The Alliance for Enterprise Security Risk Management (AESRM) today presented Eddie Skey, senior solutions architect at Forsythe Solutions Group in Charlotte, North Carolina, USA, with the third annual Excellence in Security Convergence and Contribution to Enterprise Risk Management (ERM) Award at the 54th annual ASIS International Conference in Atlanta. AESRM is a partnership of international security organizations ASIS International and ISACA.
AESRM created the award to honor individuals who are leading the growing fields of ERM and security convergence, which is the integration of traditional and information security functions.
“The work of professionals such as Eddie Skey is helping enterprises realize more effective and efficient security, and AESRM is pleased to recognize his contributions,” said Emil D’Angelo, chair of AESRM. “We congratulate the finalists and nominees, and thank them for their continued efforts to advance the security profession through convergence.”
Skey was selected as winner as a result of his demonstrated ability to integrate all aspects of security into a comprehensive plan that address the needs of technical specialists as well as senior management. A member of ISACA, he is also a founding member and past president of the Charlotte (North Carolina, USA) Chapter of ISSA. Through this chapter, he created a scholarship for undergraduate and graduate students studying information security at the University of North Carolina. Each year, Skey brings in industry experts to speak at the annual ISSA Summit, which allows members to receive cost-effective security training.
According to one of his nominators, “Eddie possesses a technologically broad skill set as well as the innate ability to take feedback and questions from customers to discover new vulnerabilities and ways to mitigate them.”
Another of Skey’s nominators said he was most impressed by Skey and his abilities when Skey assisted in creating an information security plan at the nominator’s company.
“Skey impressed me by showing his methodology of selling such a plan to management. He wanted to change management’s perception of the plan by representing it as a competitive edge over the competition instead of as an insurance policy,” the nominator wrote. “This tactic showed management the return on investment and the total cost of ownership of the plan, which in my opinion was the most difficult task of all.”
Finalists for the annual AESRM award include Kevin Feimster, chief information security officer (CISO) of the National Stock Exchange in New Jersey, USA; Al Kirkpatrick, CISO of First American Corp. in California, USA; and John Paczkowski, director of emergency management and security of the Port Authority of New York and New Jersey in New York, USA.
Representatives from both AESRM partner organizations judged all nominations/entries. Among the criteria for the award was demonstrated leadership in improving the convergence of traditional and information security throughout an organization. The award also recognizes progress in areas such as improved security and decreased risk within an enterprise; achieved demonstrable ROI/cost savings; convergence progress achieved in all three domains of people, process and technology; and demonstrated leadership in sharing convergence accomplishments outside of one’s own enterprise.
Previous winners of the award include Sanjay Bahl, CISM, then the chief security officer of Tata Consultancy Services (TCS), India, and currently the CSO of Microsoft Corp. (India) Pvt. Ltd., and Dave Tyson, CPP, CISSP, then the chief security officer for the City of Vancouver, Canada, and currently the senior director of information security, disaster recovery and business continuity planning at eBay.
For more information on AESRM publications and initiatives or to view examples of convergence in action, please visit www.aesrm.org.