In this insightful episode of CISO Confidential, host Saket Modi sits down with Tony Martin-Vegue, a seasoned technology risk leader, to unpack a vivid experience: a SQL injection attack that triggered suspected customer data exfiltration. Tony shares not just the technical details, but the human, cultural, and boardroom dynamics that unfold when systems are at risk. Risk quantification is key to decision-making, he says – don’t let your management make a $20 million investment on a coin flip!
Key Takeaways
Cooler heads prevail: practice with tabletops.
Risk isn’t the end goal - business decisions are.
Legal, PR, executives matter as much as security.