Board-level Cyber Reporting
3 Questions Your Board Has About Cybersecurity
Let’s get straight to the point. The main question your board has is, “Are we secure?” As you know, that is an overly simplified and arguably unanswerable question ...
6 Challenges New CISOs Face in Assessing Breach Risk
Week 2 at the new gig as CISO of the hot company you've had your eye on for quite some time. No immediate red flags yet. Your team seems awesome, you're ready ...
The Evolution of Threat Hunting
Wikipedia defines cyber threat hunting as “the process of proactively and iteratively searching through networks to detect and isolate advanced threats that evade existing security solutions.” In practice, this is a very ...
An open conversation about cyber-risk reporting to the BOD
A few days ago, I had the privilege of moderating a boardroom discussion of CISOs at the Evanta Dallas CISO Summit on the topic of Cyber-Risk Reporting for the Board. Evanta’s boardroom ...
The Adventures of CISO Ed & Co.
If you walk over to the office area where your company’s InfoSec team sits, you are bound to overhear some very interesting conversations. The world of cybersecurity is full of stories, anecdotes, ...
Quantifying cyber-risk for your BoD and c-suite colleagues
How should you report on your organization's cybersecurity posture to your board of directors and C-suite colleagues? As you know very well, your board members’ and senior executives view of cybersecurity is ...
