Transcript ADP Standard Power Point

Selling Security to
the Business
Peter Frøkjær
ADP Global Security Organization
@: [email protected]
In: dk.linkedin.com/in/froekjaer/
: +45 6155 2021 / +1 530 683 5388
How Security communicate with the Business
How to add value to the business
How to build a Global Security Organization
What is ADP?
 Payroll Services, Human Resource Management & Benefits
Administration
 Dealer Management System & Digital Marketing Solutions
ADP, Inc. [NASDAQ: ADP]
Outsourced Human Resources, payroll, tax and
benefits administration
·
·
·
·
·
·
·
Began in1949 as a Payroll Company
$9 billion in revenue
Over 550,000 clients
55,000 associates worldwide
Fortune 300 company
One of Fortune’s “Most Admired”
AAA-ratings from both Moody’s and
Standard & Poor’s
ADP Dealer Services (Division of ADP, Inc.)
Global technology solutions and business
partner dedicated to helping dealers drive
measurable results across every area of their
operation
ADP
CORP
Roseland, NJ, USA
·
·
·
·
·
ADP - ...
(other dev.)
ADP - ES
(Employer Services)
Roseland, NJ, USA
ADP
ADP –– DS
DS
(Dealer
(Dealer Services)
Services)
Hoffman
Hoffman Estates,
Estates, IL,
IL, USA
USA
ADP - ESI
(Employer Services International)
Paris, France
ADP
ADP –– DSI
DSI
(Dealer
(Dealer Services
Services International)
International)
Hungerford,
Hungerford, UK
UK
Founded in 1972
$1.3 billion in revenue
Over 30 years of experience
25,000+ clients
7,500 associates worldwide
ADP – ESI - ...
(Employer Services International)
ADP – ESI - ASIAPAC
(Employer Services International)
ADP
ADP –– DSI
DSI -- CEur/SA/Nord
CEur/SA/Nord
(Dealer
(Dealer Services
Services International)
International)
Vigonza,
Vigonza, Italy
Italy
ADP – DSI - ...
(Dealer Services International)
ADP – ESI - ...
(Employer Services International)
ADP – ESI – China
(Employer Services International)
ADP
ADP –– DSI
DSI -- Norddic
Norddic
(Dealer
(Dealer Services
Services International)
International)
Vantaa,
Vantaa, Finland
Finland
ADP – DSI - ….
(Dealer Services International)
ADP – DSI - Denmark
(Dealer Services International)
Vejle, Denmark
2
Security as a Business Enabler
 The way Security interact with the business has changed.
 Today, however the time where the default answer from Security was
“No” has changed. We are now primarily Influencing and motivating
the Business as a key Player.
 We are now supporting Business Decisions, providing Security
Services, ensuring Compliance and adding Business Value by Political
Influence.
 To be a Successful Influencer, we need to understand the Business
Strategy.
 We are responsible to design our communication to fit the recipients!
3
How should Security navigate in a global
Enterprise?
– Build a Global Security Organization (and Business Security Org.) :
– Integrate into the Business.
– Integrate into IT, and other critical processes.
4
Communicate with the business
 The Language Of The Boardroom: RI$K!!
 Security MUST learn the language of the
Business.
Understand and Adapt to
Cultural differences.
 Expect the
unexpected
 You don’t know what
you don’t know.
Understand and Adapt to
Personalities and Personality Types.
geert-hofstede.com/countries.html
Jungian theory on personality types
5
Communicating with the Business
 BU Requests and Consumes Consulting & Services
 GSO Provides Consulting & Services
 GSO Drives Projects, Program & Policies
6
An example of: Influence by motivation
EU Data Protection proposals Administrative sanctions
 Fines of up to 250,000 EUR or 0.5% of annual worldwide turnover
(mechanisms for requests or non- response)
 Fines of up to 500,000 EUR or 1% of annual worldwide turnover
(incomplete information, not transparent, right to be forgotten,
form/format)
 Fines of up to 1,000,000 EUR or 2 % of annual turnover (no legal
basis, no representative, security provisions, breach reporting)
7
Add value to the Business:
Monitor Security events and detect Fraud
Geo Info
Data Value
Division
Identity
RSA and other AntiFraud Command
Centers
Legal HR
Assets
Threats
Incidents
CIRC
Asset Value
Regulation
Business
Location
8
Sales Eng.
GRC
Aggregation
Event Enrichment
Enterprise
Reporting
NCC
SCC
Protect and
ensure:
 Integrity of
the Brand
 Client Assets
 Personal Info
 Compliance
 DLP
Add value to the Business:
Securely implement Business Enabling technologies
Internet
Firewall
•
•
•
•
PDAN
F5
SSL Offload
Adoptive Authentication
Web Application Firewall
Load Balancing
PDAN
Geo Info
Sales Eng.
Legal HR
GRC
Assets
Threats
Incidents
Aggregation
CIRC
Asset Value
9
Regulation
DB
Business
Firewall
PDAN
Event Enrichment
Location
App
Data Value
Firewall
PDAN
Division
Web
Identity
Firewall
Enterprise
Reporting
NCC
SCC
 Mobile access
 Web Services
 New Innovation
Thank You – Q&A
FW
uVM
CIRC
Asset Value
Regulation
Business
10
URL
Location
WLAN
AD
DLP
SB
Assets
Event Enrichment
MDM
Threats
AV
GRC
Incidents
AI
WAF
Legal HR
Aggregation
Auth
Sales Eng.
Geo Info
DPI
VPN
Data Value
IDS
Division
Identity
Security
Events
Enterprise
Reporting
NCC
SCC