Can’t Hit the Curveball? Check in with a CISO

Can’t Hit the Curveball? Check in with a CISO

CISO Panels

When a batter goes into a slump, he seeks help from a batting coach. The coach analyzes the player’s swing, identifies lapses in fundamentals, and calls attention to them. Hold your head steady and straight over your lead shoulder. Keep your hands back. Take a short step towards the mound. Drive the bat knob toward the ball. Roll your wrists. Swing through the ball. These core elements, when executed consistently, allow batters to swing for average and power. Notice the batting coach doesn’t try to reinvent the batter’s swing. He doesn’t recommend a right handed batter try batting left handed or encourage a singles hitter to start swinging for the fences. The batting coach knows he can get a struggling batter out of a slump by stressing the fundamentals. CISOs have taken the same approach with employees who are now forced to work from home. Keep your eyes open for security gaps. Communicate those vulnerabilities. Maintain high standards of security from employees, peers, and partners. Ultimately, if we’re only in the third or fourth inning of this global pandemic, it’s important we maintain our focus. This advice will help not only the batter in the seven hole who gets fooled by the curveball but also the desk jockey who wants to click on a link or attachment.

CISO Street recently moderated a virtual CISO panel and asked panelists about their perspectives on several cybersecurity issues and trends. In this video, Christopher Rence, Chief Data, Compliance, Security and Risk Officer with EQ Holdings, Jake Margolis, CISO for the Metropolitan Water District of Southern California, Brent Lassi, CISO for Bluecore, and Eric Yancy, Information Security Officer for the City of Irving (TX) discuss the importance of fundamentals while working from home.

RELATED POSTS

Measuring a Cyber Awareness Culture

Measuring a Cyber Awareness Culture

Until recently, cyber awareness metrics have been treated by many as a tick-box exercise driven by regulations. The regulator requires x number of hours of cyber awareness training per employee per year, and once that is done, the organisation ticks a box and waits...

Good Enough Isn’t Good Enough Anymore

Good Enough Isn’t Good Enough Anymore

The cyber risks we face today are more than we faced previously but also fundamentally different in several respects. Our adversaries are more adept and their tools and tactics more protean in capability.  In light of these increasing challenges, our cyber defenses...

Stagehand: Episode 3

Stagehand: Episode 3

Cyprus ~ 2006 Ali Hassan was a low-level operative in Hezbollah, but we had it on solid authority that he knew where three high-level leaders of the terrorist organization were hiding. Keith arrived fifty-seven hours into Hassan’s interrogation and by the looks of it,...

Cyber Trends and Predictions for 2021
Share This