How CISOs Manage Supply Chain Risk
Managing the scope and complexity of third-party relationships can be a highly manual, time-consuming task for many security teams, and even after this effort effectively mitigating supply chain vulnerabilities remains one of the greatest threats to an organization’s security. In this panel discussion, security leaders share current approaches, challenges, and best practices to improve their supply chain strategy.
Join for insights on:
- Improving visibility of third- and fourth-party security practices
- Adjusting your risk classifications after the discovery of security weaknesses
- Strategizing the scope of efforts to remediate third-party vulnerabilities
Speakers
Parham Eftekhari is a recognized business executive in the information security sector with a lifelong passion for leadership, and community engagement. His expertise spans critical infrastructure technology and policy, business strategy and operations, executive advising, and thought leadership content initiatives.
Parham has published over a dozen information security reports, regularly engages with the media, and has contributed to countless briefings and events at institutions including TEDx, Congress, the World Bank, RSA, IFA+, (ISC)2, C-SPAN, and the Institute for Critical Infrastructure Technology (ICIT).
Krista Arndt is the Chief Information Security Officer (CISO) at United Musculoskeletal Partners. As the CISO, Krista is responsible for the safety and security of all UMP and its practices’ patients and employees. Krista accomplishes this by ensuring continued maturation and providing strategic direction for UMP’s information security program in alignment with the business objectives. Additionally, Krista provides oversight of the security program’s day to day operational effectiveness. In her previous roles, Krista assisted with developing and leading security programs in crypto, finance, and the Department of Defense.
Krista is an active member of ISACA, Infragard’s Philadelphia Chapter, serves on Neumann University’s Business Advisory Council and is Marketing Committee chair for Women in Cybersecurity-Delaware Valley Affiliate. Through this service, Krista’s mission is to give back to her community by providing mentorship and support for aspiring cybersecurity professionals, especially for women who wish to enter the field.
When off the clock, Krista takes her affinity for overcoming challenges to the garage and the race track, where she enjoys building and improving her own race car, competing as a driver in national drag racing events with her family, and using her racing as a forum to advocate for neurodiversity awareness and inclusion.”
Paul Valente, CEO & Co-Founder of VISO Trust Paul Valente is the current CEO & Co-Founder of VISO Trust. He was also the former CISO and built successful security teams and programs at ASAPP, LendingClub, and Restoration Hardware. Paul’s third-party risk management programs have been vetted by hundreds of Fortune 1000 companies and his teams have vetted thousands of third parties.
Sponsors
