- Gartner client? Log in for personalized search results.
Gartner Expert
Paul E. Proctor
Distinguished VP Analyst
Paul Proctor is a VP and Distinguished Analyst, and former Chief of Research for Risk and Security at Gartner. He leads CIO research for outcome-driven metrics. His strength in connecting investment to business outcomes supports CIOs across diverse challenges including digital investment, cost optimization, measurement, board reporting, cybersecurity, M&A and risk management. Mr. Proctor advises CIOs, executives and boards to manage risk and balance the needs to protect with the needs to run their business.
Mr. Proctor's groundbreaking research in risk, value, and cost (RVC) management helps organizations prioritize and invest in the readiness of technology to support their business and mission outcomes. His work on cybersecurity as a business decision helps organizations prioritize and invest in cyber through protection level agreements (PLA) and outcome-driven metrics (ODM). This work also led to the creation of the world's first protection-level benchmark that is transforming how organizations in every industry, of every size, globally measure, report, and invest in cybersecurity. In 2016, he was appointed to the University of California Cyber Risk Advisory Board by former Secretary of Homeland Security and UC President, Janet Napolitano.
Previous experience
Mr. Proctor has been involved in various aspects of risk management and the business value of IT since 1985. He was the founder and CTO of two technology companies and developed first and second-generation host-based intrusion-detection technologies. He is a recognized expert in the fields of risk management, information security, and associated regulatory compliance issues. He has authored two books published by Prentice Hall. He was recognized for his expertise by being appointed to the original Telecommunications Infrastructure Protection working group used by Congress to understand critical infrastructure protection issues prior to the terrorist attack of 11th September. Previously, he worked for SAIC, Centrax, CyberSafe, Network Flight Recorder, and Practical Security.
Professional background
Centrax, Founder and Chief Technology Officer, 2 years
CyberSafe, Chief Technology Officer, 3 years
SAIC, Engineering Manager, 10 years
Areas of coverage
-
Gartner Research Board for Global CIOs
-
CIO Management of Technology Finance, Risk and Value
-
Executive Leadership: Digital Business (Retired)
-
Executive Leadership: Strategic Risk Management
-
CIO Executive Leadership Development
Education
B.S., Mathematics/Computer Science, University of Illinois
Top Issues That I Help Clients Address
CIOs treating cybersecurity as a business decision/investment
Developing outcome-driven metrics to manage risk, value, and cost
Linking risk management to corporate performance
Measuring digital business transformation through KPIs
Board-level reporting for security and risk