Jeff Lowder, is Director of Information Security and Risk Management at The Walt Disney Company. He is an information security risk management executive with over 10 years of management experience and 12 years of IT experience with an exceptionally strong background in Internet security, inductive logic and decision theory as it relates to risk analysis and risk management, incident response, compliance, information systems audit, business continuity planning, and project management.

He has been published in multiple editions of the HANDBOOK OF INFORMATION SECURITY MANAGEMENT (ed. Harold F. Tipton and Mikki Krause, Auerbach Publications). He is on the Advisory Board for the SANS Institute's GIAC Certifications. He has also served as Vice President of the Delaware Valley chapter of the Information Systems Security Association.


Presentation Abstract

In this presentation, risk manager Jeff Lowder presents a common language for information security risk management. He then presents an overview of some of the common challenges facing the industry as it tries to apply risk management techniques to information security, and offers some novel suggestions on how to overcome those challenges. Some of the challenges discussed include: risk identification; “soft” risks and the lack of monetization; rare but catastrophic hazards; risk measurement / visualization / reporting; and risk communication.