Changing from Probability to Prioritization Method in Risk Measurement
RSA Conference 2024 · Track Session
In an era where organizations face an ever-growing deluge of security vulnerabilities, the traditional methods of risk assessment and prioritization often fall short, leading to overwhelmed teams and persistent exposure. Glauco Sampaio, Chief Information Security Officer at Cielo, a major Brazilian payment systems company, addressed this critical challenge at RSAC 2024. His talk, "Changing from Probability to Prioritization Method in Risk Measurement," detailed Cielo's transformative journey from a reactive, probability-centric approach to a proactive, prioritization-driven model that is deeply aligned with business objectives.