About Aaron Worthman

In this episode of Risk Grustlers, Aaron Worthman, a seasoned leader in the cybersecurity realm, joins us. With over 25 years of experience and currently serving as a Board Member, as well as holding positions as (acting) CIO & CSO at Spire One, Aaron's career trajectory embodies adaptability and forward-thinking.

Aaron’s journey from hands-on operational roles to strategic leadership positions offers invaluable insights into navigating the complexities of risk management in today's digital landscape.
Description
The winding path of growth in risk management involves navigating uncertainties and establishing a baseline for security.

Prepare with us as we delve deep into finding the right balance between allocating resources for immediate needs and investing in long-term resilience for your security program with Aaron Wurthman.

Through this episode, we’ll also uncover how underspending on security can be a major concern leading to significant cybersecurity catastrophes. Along with this, we decipher how to begin the security journey within a company with a top-five checklist of key considerations.

Tune in now and seize this opportunity to elevate your understanding of risk management in today's digital age.
Highlight

• Dive into the nuanced discussion surrounding security spending and the philosophy that IT and security functions should operate as businesses within a business.
• Gain valuable insights into the process of setting a spending baseline for security programs, emphasizing the importance of collaboration and transparency.
• Uncover the critical balance between allocating resources for immediate security needs and investing in long-term resilience.
• Delve into the repercussions of underspending on security and the potentially catastrophic consequences, such as ransomware attacks and breaches.

Quotes from the episode

"Budgeting with all aspects of security in mind is truly a key requirement."

"By prioritizing collaboration, transparency, and long-term resilience, organizations can effectively safeguard their assets while driving sustainable growth."

"Having precise numbers is always great, but you need to first have established that rapport with the stakeholders in order for that number to be believed."

About Scrut Automation

Scrut Automation is a risk observability and compliance automation platform built to simplify information security monitoring for cloud-native companies. We help early-stage and growth-stage companies across the globe, establish enterprise-grade information security processes through an easy-to-use GRC platform.

To watch more of our episodes and learn more about us, visit us at https://www.scrut.io/podcasts