Tech Layoffs: A Risky Business
Amid the cascade of tech layoffs, I don’t see companies taking a conscious look at all the risk involved. Perhaps it’s time to start changing the conversation. There are a…
Blogs
Back to Vendor Listings
As Responsibilities Broaden, So Does Our Exposure
The CISO’s role has transformed over the years from a mid-level technical job focusing on network security and firewalls to a much more strategic and senior player in a company’s…
Leadership in Cybersecurity: More Important Than Ever
As cybersecurity threats grow across all global business sectors, it’s more important than ever that we recruit and retain talented people—and ensure that they can contribute fully and develop…
Not Your Keys, Not Your Coins
There are many lessons to draw from the collapse of FTX, but above all, the first rule of crypto holds: “Not your keys, not your coins.” In other words, if…
With Critical Infrastructure in Threat Actors’ Sights, the Time to Act is NOW
Operational technology organizations are challenged with widening cybersecurity gaps, an expanding attack surface and rising global threats. Well-resourced, sophisticated actors such as ransomware gangs and nation-state hackers have critical infrastructure…
Top 10 Threat Vectors for 2023
Although the variety of tools to fight malicious actors has proliferated, attacks themselves haven’t receded. In fact, they’ve been soaring: According to a recent report from the FBI, the…
Board Reporting Continued: Updating the Board on IT
Last week, I spoke about board reporting, and how it helps to validate our programs and give the board confidence that we’re minding the store. Today, I’d like to…
Board Reporting: Why It’s Important and How to Do It Meaningfully
Board reporting is a significant element of our jobs, and it’s got to be delivered in a meaningful way. Board reporting validates your program and rationalizes your spend. If you…
It’s Time to Turn Talk into Tangible Jobs
There’s a lot of concern in our industry about the grave talent shortage. We need a lot of new people coming into the profession, and we also need to diversify…
The Criticality for Security Teams of Internal Marketing
Marketing is not something we ordinarily associate with our jobs, but I think internal marketing is absolutely critical for technology and security teams. I’ve found that if you want…