Brian Allen is a former Chief Security Officer with Time Warner Cable and then an advisor to company boards and C-suites on their cybersecurity obligations. He now collaborates across the financial sector on security policy and advocacy work. He is also a university lecturer and author of security books that bridge the divide between physical and cybersecurity. His book on 'Enterprise Security Risk Management' (with Rachelle Loyear) is viewed as the definitive reference point on the subject. His latest publication, 'Building a Cyber Risk Management Programme' (with Brandon Bapst), maps out a framework built on authoritative sources. It provides four core components of a program and a list of considerations for building a programmatic security risk management program.

In this discussion you will hear Brian discuss the role of being ‘challenging’ and ‘curious’ and some of the consequences. Security management has not progressed as speedily as cyber security management and we explore some of the reasons and the barriers that hinder progress including the role of senior security personnel on the one hand and company executives on the other. The value of a risk-based approach, the potential of AI and how to manage it, and the lack of progress on ESRM are also covered. Also listen to which person and which book have most influenced him and what single change he feels would best progress the security sector.

Sign up to the Security & Risk Thought Leadership Newsletter and Event Updates