Multi-factor & Risk-based Authentication , Security Operations , Video
Profiles in Leadership: JT JacobyIRC CISO on Modernizing Security Controls to Detect Rather Than Respond to Problems
The International Rescue Committee has identified new processes and ways to safeguard information in the midst of rapid digital transformation, according to CISO JT Jacoby.
See Also: Risk-Based Security: What to Look for in an MDR Provider
The nongovernmental humanitarian organization went from having multi-factor authentication deployed on just 1,500 devices as recently as November to more than 10,000 today to help improve data privacy and security. Jacoby has tailored his messaging to different stakeholders in the organization so technical audiences get more depth while not forcing the CEO to hear about conditional access policies.
"We were just taking it on the chin too far in the response side of the house as opposed to the protect-and-detect side," Jacoby said. "Our leadership organization immediately prioritized investment, and we acquired a bunch of different systems and talent to go ahead and mitigate that."
In this interview with Information Security Media Group as part of the CyberEdBoard's ongoing Profiles in Leadership series, Jacoby also discusses:
- How he stays current on the security needs of his organization;
- How to most effectively support entry- and mid-level security workers;
- How to keep a work-life balance given the demands of the CISO role.
Jacoby is responsible for overseeing data protection for millions of beneficiaries who are part of the world’s most at-risk populations. Prior to joining the IRC in 2016, he served as consulting manager for PwC’s cybersecurity, privacy and financial crimes unit, where he focused on the financial services and critical infrastructure sectors. He previously pioneered the first NYC agency social media surveillance tool as a member of the city's housing authority, resulting in reduced tenant fraud and homicides.
CyberEdBoard is ISMG's premier members-only community of senior-most executives and thought leaders in the fields of security, risk, privacy and IT. CyberEdBoard provides executives with a powerful, peer-driven collaborative ecosystem, private meetings and a library of resources to address complex challenges shared by thousands of CISOs and senior security leaders located in 65 different countries worldwide.
Join the Community - CyberEdBoard.io.