This session will provide information on the current data breach landscape and then discuss how Cyber Insurance is being integrated into a risk management plan. Information Security professionals and incident responders are in many cases unaware of how the cyber insurance process works when there is a data breach and do not understand the requirements that can affect the incident response process.
Jake Kouns is the CISO for Risk Based Security that provides vendor risk ratings, vulnerability and data breach intelligence. He previously oversaw the operations of OSVDB and DataLossDB. He worked for Capital One and was also the Director of Cyber Security and Technology Risks Underwriting for Markel. He has briefed the DHS and Pentagon on Cyber Liability Insurance issues and is frequently interviewed as an expert in the security industry Kouns is the founder of RVAsec and has presented at many well-known security conferences, including RSA, Black Hat, and DEF CON. He is the co-author of Information Technology Risk Management in Enterprise Environments and The Chief Information Security Officer. He holds both a bachelor of business administration and master of business administration degree from James Madison University, with a concentration in information security. In addition, he holds a number of certifications, including: ISC2's CISSP, and ISACA's CISM, CISA and CGEIT.