This week in the Leadership and Communications section, How much does a CEO or business leader need to know about cybersecurity, How businesses can drive innovation while delivering operational excellence, 6 resume mistakes CISOs still make, and more!
CyberRisk Alliance, in partnership with InfraGard, has launched the Critical Infrastructure Resilience Benchmark study. Measure your readiness for ransomware by completing the survey and getting your score. Visit https://securityweekly.com/CIRB to take the survey
Don't forget to check out our library of on-demand webcasts & technical trainings at securityweekly.com/ondemand.
As a business leader or a CEO of your company, you play a key role in influencing the right work culture. Creating a work culture and norm that aligns with cybersecurity goals is crucial and possibly the best defense against cybercrime adversaries, to begin with.
As cyber attacks grow in frequency and cost, chief executives are becoming greater targets for hackers for the expansive access the executives have. To mitigate future attacks, cybersecurity can’t just involve the CISO.
Here are a few best practices and principles that strategic CIOs can apply to drive innovation and deliver operational excellence at the same time with minimal, incremental increases in investment.
1. Invest once to solve multiple challenges
2. Embrace automation around targeted processes
3. Take advantage of market shifts or disruptions to invest in IT
Cybersecurity is a highly dynamic field. The need for rapid, experiential decision making, organized thinking and the ability to strategically communicate to a non-security audience are almost second nature to many CISOs.
In order to truly succeed as a CISO in today’s digital world, here are some top qualities that all CISOs need to possess to excel:
2. Relationship Builders
3. Servant Leadership
The top security job has evolved from a technology-focused role into an executive position. Does your resume reflect that shift?
Recruiters and executive advisors agree: Candidates for CISO positions must design their resumes to showcase their leadership capabilities, not their technical credentials.Here are the top 6 mistakes:
1. Failing to show executive abilities
2. Leaving out achievements
3. Getting too techie
4. Leaving out experience with breaches and hacks
5. Making too little (or too much) of industry connections
6. Poor formatting, rookie mistakes and unintended misrepresentations
Everyone gets a little nervous about job interviews. What should you do to prepare? Practice? Script answers to the interviewer’s potential questions? All good, but the most important thing you can do is prep your body language. Here are a few tips to give you the extra body language edge to get the job:
1. Don’t Block
2. Don’t Self-Touch
3. Relax With Your Hands On The Table
4. Have One Bag
5. Don’t Forget the Back of Your Shoes!
6. Smile Right
7. Don’t Contract, Don’t Expand
8. Start in The Parking Lot
9. Wear Clothes that Fit Perfectly
10. The Mirror Nod
11. Don’t Sweat Like Nixon
12. Don’t Wait Around
13. Your Social Glue
In the leadership and communications section, A Letter from the CISO to the CEO, The High Cost Of Ignoring Cybersecurity: Why Your Business Needs Protection, The Art of Speaking Cadence: Unleashing a Powerful Leadership Tool, and more!
What will the future bring with respect to AI and LLMs? Josh has spent some time thinking about this and brings us some great resources. We'll discuss how to get students involved with AI in a safe and ethical manner. How can we use AI to teach people about cybersecurity? What tools are available and where do they fit into our educational systems t...
Reaching the level of CISO in a large corporation requires time and determined application as well as aptitude and very specific professional and personal attributes. It's the role against which many security professionals set their career sights without really knowing what they'll be getting themselves into.
Fitzgerald, T. 2019. Chapter 14. CISO ...