needs for information protection;
- Review the concepts contained within the Systemic Security Management Model as a suitable Business Model for Information Security Management; and
- Have a mutually beneficial exchange of ideas.