2020 Winner Profile


Tim Callahan


PROJECT DESCRIPTION: On a quest to discover “unknown” gaps in the security program and to mature the control environment, Aflac built a Cybersecurity Assurance Program (CAP) at the global level. This included a library of 137 controls, which aligned security programs in the US and Japan. The library was developed against the NIST Cybersecurity Framework. The testing process was laid out to mimic attributes of SOX testing that provide a higher level of “assurance,” specifically test of design and operating effectiveness, including sufficient evidence. In-depth testing proactively brought to light new areas where improvement was needed.

INDUSTRY: Insurance Industry