5 bits of hard-earned advice that clarify the CISO’s role.
In this episode of the CISO Confidential podcast, SAFE CEO Saket Modi interviews Drew Simonis, seasoned security leader and executive (HPE, Juniper Networks) to unpack the realities of managing a cyber incident that took systems offline for over a week.
Drew talks through the chaos, executive pressure, communication barriers, and more lessons learned about preparation, culture and leadership in the most difficult period a CISO can face.
Watch this CISO podcast now:
As Drew tells the story, the incident seemed mundane at the start; the team followed the containment steps recommended by the SOC but that “was not comprehensive, so the attacker had the capability to take further steps” – requiring Drew and team to hastily take down critical business systems without consulting the business.
Takeaway #1:
“Attackers take the easiest path that they can take but the assumption that that’s the only path is a dangerous one.”
In the podcast, Drew makes many more valuable observations about the proper role of the CISO and how to maximize effectiveness while avoiding overreach.
Takeaway #2
“The role of security is making sure tomorrow looks like today. People just don’t want to wake up to surprises.”
Takeaway #3
“We should be educating people about the risks they’re taking and helping them take those risks responsibly.” In the end, the business owns the risk, not the CISO, he says.
Takeaway #4
“Technology is always going to change. People are always more of the same. Learn about problems from a people perspective.”
Takeaway #5
“Don’t care about security as much as you think you need to. Getting too close to the problem robs you of empathy and your ability to communicate with your business.”
More on the SAFE CISO Podcast Series Page: Top CISOs Share Real Breach Stories
SUBSCRIBE TO WEEKLY BLOG NEWSLETTER
SHARE THE PAGE
