Learning the Power of the -Not My Responsibility- Mindset
Offered By: LASCON via YouTube
Course Description
Overview
Discover how to implement a "Not My Responsibility" mindset in security engineering through this 41-minute LASCON conference talk. Explore strategies for shifting responsibility to the business, improving accountability, reducing friction, and preventing burnout among security engineers. Learn about risk management, operational vs. strategic risk, effective communication, and the importance of risk-based approaches. Gain insights into risk ownership, mitigations, and the benefits of consistent documentation. Understand the role of Governance, Risk, and Compliance (GRC) in security practices and how this mindset shift can lead to more effective security improvements within organizations.
Syllabus
Intro
Example
The Problem
Why Risk Management
Operational vs Strategic Risk
Risk
Expect
Impact
Communication
Riskbased approach
Risk ownership
Mitigations
What this does right
Important note
Accountability
Risk Management
GRC
What do we do
What do we get
Consistent documentation
Taught by
LASCON
Related Courses
Introduction to FinanceUniversity of Michigan via Coursera Information Security and Risk Management in Context
University of Washington via Coursera Financial Engineering and Risk Management
Columbia University via Coursera Building an Information Risk Management Toolkit
University of Washington via Coursera Caries Management by Risk Assessment (CAMBRA)
University of California, San Francisco via Coursera