Build Better Defenses
October 29–30, 2017: Training
October 30–November 1, 2017: Tutorials & Conference
New York, NY

"Build me a world-class security program in three months"

Christie Terrill (Bishop Fox)
1:15pm–1:55pm Tuesday, October 31, 2017
Teachable moments
Location: Sutton South
Average rating: ****.
(4.33, 3 ratings)

Who is this presentation for?

  • Security directors and managers, CISOs, and security consultants

Prerequisite knowledge

  • Familiarity with the breadth of security program functions

What you'll learn

  • Understand approaches for security program strategy and planning
  • Learn how to best communicate with executives and effectively staff interim roles with contractors or consultants


How do you respond when your company’s executives want you to go from an understaffed security team to a world-class security program in an unreasonably short time frame? Christie Terrill shares a case study from a prominent healthcare provider that describes how she met the charge, managed expectations, and built a security program to be proud of in only three (read: nine) months.

At the end of that journey, the security team (which had successfully tripled in size) had implemented an outsourced security monitoring provider, reevaluated all the security products currently in use, and handed over a strong program to the newly hired CISO. Along the way, they inadvertently made an enemy or two, changed staffing based on performance, and didn’t hit 100% of their milestones. Despite this, the client executive team was thrilled with the delivered program.

If you hope to build a first-rate security program someday, join Christie to learn actionable tips on how to navigate the expectations of executives, the existing team, and the new team members who join your organization.

Photo of Christie Terrill

Christie Terrill

Bishop Fox

Christie Terrill is a partner at Bishop Fox, a security consulting firm providing services to the Fortune 500, global financial institutions, and high-tech startups, where she provides engagement oversight, thought leadership, and client relationship management to Bishop Fox’s New York clients. She has more than a decade of information security experience in providing security advisory services. Previously, Christie worked in the security consulting practices at Accenture and Ernst & Young. Christie is a monthly contributor to Forbes, where her articles translate cybersecurity issues into business-relevant action. She is a frequent speaker at events around the country, including Dark Reading webinars, the Women in Cybersecurity Conference, Career Discovery in Cyber Security: A Women’s Symposium, and the BayThreat 2012 Conference. She was technical editor for the “Legal, Regulatory, and Standards Compliance” chapter in Information Security: The Complete Reference and has appeared in publications such as MarketWatch, eWeek, Infosecurity Magazine, and InfoWorld. Christie holds a BA with honors from the University of California, Santa Cruz.