Chief Information Security Officer, State of California Controller's Office
Adam German is the Chief Information Security Officer for the California State Controller’s Office (SCO), where he has over a decade of experience working for the world’s fifth largest economy’s Chief Fiscal Officer. SCO ensures the state government’s monetary resources are independently accounted for and disbursed according to law in a timely manner. As the CISO, Adam works towards protecting taxpayer dollars by promoting transparency through modeling financial integrity and supporting accountability throughout California government. SCO employs approximately 1,600 state workers and is responsible for the accountability and disbursement of the state’s financial resources.
Adam has extensive knowledge in the field of Information Security, and his record of achievements demonstrate his success at leading, managing, and delivering security solutions. He is the current President of the ISACA-Sacramento Chapter. He also teaches ISACA certification courses, participates in multiple local and national security forums, and volunteers his time serving in local information security study groups.
In this candid discussion, Adam will address the disconnect which persists within the realm of Information Security. Specifically, he will delve into the astonishing and frustrating oversight of many Information Security Officers who have yet to fully grasp the holistic concept of security as it encompasses both physical and cyber domains.
It's alarming that in this day and age when the boundary between the physical and the digital has become so blurred, professionals still treat these two facets of security as distinct entities. This is a disservice to the field and a considerable risk to the organizations they protect.
Adam has seen firsthand the effects of this compartmentalization and how it hinders our ability to protect assets and data effectively. He will share insights on the urgent need for a unified approach to security that blends traditional physical security practices with cybersecurity measures, emphasizing the interdependencies and overlaps.
Adam will outline the challenges he has faced, the lessons he has learned, and the strategies he has found most effective in his efforts to implement and promote a truly comprehensive, integrated security strategy. The ultimate goal is to encourage fellow professionals to shift their perspective and understand the broad scope of information security, which touches every aspect of an organization, from its physical premises to its virtual presence. By doing so, we can better equip ourselves and our businesses to navigate and mitigate tomorrow's increasingly complex security threats.
This talk will challenge conventional thinking and spark a much-needed conversation about the imperative to unite physical and cyber security under one comprehensive, coherent framework. Only then can we genuinely secure our systems, data, and, ultimately, our future!