PAUL PERRY - SECURITY RISK AND CONTROLS PRACTIVE LEADER WARREN AVERETT
Paul Perry has been with Warren Averett since 2004 and is a Member and the Practice Leader of the Security, Risk and Controls Group. Paul and his team focus on cybersecurity related projects, risk assessments, internal control and information technology control-related projects, including Service Organizations Control engagements. Paul is also the leader of the Firm’s Data Analysis Group, a team of individuals within the Firm who provide data analysis solutions to both internal and external clients. For more than 11 years, he specialized in auditing and assurance services. Paul is also a published author, columnist and regular speaker on topics such as cybersecurity, data analysis, internal controls and information technology topics. In the last three years, Paul has performed more than 25 presentations per year on these topics.
AITS 2019 : Speaker Interview | Paul Perry, CPA
1) Please tell us about the work that you’re doing in the aerospace manufacturing sector:
We are assisting clients with the control environment of their organizaitons (operational, financial and technology enviornments). Based on a review of current processes, procedures and controls, we are advising on best practices in the industries and in working with new and emerging technologies. As it relates to cybersecurity, we are working to me create an awareness culture at organizaitons to help them understand the threats and how to combat those threats on both a micro and macro level.
2) What do you see as being the biggest impact of new technologies on the aerospace supply chain?
The biggest threat of introducing new technologies is keeping up with the cyber-related attacks on those technologies as they become more mainsteam – in order to not disrupt the few suppliers in the industry. Since majority of supplies are coming from a very few nuber of companies, any disruption in business can cause already stressed areas to tighten – longer lead times for supplies and higher costs for the new programs. There needs to be some collaboration across the few suppliers to make sure any vulnerabilities are known about as early as possible and that information is shared in real-time.
3) Is there one new technology that you think will dominate the aerospace manufacturing landscape in years to come, and why?
Robotics and machine learning / aritificial intelligence will be relied on more heavily by all industries in the coming years (to keep up with demand as more commercial related businesses come involved) and making sure the security behind the technology is as important than the technology itself.
4) Do you have any tips for how companies working in the aerospace sector can successfully transition to smart or intelligent processes?
(1) Do their due diligence on the processes (from all angles) before implementation. All organizations will be in a rush to beat the competition, but taking time to properly vet, test and retest the process before relying on it will pay dividends in the future. (2) Do not sacrifice security for convenience. New technologies (and all technology) is used and created to make our lives/processes more efficient and effective (more convenient) and there is nothing in the world that will give you all the convenience and all the privacy at the same time. You have to choose or you have to sacrifice some for the other.
5) What was your motivation to join this event?
To contribute to the narrative of security and making sure we create a cyber-awareness among all employees and companies so that the continued threat of a cyber-attack (and potential disruption to businesses across the entire industry) is minimalized as much as possible. Having an opportunity to discuss with best and brightest will help further the narrative for all involved and hopefully develop a community approach to the defense against cyber-related threats.