Gary S. Chan is an information security management consultant focused on helping businesses stay secure and meet compliance obligations. He earned a B.S. in Electrical Engineering & Computer Science from MIT and is a Certified Information Systems Security Professional (CISSP), an Information Systems Security Management Professional (ISSMP), a Certified Healthcare Information Systems Security Practitioner, and a Certified Fraud Examiner (CFE). He has excelled in multiple security roles, ranging from individual contributor to C-Suite leader.
Gary formulates plans with company executives to achieve business outcomes related to security. He takes time to understand their organization and develop a security strategy that is both cost-effective and aligned with company culture. After a full analysis, Gary creates a plan, designs technical solutions, and finds the right people and technology to make it happen. In addition, he can assess a company’s existing security team, reorganize it, and train the team to be more effective at detecting, preventing, and responding to cyber threats.
On today’s episode of Tech Talks Daily, Gary discusses:
• Why small companies need to think about cybersecurity and how to do it
• How large enterprises can build effective and efficient cybersecurity programs
• Security innovation, whether it’s about new ways to cheat the system or new ways to find the cheaters
• Cybersecurity policy, whether at the national level (e.g. laws Congress should pass) or for a specific company (e.g. rules that employees need to follow)
Companies hire Gary Chan to help them build or improve their cybersecurity programs. He has 16 years of experience, four security certifications, and an electrical engineering and computer science degree from MIT. Having worked in over a dozen countries, Gary has deployed security solutions to multiple state agencies, built the information security program for large-cap companies, mentored cybersecurity start-ups, and given seminars on cybersecurity. He’s here today to discuss how companies can build information security that makes pragmatic sense.
Subscribe to the Tech Talks Daily Podcast