Together, security and privacy teams share a common goal: Protect the organization from reputational damage, lawsuits, and regulatory trouble. On one hand, ISO 27001 focuses on the assessment of risks and protection of the organization. On the other, the GDPR aims to assess and protect the rights and freedoms of individuals. With a joint goal in mind, it is crucial that security and privacy teams work together to develop a common language that produces greater productivity and takes advantage of collective efforts. In this session, OneTrust will present findings from research conducted in cooperation with the International Association of Privacy Professionals (IAPP), sharing how ISO 27001 and the GDPR overlap, as well as how security and privacy teams can work together to become more effective.

Brian Philbrook, Privacy Counsel, OneTrust
Leon Ravenna, Chief Information Officer, KAR Auction Services Inc.
Dr. Barbara S. Walker, Sr. Director, Global IT Operations and Security, PolyOne Corporation

Room 301

Conference Materials


Brian Philbrook
Brian Philbrook

Privacy Counsel

Leon Ravenna
Leon Ravenna

Chief Information Officer
KAR Auction Services Inc.

Barbara Walker
Barbara S. Walker

Sr. Director, Global IT Operations and Security
PolyOne Corporation