The Alliance for Enterprise Security Risk Management: A partnership of the three leading international security organizations, formed to address issues surrounding the convergence of traditional and logical security.

Dave Morrow

EDS

Dave Morrow is the chief security and privacy officer for EDS.

EDS is a leading global technology services company delivering business solutions to its clients. EDS founded the IT outsourcing industry more than 40 years ago. Today, EDS delivers a broad portfolio of IT and business process outsourcing services to clients in the manufacturing, financial services, healthcare, communications, energy, transportation, and consumer and retail industries, as well as to governments around the world.

In his role, Dave is responsible for EDS’ Chief Security and Privacy Office (CSPO), which includes all physical security, IT security, privacy, crisis management, executive protection, and corporate oversight for disaster recovery/business continuity and health and safety functions.

Dave took over the reins of EDS’ CSPO as it was in the initial stages of convergence of all aspects of EDS’ physical and logical security elements. Since taking the role of chief security and privacy officer in October 2005, Dave has made this vision of convergence a reality. He then went on to increase the visibility of this convergence to an unmatched level within the industry.

With almost 30 years of experience in the security industry, Dave is a recognized leader in integrating security with business strategy. The EDS CSPO is enabling business now as well as protecting it. Dave and his team are partnering with internal and external entities to provide more value to our clients.

The EDS CSPO involves global security operations in 45 countries and six continents. These operations are now fully integrated with EDS’ information security and privacy groups, executive support, crisis management, health and safety, and business continuity. All these significant operations are tied together through CSPO, with Dave at the helm.

Dave’s group is involved in ensuring that information is protected from laptop theft, hackers and social engineers. The group also provides crisis support during significant events, such as the recent bombings in Mumbai, India, and disaster recovery from hurricanes and tsunamis.

Dave’s charge is for CSPO to work hand in hand with the business and support accounts throughout the globe, ensuring that EDS is continuously reducing risk (both physical and logical) where possible.

He is frequently quoted in leading business and security industry publications, including the Wall Street Journal and USA Today. He has also represented EDS in expert testimony before Congress on IT security matters and as a guest speaker at national security conferences.

“Bringing together all aspects of security is essential to our mission to protect and enable. This evolution is a natural progression and the time for this manifestation is now,” Dave said. “I believe that security organizations that do not seize this moment in history to fully evolve into this convergence model will find themselves left behind, unable to provide the required support needed by the companies they serve.”

“The world is getting smaller, and every day is proving that all aspects of security are absolutely interconnected—even more than we had previously thought,” he continues. “You need to bring all of the pieces together into one place before you are able to fully realize the comprehensive picture formed by connecting the dots.”

Dave holds a master of science degree in systems management from the University of Southern California and a bachelor of science degree in business administration and information systems from Auburn University. He is a Certified Information Security Manager (CISM) and a member of several professional organizations, including ASIS International and ISACA. Throughout his career, he has had direct involvement in all types of security matters, computer forensics and technology-related criminal investigations.

Prior to taking leadership over EDS’ CSPO, Dave was the deputy director of EDS’ Global Security and Privacy Services. In this capacity, he headed a team of security experts who concentrated on defining, developing and implementing security and privacy capabilities and services for EDS clients worldwide.

Before joining EDS in 2001, Morrow was the senior vice president of Consulting at Fiderus, the first company in the world to focus entirely on services and solutions for security and privacy. Prior to joining Fiderus, Morrow served as the national leader of Computer Forensics and Incident Response Services at Ernst & Young LLP. He developed and managed Ernst & Young’s multimillion-dollar computer incident response, investigations and computer forensics practice from the ground up.

A retired lieutenant colonel in the US Air Force, Dave served as chief of computer crime investigations and information warfare as a special agent for the Air Force Office of Special Investigations (OSI). In this role, he supervised all computer-related investigations, oversaw a team of investigators and technicians worldwide, and managed a multimillion-dollar budget funding worldwide operations.

 

 

 

 

Copyright © AESRM 2008, All Rights Reserved.