Search IANS

Long regarded as a compliance-driven, check-the-box function, GRC is evolving into a strategic enabler that directly supports business goals, resilience, and sustainable growth.

Todd Inskeep is CEO of Incovate Solutions and hands-on advisor to CISOs, CIOs, and business leaders. He brings 25+ years of cybersecurity & innovation at NSA, Bank of America, Booz Allen, & more. Todd built one of the first consumer banking MFA programs, managed major ransomware recovery efforts in healthcare, and routinely advises clients on building programs to meet NIST CSF, HIPAA, and cyber insurance needs. He's led projects on identity & access management, risk quantification, incident response, plus program assessment and maturity. He serves as a fractional CISO across industries, currently building out AI governance programs.

Caroline Wong is a seasoned cybersecurity executive with nearly two decades of experience spanning governance, risk, compliance (GRC), penetration testing, executive security leadership, and cybersecurity education. She currently serves as the Cybersecurity Director at Teradata. Caroline’s career includes leadership roles at prominent organizations such as eBay, Zynga, Symantec, Cigital, and Cobalt. Her diverse background enables her to bridge deep technical understanding with executive strategy, making her a trusted advisor and transformative leader in the cybersecurity space.

This document is one of the 22 key principles found in the IANS Privacy Operational Framework for security teams. It provides baseline and enhanced guidance on how to integrate privacy engineering to support consistent and ethical decision-making in product and service design or deployment. 

Privacy by Design (PbD) redefines cybersecurity by embedding privacy protections directly into security architecture, making data privacy a core measure of a program’s effectiveness. This guide equips security leaders with actionable strategies, real-world case studies, and alignment tools to integrate PbD principles into daily operations and long-term frameworks like NIST.

This IANS guide helps security and risk teams confidently scale their AI assessment processes. Learn how to prioritize high-risk vendors, treat AI outputs safely, and streamline evaluations with a repeatable framework.

Gain valuable insights from our fifth annual cybersecurity budget benchmark study, conducted in partnership with Artico Search. This comprehensive report draws on survey responses from over 750 CISOs across the U.S. and Canada, collected between April and August 2024.

Cyber Resilience has become THE hot topic at the IANS CISO Roundtables we've hosted this year. As security supply chains become more complex and inter-dependencies grow, modernizing your resilience capabilities is essential. Clients are turning to Tabletops in order to test and measure their effectiveness here, but how do you know if you're doing it right and getting value?