Title:
Improve Security’s Brand & Impact by Aligning with the Three Lines of Defense Model
Description:
Are you familiar with the Three Lines of Defense Model? ERM? GRC? Which “line” am I responsible for as a security practitioner? Do I need to adopt and align with this? Aligning with the 3LOD model may enable security to increase its value, improve its perception, and strengthen security culture.
The 3LOD Model is a principles-based risk management paradigm that splits risk management responsibility across three functions. The first line owns risk and the related security controls. The second line oversees the first line and monitors control effectiveness. The third line role is filled by internal audit, providing assurance of the first two lines.
Is it really just that simple? Absolutely not. Come learn the details of a surprisingly common, often misunderstood tenet of risk management. Learn the benefits of embracing this model, how it aligns with ESRM, and specifically how it is implemented in several real organizations.
Learning Objective #1:
Understand what the Three Lines of Defense Model is, who uses it, and why it’s important for us to know.
Learning Objective #2:
Understand the role of the security practitioner and stakeholders/customers in the model, as well as how it aligns with ESRM, ERM, and GRC.
Learning Objective #3:
Learn about several real-life 3LOD operating models, the pros and cons of each, and how they compare/align with your own organization.
Type:
All Access Education