When IT isn't the main focus of your business, the perspective on security changes, but the threats are often the same. It's often not fiscally feasible to expend resources "hunting" threats, which makes obtaining the right kind of threat intelligence crucial. Catherine Buhler, CISO of BlueScope Steel, will discuss how to create an agile security team that can effectively govern and make the most of managed security service providers, who are crucial partners in defense. She will help answer key questions such as: When an MSSP broadly reports your organization is 80 percent secure, why is that not good enough? How can we quantify and eventually eliminate unknown risks? And who do we call during a breaking incident to coordinate response and remediation?