Paul Proctor is a VP and Distinguished Analyst, and former Chief of Research for Risk and Security at Gartner. He leads CIO research for technology risk, cybersecurity and digital business measurement. Mr. Proctor advises CIOs, executives and boards to manage risk and balance the needs to protect with the needs to run their business. Mr. Proctor's coverage includes board reporting, outcome-driven metrics, risk management, the Cybersecurity Business Value Benchmark, and digital business transformation. His groundbreaking research in risk, value, and cost (RVC) management helps organizations prioritize and invest in the readiness of technology to support their business and mission outcomes. His work on cybersecurity as a business decision helps organizations prioritize and invest in cyber through protection level agreements (PLA) and outcome-driven metrics (ODM). In 2016, he was appointed to the University of California Cyber Risk Advisory Board by former Secretary of Homeland Security and UC President, Janet Napolitano.
Mr. Proctor has been involved in various aspects of risk management and the business value of IT since 1985. He was the founder and CTO of two technology companies and developed first and second-generation host-based intrusion-detection technologies. He is a recognized expert in the fields of risk management, information security, and associated regulatory compliance issues. He has authored two books published by Prentice Hall. He was recognized for his expertise by being appointed to the original Telecommunications Infrastructure Protection working group used by Congress to understand critical infrastructure protection issues prior to the terrorist attack of 11th September. Previously, he worked for SAIC, Centrax, CyberSafe, Network Flight Recorder, and Practical Security.
Founder and Chief Technology Officer
Chief Technology Officer
Gartner Research Board for Global CIOs
Technology Finance, Risk and Value Management
Executive Leadership: Digital Business
Executive Leadership: Strategic Risk Management
CIO Executive Leadership Development
B.S., Mathematics/Computer Science, University of Illinois
1CIOs treating cybersecurity as a business decision/investment
2Developing outcome-driven metrics to manage risk, value, and cost
3Linking risk management to corporate performance
4Measuring digital business transformation through KPIs
5Board-level reporting for security and risk