ESRM - Key Persons

Brian Allen was the Chief Security Officer for Time Warner Cable, a critical infrastructure, Fortune 130 enterprise. He worked for EY as the sub-competency lead for their cyber risk management program efforts, presenting to dozens of boards and c-suite executives at some of the largest global organizations. Today, Brian works at The Bank Policy institute as the SVP, Cybersecurity and Technology Risk Management, working with bank executives (CEO, GC, CRO, CISO), advocating for the industry in front of regulators, legislators, law enforcement agencies, and the intelligence communities. Mr. Allen has worked on several industry and government coordinated critical infrastructure groups including the executive committees of the Comm-ISAC and Comm-Sector Coordinating Council. He was appointed by the FCC Chairman to represent the communication industry in working with NIST on the development of the Cybersecurity Framework. Mr. Allen is an author of two enterprise security risk management books, an Adjunct Professor at the University of Connecticut's MBA Financial Risk Management program, teaching cybersecurity risk and enterprise risk management concepts, and has spoken globally on the topic, including multiple keynote addresses. He holds multiple industry certifications and is a member of the New York State Bar Association. Thought challenger, motivational leader, and the forerunner in redefining security management as an integrated risk principled practice. This progressive philosophy, based on Enterprise Security Risk Management (ESRM) principles, transforms the outdated idea of security as a disassociated task-based trade to a strategically integrated risk management profession. Applying ESRM principles sets a clear, consistent foundation for quantifying and managing physical and cyber risk. Brian instructs executives and senior management on how to assimilate these principles into everyday business practice. Security, through the lens of ESRM, becomes an enterprise's roadmap for meaningful effective risk management. With over 20 years of experience in the security industry, most recently serving as Chief Security Officer (CSO) for Time Warner Cable, Brian applied ESRM principles to protect and manage physical and cyber risks worldwide. Brian's successful application of ESRM principles at Time Warner Cable coupled with his expertise and experience in management, policy, and law led to keynote speaking engagements and strategic advisory work at the executive level. Brian authored two books dedicated to defining and teaching ESRM principles and wrote numerous risk management-related articles published in industry media. He speaks domestically and internationally to build awareness, define security organizational roles within enterprises, and inspire educated action necessary to effectively manage risk across all aspects of an enterprise.

Job Titles:

• Business and Technology Writer

Terry Allan Hicks is a longtime business and technology writer, focusing primarily on the interrelated areas of financial services, information security, and regulatory compliance and corporate governance, with experience including more than twenty years as a senior writer with Gartner, the world's leading IT research and advisory firm. He is also the published author of more than twenty books.