CISO Stories

The Company’s Lawyer is Not Your Lawyer – Legal Self Defense – Larry Dietz – CSP #125

June 6, 2023

Joe Sullivan has shown all of us that CISOs are on the front lines when it comes to breaches and their legal aftermath. Unfortunately, most CISOs are not attorneys and may not understand the rules of engagement with law enforcement to the point where they may find themselves in legal jeopardy for ‘doing the right thing’. Join Larry Dietz long time ...

DevOps

Are We Thinking in the Right Way as CISOs? – Sajan Gautam – CSP #124

May 30, 2023

CISOs want to enable the business. But sometimes we must stand our ground and explain our position with rationale. So, how do we convince other people to act without telling their baby is ugly? Join us, as we discuss having difficult conversations. Segment Resources: https://cms.cyberriskalliance.com/wp-content/uploads/2023/06/Leading-Difficult-...

Leadership

Using Data to Estimate Cyber Risk Financial Implications – Paul Sand – CSP #123

May 23, 2023

The CISO who can speak to the financial implications of cyber risk will be able to successfully work amongst the C-suite and in the board room to prioritize and address cyber initiatives. Building a view of the financial implications of those risks based on real data enhances not only the CISO’s decision-making ability but also the CISO’s credibili...

Careers

SEC Cybersecurity Risk Governance Requirements – Christopher Hetner – CSP #122

May 16, 2023

In April, the SEC is expected to finalize new rules on cybersecurity. The rules will require every publicly traded company to file disclosures with descriptions of their security strategy, governance, and risk management. Companies will need to explain to shareholders how they assess cyber risk, describe their security policies, and demonstrate a s...

Careers

Cyber-Local: City of Chicago Cybersecurity Mission – Bruce Coffing – CSP #121

May 9, 2023

All CISO roles are challenging. CISOs of large municipalities face many of the same risks with a unique set of challenges to overcome. Join us for a conversation about the rewarding experience of leading a government cybersecurity program for the nation’s third largest city.

Careers

Establishing and Enrolling Others in a Cybersecurity Vision – Joey Johnson – CSP #120

May 2, 2023

Writing a cybersecurity strategy is an essential role of the CISO. How do you avoid the strategy from becoming outdated? Shelfware? Not in line with the business? Join us as Joey articulates his techniques for gaining stakeholder adoption of the strategy.

Careers

Leadership Lessons Learned and Preparing your CISO Successor – Dave Estlick – CSP #119

April 25, 2023

Obtaining our first CISO role is an exciting and challenging experience at the same time. At some point, we will move on to another company. How have you prepared the person who needs to take your role? What knowledge and experience are you sharing with the next in line? Join Dave, as he has some great leadership lessons, approaches and tips for h...

Compliance

From Nothing to Something: Overcoming Hurdles – Larry Whiteside Jr – CSP #118

April 18, 2023

Everyone has a struggle or hurdle they will face. Your outcome is largely determined by your approach. Does this mean you will get OVER every hurdle? No. But sometimes, you can go around it or under it and still reach your final destination.

Compliance

20 Years of GRC: What Have we Learned? What is Next? – Michael Rasmussen – CSP #117

April 11, 2023

Ensuring organizations have the proper governance, risk and compliance (GRC) practices is essential to ensuring risks are appropriately mitigated. Join us as we discuss the interconnectedness of risk, the process of GRC , and Michael’s thoughts on how to improve the process.

Careers

County Government Cyber: Don’t Let the Roadblocks Stop You – Michael Dent, Richard Greenberg – CSP #116

April 4, 2023

How is County Government Security different from company cybersecurity? Is it difficult to get funding and attract resources? What are the advantages to working in Country government cybersecurity? Join two experienced County Government CISOS, with experience in leading cybersecurity in two of the largest counties in the U.S, Fairfax County and Los...

Compliance

Connecting with Higher Education: New Talent at the Source – Fred Kwong – CSP #115

March 28, 2023

Finding cyber talent is difficult in today's market. At a time when cyber salaries are high, working with universities to tap into the new cyber workforce is something all companies should be looking at. Today we will explore how to work with universities to bring talent to your organization.

The Company’s Lawyer is Not Your Lawyer – Legal Self Defense – Larry Dietz – CSP #125

Are We Thinking in the Right Way as CISOs? – Sajan Gautam – CSP #124

Using Data to Estimate Cyber Risk Financial Implications – Paul Sand – CSP #123

SEC Cybersecurity Risk Governance Requirements – Christopher Hetner – CSP #122

Cyber-Local: City of Chicago Cybersecurity Mission – Bruce Coffing – CSP #121

Establishing and Enrolling Others in a Cybersecurity Vision – Joey Johnson – CSP #120

Leadership Lessons Learned and Preparing your CISO Successor – Dave Estlick – CSP #119

From Nothing to Something: Overcoming Hurdles – Larry Whiteside Jr – CSP #118

20 Years of GRC: What Have we Learned? What is Next? – Michael Rasmussen – CSP #117

County Government Cyber: Don’t Let the Roadblocks Stop You – Michael Dent, Richard Greenberg – CSP #116

Connecting with Higher Education: New Talent at the Source – Fred Kwong – CSP #115

Leadership News & Analysis

Lawmakers want to train rural hospital workforce to address cybersecurity needs

2023 SC Awards Finalists: Best Security Company

2023 SC Awards Finalists: Security Executive of the Year

Ex-Uber security chief sentenced to three years of probation for data-breach cover-up

Sifting through the top cyber myths in the military service branches