CYBER SECURITY PRACTICES: AN EXPERT PANEL DISCUSSION February 12, 2015 Harvard Business School Association of Boston

Major Breaches in 2014 Sony Target Home Depot JP Morgan Neiman Marcus rticle/ /security0/worst- security-breaches-of-the-year sony-tops-the-list.html

Security concerns? Enterprise data and data breaches – It’s not just SSN and credit card numbers, e.g. Sony – Balancing act – security and ease of use are inversely related Governance, Risk, Compliance – Regulations (HIPAA, PCI, SEC, SOX) – Impact to business – trade secrets, IP, trust, costs Dangers – Assessment, complexity, adherence

Considerations Culture of security Education Policies Assets * Vulnerabilities * Threats = Risk Network security Endpoints Information transfer Physical