If you’re a CISO, you know the name. Tim Brown, CISO at SolarWinds during the infamous software supply chain attack in 2020. Tim led a grueling, high-speed recovery effort – and suffered a heart attack. Then, the SEC shocked CISOs by suing Tim personally (a first) for failures in security and disclosure, claims dropped after two years. In this gripping episode of CISO Confidential with host Saket Modi, Tim speaks out in detail about the struggle to contain both the incident and the legal aftermath.
Key Takeaways
Look for transparency and to do what’s right.
Look for inflection points that help our community.
Be patient with process. It takes longer than we’d like.