Keynote – Cybersecurity is War
Bio: Jim Kuiphof has been involved in information technology and security for over 25 years. He is a Director of Information Security at Spectrum Health where he is responsible for engineering security solutions and cyber threat management as well as program responsibility for a multi-year multi-million dollar security transformation. Prior to joining Spectrum Health Jim was responsible for information security governance and initiating a large information security transformation program at a multi-national manufacturing company. Jim believes the only way to enable businesses to operate securely is to have well lead information security teams. Jim is actively involved in the community. He currently sits on the Steering Committee for the West Michigan Cyber Security Consortium (WMCSC) and actively participates in the Michigan Healthcare Cybersecurity Council and the Scottsdale Institute. A technologist at heart, he still dabbles in system administration by volunteering technical assistance at a local not-for-profit. He has his Bachelor of Science in information systems from Grand Valley State University and a Master of Science in Information Assurance from Davenport University.
Abstract: Cybersecurity is war; war is composed of a series of battles, some large and strategic, some small and insignificant. If you have worked in Information Security for any length of time you have known some of these battles: security incidents, organization change, security projects, and management battles. Some battles resulted in victory, others in defeat and failure. Every battle, regardless of the outcome, was an opportunity to learn and grow. In this session, Jim will share several war stories in order to draw out leadership and organizational lessons from incident response, novel security threats, successful and failed control implementations, leading cybersecurity teams, surviving bad leadership, and transformational cybersecurity programs. This session should be interesting to anyone working in, working with, or leading information security practitioners and teams.