Why Your Current Security Risk Assessment is Not Effective and How to Fix It – Doug Landoll – BSW #270

Most current security risk assessments are not effective. Doug Landoll joins BSW to explain how we can fIx this. Doug will share 5 Essential Elements of an Effective Security Risk Assessment, including:

– Scoping, Scheduling, and Champions
– Team Structure
– Data and Measurements
– Calculations and Analysis
– Reporting, Presentation, and Tracking Visit https://www.securityweekly.com/bsw for all the latest episodes!

Full Episode Show Notes

Why Your Current Security Risk Assessment is Not Effective and How to Fix It


Doug Landoll

Doug Landoll – CEO at Lantego


Douglas J. Landoll (CISSP, MBA, ISSA Distinguished Fellow) is a recognized leader in cybersecurity with over 34 years
experience in evaluating cybersecurity controls and system
assessments for top corporations, and government agencies.

He is the author of numerous cybersecurity publications
including, The Security Risk Assessment Handbook, Information Security Policies, Procedures, and Standards, and The Physical Security Field Guide. His cybersecurity
publications are used as textbooks in university cybersecurity programs and as reference books for cybersecurity professionals.


Ben Carr

Ben Carr – CISO at Cradlepoint

Ben Carr is the Chief Information Security Officer at Qualys. He is an information security and risk executive with more than 25 years of experience in developing and executing long-term security strategies. Ben has demonstrated global leadership and experience, through executive leadership roles of advanced technology, high risk, and rapid-growth initiatives, at companies such as Aristocrat, Tenable, Visa and Nokia. While at Aristocrat, Ben built a world-class global cybersecurity program from the ground up as part of a digital transformation. As a senior cybersecurity executive at Visa, Ben was responsible for developing and leading Visa’s Global Attack Surface Management Team and capability. Prior to Visa, he led all security programs for Nokia corporate IT as the Global Head of IT Security. Ben holds a certificate in Risk & Information Systems Control (CRISC), is a Certified Data Privacy Solutions Engineer (CDPSE).

Jason Albuquerque

Jason Albuquerque – Chief Operating Officer at Envision Technologies


Jason Albuquerque is the COO of Envision Technologies.

Matt Alderman

Matt Alderman – Executive Director at CyberRisk Alliance


Strategic Advisor at Automox, security consultant, and wizard of entrepreneurship.


  • Don’t miss any of your favorite Security Weekly content! Visit https://securityweekly.com/subscribe to subscribe to any of our podcast feeds and have all new episodes downloaded right to your phone! You can also join our mailing list, Discord server, and follow us on social media & our streaming platforms!