ENGAGE WITH THE AUTHORS
Brian Allen
Senior Vice President, Cybersecurity and Technology Risk Management
Brian spent 15 years as the Chief Security Officer for Time Warner Cable, a Fortune 120 critical infrastructure provider. An authoritative voice in enterprise security risk management (ESRM), he has authored two seminal books on the subject. He extends his knowledge as an Adjunct Professor at the University of Connecticut, teaching cybersecurity risk and enterprise risk management within their MBA Financial Risk Management program.
During his tenure at EY, Brian engaged with board members and C-suite leaders at globally ranked institutions, guiding them through cyber risk oversight obligations and assessing their cyber risk programs. His expertise spans a broad spectrum of critical areas, including cybersecurity, physical security, AI risk management, operational resilience, board governance, crisis and fraud management, and enterprise risk management. Currently, as the SVP of Emerging Technology Risk Management at The Bank Policy Institute, he liaises with top financial institutions, advocating for the sector's interests before key stakeholders such as regulators, legislators, and intelligence agencies.
​
Brian has extended his involvement in several critical infrastructure groups, including executive roles within Comm-ISAC and the Comm-Sector Coordinating Council. His appointment by the FCC Chairman to collaborate with NIST on the Cybersecurity Framework, and his active participation in committees within FS-ISAC and FSSCC, highlight his commitment to advancing industry standards in cybersecurity and risk management.
Brandon Bapst
Cyber Risk Advisor, EY
Brandon is a cyber risk strategist, speaker, and co-author of the book “Building a Cyber Risk Management Program: How to Evolve Security for the Digital Age”. As a consultant in EY's Cyber Transformation practice, he works closely with executives, CSOs and CISOs on developing mature cyber risk programs.
He has worked with Global Fortune 100 companies to transform tactical security programs into holistic enterprise security risk management practices enabled through data-driven insights and technology. Brandon’s credentials include: Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), and Certified Information Systems Auditor (CISA).
SPEAKING TOPICS
Searching for a thought leader or industry expert for your next speaking engagement? Connect with us! Our authors are ready to inspire and engage your audience with their unique perspectives and knowledge about navigating cyber risks and implementing a Cyber Risk Management Program.
Navigating the New Digital Frontier - Managing Cyber Risks:
In today's fast-paced digital era, understanding and managing cyber threats is paramount. Equip your organization with the knowledge and tools needed to proactively tackle these challenges, ensuring resilience and agility in the face of evolving cyber risks.
Components and Implementation of a Formal Cyber Risk Management Program:
Discover the four components of an effective Cyber Risk Management Program. Adopt Agile Governance for dynamic oversight and enterprise engagement; harness a Risk-Informed System for enlightened leadership risk decision-making; chart your path with a precise Risk-based Strategy and Execution approach, and champion transparency through timely Risk Escalation and Disclosure.
