Again, a fantastic episode! I would have a suggestion for a potential future podcast: I noticed during my career that some individuals, who never or barely dealt with Cybersecurity, always put walls on your way such as "we should be fine", "I don't see how this would impact us", "I don't think this is possible" etc... This type of individual usually have a strong ego, and even after providing evidence, they completely ignore your professional advice, and that creates trouble to get things done/done on time. How do you deal with those Eric? Thank you.
Remember, we are not always invited into the room. CISO must insist on business risks, reputation, avoid to say "security risks." Speak the business parlance in order to be embraced as a brother in arms. Most of it is perception management.
Dr. E. You mentioned a Deputy CISO, in the context of someone not providing all the needed facts to avoid budget cuts. I get your point, CISO’s need to market better. With that said with the increases in attacks this year over last, ongoing lack of resources, what is your opinion on companies hiring Deputy CISO’s to support the existing CISO? For example companies with large subsidiaries but central core management. My opinion is a significant number of CISO’s are very over worked and not always able to focus on some of these ‘communication & marketing metrics, they need to be advising on’ they do not always have a clear pulse on their infrastructure and business risk shortfalls. If you agree, It would be great to see a dedicated podcast on this. Thanks!
This one was rock solid. They all are actually, but i had to re-watch this for 2024 yesr end. Thanks doc!
This is an absolute gem 💎
Great episode Dr Cole.❤
Always Excited For Eric's Episodes 😁
Again, a fantastic episode! I would have a suggestion for a potential future podcast: I noticed during my career that some individuals, who never or barely dealt with Cybersecurity, always put walls on your way such as "we should be fine", "I don't see how this would impact us", "I don't think this is possible" etc... This type of individual usually have a strong ego, and even after providing evidence, they completely ignore your professional advice, and that creates trouble to get things done/done on time. How do you deal with those Eric? Thank you.
Remember, we are not always invited into the room.
CISO must insist on business risks, reputation, avoid to say "security risks."
Speak the business parlance in order to be embraced as a brother in arms.
Most of it is perception management.
Dr. E. You mentioned a Deputy CISO, in the context of someone not providing all the needed facts to avoid budget cuts. I get your point,
CISO’s need to market better. With that said with the increases in attacks this year over last, ongoing lack of resources, what is your opinion on companies hiring Deputy CISO’s to support the existing CISO? For example companies with large subsidiaries but central core management. My opinion is a significant number of CISO’s are very over worked and not always able to focus on some of these ‘communication & marketing metrics, they need to be advising on’ they do not always have a clear pulse on their infrastructure and business risk shortfalls. If you agree, It would be great to see a dedicated podcast on this. Thanks!
One struggle is assigning dollar amounts to cybersecurity attacks. Does anyone have guidance on where to obtain realistic numbers?