“WHAT IS
SECURITY’S ROLE?

Not the tasks that were assigned that previously defined it, but what is its role?”

Brian J. Allen, Esq., CPP, CFE, CISM, CISSP

Brian is a thought challenger, a motivational leader, and the forerunner in redefining security management as an integrated risk principled practice. This progressive philosophy, based on Enterprise Security Risk Management (ESRM) principles, transforms the outdated idea of security as a disassociated task-based trade to a strategically integrated risk management profession. Applying ESRM principles sets a clear, consistent foundation for quantifying and managing physical and cyber risk. Brian instructs executives and senior management on how to assimilate these principles into everyday business practice. Security, through the lens of ESRM, becomes an enterprise’s roadmap for meaningful effective risk management.

With over 20 years of experience in the security industry, most recently serving as Chief Security Officer (CSO) for Time Warner Cable, Brian applied ESRM principles to protect and manage physical and cyber risks worldwide. Brian’s successful application of ESRM principles at Time Warner Cable coupled with his expertise and experience in management, policy, and law led to keynote speaking engagements and strategic advisory work at the executive level.

Brian authored two books dedicated to defining and teaching ESRM principles and wrote numerous risk management related articles published in industry media. He speaks domestically and internationally to build awareness, define security organizational roles within enterprises, and inspire educated action necessary to effectively manage risk across all aspects of an enterprise.

  • 20+ years experience in the security industry
  • Chief Security Officer of a business leader in critical infrastructure, managing physical security, cyber governance, and business continuity management
  • Defining leader in the implementation of U.S. President’s Executive Order regarding the NIST cybersecurity framework
  • Expert in Business Continuity Management (BCM), Fraud Prevention and Management, Crisis and Emergency Management, Government and Public Relations
  • Lecturer at UConn School and Business MBA Program
  • Authored two books on Enterprise Security Risk Management (ESRM)

Security Risk Governance Group is a security executive advisory firm comprised of a global network of experts in the fields of security management, cybersecurity governance, and holistic enterprise security risk management practices.

Our firm implements organizational assessment and transformation, provides security management solutions, and enterprise security risk management implementation.

Successfully implementing an ESRM program provides a Board-Level understanding of a progressive security program, a strategic roadmap, effective budgeting processes, and valuable risk-based reporting for cyber, physical, and information risks. We tailor a flexible and adaptive approach to any organization, maximizing the strategic value to the enterprise objectives.