Secure the Workflow, Stupid!

Wednesday, May 15 | 1:00PM–2:00PM CT | Vevey 1-2, Second Floor Event Centre
Session Type: Breakout Session
Delivery Format: Interactive Presentation
Cybersecurity efforts today focus solely on individual components such as systems, networks, governance, and training. This is problematic because the risk equation is far more complex and dynamic. It affects the origin, timing, and nature of vulnerabilities and makes them change in both space and time. Total risk is not only a simple sum of individual pieces but also depends strongly on nuances in how the pieces intermesh and move. This talk will discuss the shortcomings of static risk treatment as practiced currently and show how securing workflows can address some of these limitations.

Outcomes: Understand the limitations of how we treat risk today * Learn how workflow security addresses them * Leave with strategies to try in your own environment


  • Anurag Shankar

    Senior Security Analyst, Indiana University