2019 National Cyber Summit

Summit Speaker Greg Schaffer

Session Information

Information Security as Risk Management
Thursday, June 07, 2018 02:15PM - 03:00PM
Starting with an overview of the current information security threat landscape, Greg Schaffer will highlight a few of the most recent breaches, delving into root causes beyond the technical. He will then discuss why information security as risk management is a business issue that transcends cybersecurity and, therefore, it must be included as a significant component of a financial institution’s overall risk management strategy.
North Hall - Salon 2
Mr. Greg Schaffer photo
Mr. Greg Schaffer
Principal
vCISO Services, LLC
With nearly 30 years of experience, Greg is a seasoned information and security executive proficient in information security planning and project management, information security risk assessment and mitigation, vendor risk management, policy and standards creation and implementation, and disaster recovery and business continuity. Greg’s experience at CISO-level roles include at FirstBank, a $4.5B bank; as the first Chief Information Security Officer for the Metropolitan Government of Nashville and Davidson County; and as AVP Network and IT Security at Middle Tennessee State University.  He is currently the founder and Principal of vCISO Services, LLC, an information security consulting company providing virtual Chief Information Security Officer services to small and midsized businesses.

Greg is active in the security and risk management communities and currently serves on the Board of Directors for the Middle Tennessee Risk Management Association. Previous security community leadership roles include FS-ISAC Community Council co-chair, Middle Tennessee ISSA chapter board member, and chair of the Tennessee CISO Roundtable. He holds an MS degree in Information Systems Project Management from Middle Tennessee State University, a BS degree in Mechanical Engineering from the University at Buffalo, and is a CISSP.