How do you build and sustain organisational resilience?
Beyond the cyber threats, data breaches, risks and compliance, where are the opportunities for digital transformation and innovation in a post GDPR world?
More info:
https://content.ardoq.com/ardoq-events-join_us
Event created together with Sympatico Consulting:
https://www.sympaticoconsulting.co.uk/
2. BUILDING RESILIENCE POST GDPR
1630-16:35 Welcome
1635-1700 Integrating GDPR compliance into Security and Risk management
Petteri Vainikka, Ardoq CMO
1700-17:30 Panel Discussion
Sorcha Lorimer, Sympatico; Nic Miller, Aedile; Colan Mehaffey, Edinburgh
University:
How do you sustain organisational resilience post-GDPR?
1730-1930 Q&A
Networking drinks & canapés
3. Integrating GDPR compliance into Security and Risk
management
Petteri Vainikka // CMO // +358 50 584 5350 // petteri.vainikka@ardoq.com
RESILIENCE IN A POST GDPR WORD | EDINBURGH | AUGUST 14. 2018
4. About me
• >15 years experience in mobile, internet & data
technologies and their global markets
• Today focusing on compliance, governance and
digital transformation, CMO at Ardoq
• Past 7 years within the DMP market, resulting in
a ‘data perspective’ on things
• Always at the intersection of new technology
and its commercial application
5. We enable our customers to digitally transform. We do this by bringing business
together with IT, whilst respecting data privacy and creating good governance.
About Ardoq
8. ”Maintenance budgets for GDPR and
ePrivacy compliance are larger than
initial budgets — and they’ll only get
larger.”
”Fifty-eight percent have an annual
maintaining budget of $1M+” (And a
whopping 88% can look forward to an
annual maintenance budget above
$500k)
‘By year-end 2018, fewer than 50% of
companies affected will be compliance-
ready.”
”More than 60% of large organizations
will have a
privacy management program fully
integrated into the business by 2021.”
”Technology business unit
leaders responsible for compliance
platforms should consider AI
applications to ease process
complexities.”
Sources: Forrester Research (December 2017): Embrace The GDPR To Gain A Competitive Edge & Gartner Analysis (March 2018): Market Insight: Address GDPR Compliance With AI Applications
9. ”More than 60% of large organizations will have a
privacy management program
fully integrated into the business by 2021”
Source: Gartner Analysis (March 2018): Market Insight: Address GDPR Compliance With AI Applications
10. Business Operating System
Source: Presentation by Lars Jørgensen, Chief Digital Officer at Aera Payment & Identification at Gartner Enterprise Architecture and Technology Innovation Summit London 2018: Digital journey in fintech – lean EA in dynamic regulated market
”privacy management program
fully integrated into the business”
11. Source: Presentation by Lars Jørgensen, Chief Digital Officer at Aera Payment & Identification at Gartner Enterprise Architecture and Technology Innovation Summit London 2018: Digital journey in fintech – lean EA in dynamic regulated market
Corporate
Strategy Service
Architecture
Application
Architecture
Risk & Compliance Control
BOS: Seamless flow across corporate strategy to eGRC
17. Why address the GDPR as data?
Because
It is only one of many
Source: Regulatory compliance landscale of Norway based Aera Payment & Indentification, offering omni-channel retail payment and identification services to merchants
Finansforetaksloven Finansavtaleloven
IKT-forskriften
Betalingssystemloven Markedsføringsloven
E-handelsdirektivet
21. Delegated ownership, integrated analysis
Business
Architect
Information
Architect
Chief Risk &
Compliance Officer
Lawyer/
Ext. DPO
Source: Presentation by Lars Jørgensen, Chief Digital Officer at Aera Payment & Identification at Gartner Enterprise Architecture and Technology Innovation Summit London 2018: Digital journey in fintech – lean EA in dynamic regulated market
23. …then connect data dimensions that matter
• Deploy and operate multiple bite-sized and understandable
models that fit the domain needs instantly
• Compose your holistic architecture of smaller architectural
subsets
• Connect information across layers and models, evolve and
expand your metamodel over time organically
• Syndicate for overview and more extensive dependency
analysis as your security and compliance architecture grows
• Unleash graph querying to analyze complex vulnerability
and impact relationships
24. If I had more time, I would
have written a shorter letter.
– Blaise Pascal, 1657
Original quote in French: Je n’ai fait celle-ci plus longue que parce que je n’ai pas eu le loisir de la faire plus courte.
34. REPRESENT YOUR ORGANIZATION
AS DATA
Analyze and model change, trigger real-time
augmented notifications, and address eGRC
dynamically
NEW SECURITY
ARCHITECTURE IS
DATA-DRIVEN
RE-USABLE
EASY TO UNDERSTAND
CROWD SOURCED
35.
36. Petteri Vainikka // CMO // +358 50 584 5350 // petteri.vainikka@ardoq.com
Experience more at https://ardoq.com
37. PANEL DISCUSSION
How do you sustain organisational resilience post-GDPR?
Colan Mehaffey, The University of Edinburgh
Sorcha Lorimer, Sympatico Digital & Data Consulting
Nic Miller, vCISO, Aedile Consulting
Facilitator: Ralph Natter Berg, Ardoq
39. Networking drinks & Canapés
Stay in touch & find out more about how we can help with Digital,
GDPR, Privacy risk & Security:
ardoq.com
aedileconsulting.com
sympaticoconsulting.co.uk
Thank you.
Editor's Notes
Ardoq surveys can be auto-generated based on your meta-model, and the data that you’ve already added. You focus on one part of your model, where you need to gather data, or update data. Then you just create specific questions that you need answered.
This means that anyone can contribute with their knowledge and reuse existing data without you having to worry about them training them in Ardoq directly. Once you have the data, you get the automatically generated visualizations of your graph that can show dependencies for instance.