Speaking Topics

Bridging Cybersecurity and Business Risk

Cybersecurity risks are business risks. I frequently explore how organizations can align cybersecurity strategies with business objectives, enabling executives and boards to make informed decisions. Attendees will gain practical insights into how CISOs serve as a critical second line of defense and how compliance certifications can become a competitive advantage in regulated industries.

Navigating the Challenges of Compliance

Compliance isn’t just about meeting requirements; it’s about building trust. I share actionable steps to improve GRC maturity using my GRC Maturity Model and offer strategies to overcome the hurdles of passing audits and managing evidence requests. This session highlights practical ways to de-conflict relationships between cybersecurity and internal audit teams, fostering collaboration and efficiency.

Preparing for the Future of Regulation

The regulatory landscape is evolving, with AI and cybersecurity laws reshaping industries. In this session, I discuss horizon scanning techniques and how to adapt to emerging laws like the SEC’s cybersecurity disclosure rules or the EU AI Act. Attendees will leave with a clear understanding of how to align their strategies with global regulatory changes and litigation trends.

About Kayne

Photo of Kayne McGladrey

I’m Kayne McGladrey, CISSP, the Field CISO for Hyperproof, senior IEEE member, and author of the GRC Maturity Model. With nearly three decades of experience in cybersecurity, I specialize in helping organizations navigate the intersection of governance, risk, and compliance (GRC) to build more secure and resilient businesses.

My work focuses on enabling CISOs, internal audit teams, and executives to align cybersecurity and business goals, communicate effectively with boards, and proactively address evolving global regulations. As a recognized thought leader, I’ve been spoken at events like Gartner IT Security & Risk, RSA, ISACA GRC, and the ISC2 Congress. My presentations are nuanced, accessible, and actionable, offering attendees practical guidance on current cybersecurity challenges and opportunities.

Throughout my career, I’ve advised Fortune 500 and Global 1000 companies, leveraging my ability to bridge the gap between business and technology. I’m passionate about reducing organizational friction, improving GRC maturity, and inspiring underrepresented communities to pursue cybersecurity careers.

Award: Top 10 Thought Leader on Cybersecurity, Issued by Thinkers360
Award: Top 10 Thought Leader on Risk Management, Issued by Thinkers360
Award: Top 50 Thought Leader in North America, Issued by Thinkers360
CISSP Professional Credential

Recent Articles and Media

AI lifts workforces to new heights of efficiency and innovation

Kayne McGladrey, Field CISO at Hyperproof and Senior IEEE Member, says cybersecurity is also fertile ground for AI. “CISOs are looking at AI and automation solutions that handle common cybersecurity tasks. These include collecting evidence of control operations for the internal audit team, testing that evidence automatically, and producing regular reports on such things as false-positive cybersecurity events. These tasks help overworked cybersecurity analysts and engineers to focus on the parts of the job that they love without burdening them with excessive paperwork.”

Cyber Leaders S02 E03 (Feat. Kayne McGladrey)

It’s time we heard from people who live and breathe cybersecurity. Join me as we discuss the highs and lows of working in this industry, the topics that need clarifying, and those that need the B.S. removed. Kayne is active in the community and has offered some GRC maturity models to help anyone.

39% of IT leaders fear major incident due to excessive workloads

“Overwhelmed employees may become discouraged, leading to security nihilism, where they feel that breaches are inevitable and give up on maintaining security measures,” McGladrey said. “This can result in a lack of communication about potential threats, making it harder for security teams to respond effectively.”

Testimonials

“I would have liked to hear more detail in the how and would have been OK with a longer session. Great content!”

“Outstanding session and a very good discussion about the importance and limits of GRC and overall risk evaluation.”

“Would have enjoyed a longer session to deep dive in more BOD communication.”

“This was a good session for me. Not too technical.”