CISO Blogs

Recent Articles

Five Best Practices to do Supply Chain Security Right

Five Best Practices to do Supply Chain Security Right

The potential for catastrophic supply chain attacks is mind-boggling when you consider a typical organization does business with hundreds, if not thousands, of third parties. The question isn’t whether your organization’s cyber threat vectors are expanding. You already know the answer is “yes.” The real question is what do you do about it?

read more
Stagehand: Episode 2

Stagehand: Episode 2

Carl Timmons: CISO of Illuminating Solutions, a data analytics firm, forty-seven years old, never been married. Last Thursday, Carl arrived in San Jose on business. He was picked up by a company car and driven to The Manifeld Hotel. He was last seen leaving the hotel Thursday night. By Friday afternoon Lincoln Palmer, the CEO of the hedge fund that owns a majority stake in Illuminating Solutions, was on the phone with me.

read more
The Dark at the Top of the Stairs

The Dark at the Top of the Stairs

You may be naturally inclined to conceal risks from the prying eyes of concerned leadership that may reflect poorly on you or your team, but you must resist the temptation.
If you don’t communicate cyber security matters – including organizational failures – from the people who run the business, you harm the organization.

read more
The Risk of Banking

The Risk of Banking

Mobile devices and applications have drastically reshaped the way we do business. More change is on the horizon as voice recognition, virtual and augmented reality, and artificial intelligence create new customer interfaces and business platforms. But is new technology driving the increased sense of risk?

read more
Effective Board Communication for CISOs

Effective Board Communication for CISOs

If you’re a CISO, your Board generally knows who you are and what you do. But do you know who they are? No Board is monolithic. Each Board member brings unique value to the Board. Each is selected for what they add to the Board’s perspective, vision, and decisions. If you know your Board, you can tailor your message to your audience and avoid some potential surprises.

read more

Stagehand: Origins

I’m sitting at a table in one of the offices of my private security firm in a tense, but now familiar, setting. No matter who...