CISO's perspective from the frontlines
All podcast episodes I had the honor to participate in and contribute to
Have you noticed that the relationship between buyer and seller, or more precisely, between CISO and seller is… eh … tenuous lately? OK, maybe it’s a lot worse than that in some cases. Why is that? How did we get here? And how do we fix a relationship that is quite clearly necessary, but just so broken? Rafal and I went down the security rabbit hole to discuss the challenges and...
In this episode of Defense In Depth podcast, David Spark, Allan Alford and I discussed: A security professional announces a new position as CISO. As a vendor you see this as good timing to try a cold outreach to sell your product. Why do so many vendors think this is a good tactic, when in reality it’s exactly what you should not do? and It all started because of this post I shared on LinkedIn
Allan Alford and I met on the at the Cyber Security Ranch podcast to talk about the SOC and why we are going about it all wrong. We identify and examine the three main areas of concern: the data, the analyst, the analysis – and how to improve upon them. I shared some thoughts with Allan on what steps and approaches need to be taken in order to successfully accomplish the SOC’s goal.
Successful chief information security officers are effective at getting their message across to the board. In this session I joined Rob Sloan , WSJ Research Director, and Tim Rohrbaugh, CISO at JetBlue, where we presented to a board member and have Dr. Anastassia Lauterbach critique our efforts. It was a fun conversation.
Our phishing tests are designed to make you feel bad about yourself for clicking a link. We’re starting to realize these tests are revealing how insensitive we are towards our employees, and the resentment and shame a phishing test can create.
I had the honor to be a guest on this episode hosted by David Spark (@dspark), producer of the CISO Series Podcast and Mike Johnson.
Fear is one of the seven universal emotions experienced by everyone around the world. Fear arises with the threat of harm, either physical, emotional, or psychological, real or imagined. In this episode of the Cyber Security Leadership podcast, Jeff Snyder and I discuss whether we have too much fear in business and in the cyber security practice.
In this episode of the Cyber Security Leadership podcast, Jeff Snyder and I discuss authenticity and what does it mean for a leader to be authentic. Being authentic means that you act in ways that show your true self and how you feel. Rather than showing people only a particular side of yourself, you express your whole self genuinely. That means to succeed in being authentic, you first have to...
Almost every CISO was asked during the job interview or right when they started, what will you do in your first 90 days? Many CISOs are ready to jump headfirst and tell the organization what needs to be done! Is that wise? Is there a better way?In this episode Jeff Snyder and I are joined by David Lam, the author of the book: “The New IQ: Leading Up, Down, and Across Using Innovative...
We’ve all been in situations at work where we secretly wish we could tell someone exactly what we think about them, or worse we had to fight an urge to go across the table and smack them over the head. While this type of reaction would have satisfied us in the moment, the long terms affects may be severe, hence we need Impulse Control. Where impulses are coming from, how do we control them, and...
I had the honor to be interviewed for the Wall Street Journal (WSJ) Pro Cybersecurity forum by Rob Sloan, Research Director, about how organizations prepare for Ransomware attacks.
CISO's perspective from the frontlines