SITUATION

How can we be confident we have addressed the cybersecurity risks associated with remote working?

MOST LIKELY SIGNALS

Your organisation made a significant shift to home office and remote work; this accelerated digital initiatives exposing staff, technology and data to new attack vectors and exposing an increased attack surface to threats. Cybersecurity was not considered a key strategic risk across the business before, and now, with COVID-19 presenting its own existential risks, stakeholders are even less convinced of the argument to adapt their plans and behaviours.

TRANSPARENT PROCESS

  1. BOOK AND PAY $250 DEPOSIT

  2. AGREE DELIVERABLE & DETAILS IN SESSION

  3. EXPERT SUBMITS DIGITAL STATEMENT OF WORK

  4. YOU DECIDE GO/NO-GO

  5. NO-GO = DEPOSIT RETURNED TO YOU

  6. GO = PAY REMAINING $, WORK STARTS

DELIVERY TIME

14 days

COST

AU$ 9,950 excl. GST

HOW WE WILL HELP YOU

  • Following the discovery call and your confirmation of the Statement of Work, Simon will ask you to provide essential information which needs to include; your objectives, key deliverable(s), timeline & key stakeholders

  • Simon will then spend 4 days reviewing your inputs.

  • Following the review, Simon will then set up either one or two 1.5 - 2 hour video workshop sessions.

  • One workshop will be with your Board Executive accountable for digital transformation implementation (e.g. CFO, CIO, CTO) to ask questions about your business goals and their current alignment with cybersecurity.

  • If there is a separation of duties for cybersecurity, a second workshop will be held with your CISO, CIO, CTO or other business lead responsible for delivering cybersecurity to review cybersecurity operations structures, programmes and reporting activities.

  • Over the next 7 days Simon will develop a cybersecurity diagnostic (aligned to a non-proprietary framework)

  • During a final 2-hour video session Simon will present the diagnostic as a report, and will include improvement recommendations that prioritise communication and attitude to risk over new expenditure.

RESULTS & OUTPUT

  • You will have a tangible and practical guide on key recovery findings and the governance of cyber risk during and after the crises (avoiding the jargon that typically surrounds the threat).

  • Your Board and cybersecurity personnel will have a common framework for action on cyber risk.

  • You will be able to immediately prioritise and implement more useful cybersecurity risk reporting.

I WILL BE HELPING YOU

Image-empty-state.png

Name

Simon Goldsmith

Experience Keywords

Experience

Focus

Why relevant?

21 years

developing digital resilience strategies, rightsizing cybersecurity and privacy programmes, securing cloud and on premise infrastructure, cybersecurity assessment testing and due diligence, managing third party cyber risk, automating security operations, securing DevOps and agile SDLCs, fusing financial crime and cybersecurity operations

Cybersecurity & Digital Resilience

  • Simon has over 15 years of experience of what good cybersecurity looks like in a range of industries, and the processes and structures required to achieve it.

  • His background in government security agencies, security product development, Big 4 consulting and as a CISO provides him with an informed perspective on state of the market, crisis and incident management, corporate challenges and the regulatory environment.

  • Simon understands that when it comes to cybersecurity, boards have a difficult job to do. On the one hand they need to ensure their company’s survival and employee health in the pandemic, part of which requires radical  digital transformation; on the other hand they need to make sure that their companies are resilient to the cyber attacks which digital transformation will amplify.

  • However, Simon will not infantilize a board – the technical nature of cybersecurity does not prohibit comprehension by all senior executives as long as the debate around cybersecurity is put in familiar terms.