Curling and IT security compliance: Lessons for auditing IT security compliance from the ice sheet to the C-suite
The timeless game of curling and the urgent task of auditing IT security compliance have many things in common. For instance, strategy is important, depending on which team has the hammer (the last to throw; an advantage to the team). The same is true with auditing IT security compliance. Are compliance processes mature, and therefore less testing needs to be done, or practically non-existent and therefore more audit man – hours needs to be allocated? How do you guard your stones in the house (concentric circles), which is similar to how you secure your data crown jewels? And how do you audit compliance to protecting your data? In this presentation, the speaker will talk about the insights gained from playing curling (member of Las Vegas Curling Club since 2017) and its application in his work as IT security and compliance analyst for Diamond Resorts, and draw on his over ten year’s expertise in this field of work as well.