Thoughtworks Technology Podcast

How to assess your organization's security maturity

Jun 13, 2024

Diana, Lisa, and Robin discuss their security maturity model, focusing on shifting security conversations to business terms. They explore the benefits of the model, leadership engagement, and cross-country collaboration. The podcast emphasizes the importance of empowering organizations to address security threats through open communication and continuous improvement.

40:01

Creator website

AI Summary

AI Chapters

Episode notes

Podcast summary created with Snipd AI

Quick takeaways

Implementing a security maturity model fosters a strong security culture within organizations.

The Security Maturity Model shifts security conversations towards a business-centric perspective empowering leaders in decision-making.

Deep dives

Evolution of the Business Security Maturity Model

The podcast delves into the development of the Business Security Maturity Model by Diana, Lisa, and Robin, highlighting the journey from its inception to its prestigious recognition as winners of the CSO 50 award. Robin describes the dimensions and sub-dimensions comprising the model, emphasizing its focus on fostering a strong security culture. The team's shift towards visualizing the model to aid comprehension among business leaders resulted in more effective communication and strategic planning across global business units.

Intro

2min

Business Security Maturity Model and CSO 50 Award

7min

Developing a Maturity Model for Security

7min

Analyzing Organizational Behavior, Engagement with Leadership, and Cross-Country Collaboration

2min

Enhancing Security Maturity Across Different Regions

18min

Empowering Organizations to Address Security Threats

3min

One of the fundamentals of security is self-awareness: knowing where you may be vulnerable, the practices and processes that aren't yet quite in place and what actions you need to prioritize are essential if your organization is to excel at security. But how can that be done? In complex and distributed teams, surfacing such knowledge can be incredibly difficult. One solution, though, is something called a security maturity model.

In this episode of the Thoughtworks Technology Podcast, Thoughtworks alumnus Diana Adorno and current Thoughtworkers Lisa Junger and Robin Doherty speak to host Alexey Boas about a security maturity model they've developed that was recognized by the prestigious CSO50 Awards. They explain the purpose of developing and using one, how theirs works and why it should matter to any organization that wants to get serious about the way it does security.

Remember Everything You Learn from Podcasts

Save insights instantly, chat with episodes, and build lasting knowledge - all powered by AI.

Thoughtworks Technology Podcast

How to assess your organization's security maturity

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

Evolution of the Business Security Maturity Model

Value and Impact of the Security Maturity Model

Motivation and Design Evolution of the Model

Global Adoption and Adaptation of the Model

Remember Everything You Learn from Podcasts