LogicGate

Optimizing Risk: GRC is no longer a cost center - it’s a business enablerGuests: LogicGate CEO, Matt Kunkel and CISO, Nick Kathmann Historically GRC was viewed as one line in a budget sheet, but that is rapidly changing. GRC practitioners are elevating their programs with tools and technologies that aggregate data and story-tell situational risk, security, compliance changes and more so businesses can make risk-based decisions to move the needle forward. Matt Kunkel and Nick Kathmann will share why good security pays for itself, the role GRC plays in the boardroom and how to connect GRC programs to business impact.&nbsp;

Matt Kunkel

Co-Founder & CEO, LogicGate

Nick Kathmann

Chief Information & Security Officer, LogicGate

Optimizing Risk: GRC Is No Longer a Cost Center – It’s a Business Enabler

🎧 LogicGate’s GRC &amp; Me podcast is back!  The new season is amplified with fresh perspectives, galvanizing guests and a revamped approach to the GRC topics you care about. 

Don’t miss our first episode of the season - Optimizing Risk - with LogicGate CEO @Matt Kunkel and CISO @Nick Kathmann. Same C-Suite; different perspectives. @Chris Clarke hosts both leaders as they share their unique views on how to quantify the value of GRC, tie risk back to business impact and prove why good security pays for itself. 

Available today on audio or video wherever you podcast!

In this episode, we’re excited to explore the ever-changing landscape of banking compliance. We’ll cover best practices for staying audit-ready amidst constantly evolving regulations. The discussion will address compliance requirements, from NCUA mandates to state-specific privacy laws, PCI 4.0, and more. We’ll also talk about AI in banking along with third-party and vendor risks. This insightful conversation will highlight both the challenges and best practices in navigating compliance complexities across the industry.

Mrs. Southard has over 25 years’ experience in Information Technology and Security. She is a strategic executive with success in physical and logical governance, risk management, acquisitions and incident response. She has presented significant reductions in costs, while building strong teams in tandem. Stephenie has championed several initiatives around cybersecurity, governance, physical controls, risk, compliance, business resiliency, system consolidation and secure datacenter site expansions/relocations. 

Mrs. Southard has worked in the Government, Educational, Not-for-Profit and Financial sectors. Stephenie headed the initiative of building, managing and motivating several teams in IT, security, audit, enterprise risk management, governance/compliance and remediation/compliance with regulators and auditing bodies. She also administered the operations of multiple 24/7 security control centers and staff. Mrs. Southard has extensive knowledge in SOC, GSMA,-SAS, PCI, ISO, NCUA and Homeland Security certifications and assessments. 

Some highlights include putting processes in place to achieve a 98% overall SLA for security/IT related issues, identified cost savings of < $1M and led the company of successfully passing over 300 PCI, ISO and SOC audits.

Stephenie Southard

Chief Security Officer, Baxter Credit Union

When Governance, Risk, and Compliance (GRC) issues are in the headlines, it’s usually a bad thing. It’s only when a major data breach happens, or a company runs afoul of some regulation, that these important responsibilities get their time in the limelight. GRC &amp; Me is here to shine a light on those individuals tasked with safeguarding their employers’ information and integrity, day in and day out. Tune in monthly as host Meghan Maneval, Senior Director of Product Marketing at LogicGate and her guests  explore the issues and ideas that give shape to these interconnected functions. Just as GRC touches many parts of a business, so too will the podcast delve into a wide array of topics, trends and concerns—from current events and modern methodologies to cultural nuances and game-changing developments. Join us and learn why GRC is so critical to the future of any organization, where the industry has been—and where it’s going.

Navigating Financial Industry Compliance

Switching from traditional risk analysis methods like ordinal lists or red-yellow-and-green charts to more modern approaches like risk quantification requires a paradigm shift in how you think about measuring risk, but the increased accuracy, specificity, and reliability you’ll gain by doing so pays dividends.On this episode of GRC &amp; Me, Netflix’s Tony Martin-Vegue join LogicGate’s Chris Clarke to explore the best ways to navigate this transition, how to learn and leverage popular risk quantification frameworks like Open FAIR, and why you shouldn’t completely throw your colored charts out the window just yet.

Tony Martin-Vegue

Staff Information Security Risk Engineer at Netflix

Shifting Gears To Quantify Risk with Netflix’s Tony Martin-Vegue

They say it takes a thief to catch a thief, so why not a hacker to catch a hacker?&nbsp;That was the premise behind Ted Harrington’s Independent Security Evaluators, a company dedicated to poking holes into other companies’ cyber defenses — for the right reasons, of course. On this episode of GRC &amp; Me, Ted takes LogicGate’s Chris Clarke on a journey down the benevolent hacker’s rabbit hole, where they discuss:<ul><li>The difference between white box and black box testing (and which is better.)</li><li>Why carrying these exercises out can build trust and become a competitive advantage in third-party risk assessment.</li><li>Why it’s important to shift your mindset from one that views security as an obstacle to one that views it as an opportunity.</li><li>Uncovering the unknown unknowns in cybersecurity.</li><li>How “defense in depth” strategies can put security teams a step ahead of threat actors.</li><li>The four traits that lead hackers to be successful, and why thinking like one can be an effective way to bolster your cyber defenses.</li></ul>

Please Hack Me: Hacking Companies for Good

Few careers involve managing as much risk as one where you’re responsible for launching humans riding gigantic rockets into outer space. That’s exactly what Barrios Technology Chief Strategy Officer Ginger Kerrick did during her three-decade career working for NASA.On this episode of GRC &amp; Me, Ginger joins LogicGate’s Chris Clarke to discuss methods for developing methodical, standardized thought processes for risk decision-making in high-stakes scenarios, how NASA employees are trained to separate logic from emotion, how disasters can inform future mitigation planning, and why the most important part of managing risk is having the right leaders in place.

Ginger Kerrick

Chief Strategy Officer at Barrios Technology, LTD

Rockets, Radios, and Risk: How NASA Manages Uncertainty in Orbit

One of the most high-profile risk events of the last year was the swift collapse of Silicon Valley Bank and other regional banks amid spiking interest rates. Part of the problem? The lack of a complete, comprehensive view of the risks these banks were facing — in particular, liquidity risk.Allstate Canada's Chief Risk Officer Jason Wang has spent his career assessing and analyzing risk in the financial services space, dedicated to anticipating and mitigating risks just like the one that sank SVB. On this episode of GRC &amp; Me, Jason joins LogicGate’s Chris Clarke to discuss the importance of building a holistic risk register, how to position risk management as a strategic enabler instead of a “revenue prevention” department, why it’s critical to include your chief risk officer on the executive team, and more.

Jason Wang, CFA

Chief Risk Officer, Allstate Canada

Managing Risk on the Frontlines of the Financial Sector

When doing business with the federal government and its myriad agencies, organizations are bound to run into plenty of mandates, regulations, and other requirements. Navigating them all can cause a headache for even the most detail-oriented compliance managers.On this episode of GRC &amp; Me, Chris Clarke is joined by Intel Federal’s Compliance Program Manager, John Griffin. Griffin draws on his decades of experience in federal contracting and working with government agencies at companies like Honeywell and Boeing to explore methods for better managing product development and performing diligence on third-party vendor relationships while operating under strict and stringent government standards and requirements. Plus, learn a few of Griffin’s more creative methods for determining how risky a particular organization might be to work with.

John Griffin

Intel Federal Compliance Program Manager at Intel Corporation

Staying in the Fed’s Favor: Navigating Government Contracts with Intel Federal’s John Griffin

Follow LogicGate on LinkedIn

When Governance, Risk, and Compliance (GRC) issues are in the headlines, it’s usually a bad thing. It’s only when a major data breach happens, or a company runs afoul of some regulation, that these important responsibilities get their time in the limelight. GRC &amp; Me is here to shine a light on those individuals tasked with safeguarding their employers’ information and integrity, day in and day out. Tune in every other week as host Megan (Phee) Brown, Director of International Sales at LogicGate, and her guests explore the issues and ideas that give shape to these interconnected functions. Just as GRC touches many parts of a business, so too will the podcast delve into a wide array of concerns—from current events and modern methodologies to cultural nuances and game-changing developments. Join us and learn why GRC is so critical to the future of any organization, where the industry has been—and where it’s going.

GRC & Me

This section highlights the crucial role of leadership in establishing a culture of security, making it a compelling and insightful moment.

Optimizing Risk: GRC Is No Longer a Cost Center – It’s a Business Enabler

DESCRIPTION

Today's Guests

Matt Kunkel

Nick Kathmann

Recent Episodes