On-Demand Webinar

Ready? Set? Heroics! IT risk management practices to make you a hero during a crisis


The COVID-19 pandemic has put risk programs to the ultimate test, requiring swift and decisive action. Meeting these challenges may look like heroics, but the real champions are solid planning, preparation, and communication in your IT risk management program.

Watch this on-demand webinar to learn how a large healthcare insurance provider has been managing the IT risk impacts of the crisis, including how it transitioned 30,000+ employees to remote work in a matter of days. Brenda Callaway, Senior Director of Information Security, and Diane O’Brien, Divisional Vice President of Information Security Risk Management, discuss their approaches to managing cyber security risk, third-party risk, and business resiliency, and share how recent lessons learned are shaping their GRC future.

You’ll learn:

  • Key factors that enable teams to effectively execute IT risk plans during a crisis.
  • How to effectively communicate new IT threats, vulnerabilities, and mitigation plans to executives.
  • Considerations for automating routine tasks, including monitoring controls to save time and money, and reduce risk.
  • The role technology and data plays in communicating and executing sound IT risk management during a crisis.


Brenda Callaway

Divisional Vice President, Information Security Risk Management, HCSC

Brenda joined HCSC in 1993 and has spent most of her career in Information Security, including managing adherence with HIPAA Privacy and Security Regulations. She now leads the information security risk management program which is aligned with the enterprise and enables executives to make risk-based decisions and strategic investments.

Diane O'Brien

Senior Director, Information Security, HCSC

Diane is responsible for third party security management, GRC solutions, and business continuity and disaster recovery governance, supporting 31,000 employees and contractors. Prior to HCSC, she worked in financial services in various IT capacities to support trading operations. Over the course of her career, she has led infrastructure, IT security, and application development teams.

Dawn Gustafson

Client Partner, Galvanize

Dawn brings over 20 years’ experience in enterprise IT solution implementations and risk management. Prior to joining Galvanize, Dawn led the IT GRC function at a large, US nationally recognized healthcare organization. As a Galvanize Client Partner, Dawn helps guide organizations to mature risk management practices, supported by technology to automate processes and provide timely information to make the right decisions at the right time.