Take a Risk - Ville Rantamäki
Disobey 2026 · Main Stage
Ville Rantamäki's talk, "Take a Risk," presented at Disobey, offers a critical re-evaluation of **information security risk management**. While the conference theme, "first principles," might suggest a deep dive into technical vulnerabilities or offensive tactics, Rantamäki instead pivots to the foundational yet often misunderstood discipline of risk management. He argues that effective risk management is the true starting point for any robust security strategy, preceding technical investments and operational plans. This talk is not about specific hacks or zero-days but rather about the strategic and organizational frameworks that enable security professionals to communicate value, secure budget, and align their efforts with overarching business objectives.
AI review
Competent, well-structured walkthrough of risk management fundamentals aimed at practitioners who struggle to speak management's language. Nothing here will surprise anyone who's read FAIR, NIST RMF, or spent time in a GRC role, but it's delivered clearly and without vendor noise — which, at Disobey, is worth something.