Carol A. Siegel is a Cybersecurity strategy and IT Risk Management professional with over 30+ years' experience. Carol earned her BS in Systems Analysis Engineering from Boston University in 1971, and her MBA in Computer Applications from New York University in 1984. She has CISSP, CISA and CISM certifications from ISC2 and ISACA respectively. Carol has co-authored one of the first books on Internet security, a book for Microsoft on Windows NT Security as well as numerous articles for Auerbach Publications on information security and risk management. Carol has worked for many Fortune 50 financial services companies in the Banking, Insurance, Big Four, and Pharma sectors and has held several Chief Information Security Officer (CISO) positions. Most recently, Carol worked for the Federal Reserve Bank of New York.

Mark Sweeney is a Cybersecurity and Cyber Resiliency professional with over 5 years of experience in strategizing and implementing risk-based cybersecurity and cyber resiliency programs. Mark earned his BS in Security & Risk Analysis - Information & Cyber Security from Penn State University in 2014. Mark has worked in Big Four consulting companies and the Financial Services Industry as a Cybersecurity and Cyber Resiliency expert and is currently a cyber underwriter.

Author Biographies. 1 Why Cybersecurity and Cyber Resiliency Strategies Are Mandatory for Organizations Today. 2 The 6 STEPs in Developing and Maintaining a Cybersecurity and Cyber Resiliency Strategy. 3 Strategy Project Management. 4 Cyber Threats, Vulnerabilities, and Intelligence Analysis. 5 Cyber Risks and Controls. 6 Current and Target State Assessments. 7 Measuring Strategic Plan Performance and End of Year (EoY) Tasks. 8 Checklists and Templates to Help Create an Enterprise-Wide Cybersecurity and Cyber Resiliency Strategy