top of page
Search
Security Programs - A Plan is Not a Strategy
Many security leaders, at all levels, correctly focus on having a good strategy and executing against that. However, many teams confuse...
Apr 55 min read
2,972
Security Leaders’ Reading List
I have a regular set of go to books both for myself and what I recommend to others at all stages in their career. Here they all are with...
Mar 226 min read
4,409
Turning the Security Flywheel
Jim Collins  wrote a great little book called Turning the Flywheel  to further develop an idea introduced in his book Good to Great to...
Mar 89 min read
3,135
Post Quantum Cryptography Migration: Time to Get Going
Quantum computing is advancing rapidly. Innovations from Google, Microsoft, IBM and others are pushing the boundaries of not just the...
Feb 228 min read
2,269
Stressed Testing: Practical Operational Resilience
Operational resilience is a concept that has gained even further traction. It first came to prominence from financial regulators, in...
Feb 813 min read
1,457
The CISO Factories: 12 Features of Organizations that Create Security LeadersÂ
There are organizations that seem to have disproportionately created a large number of leaders who have gone on to be CISOs or other...
Jan 256 min read
2,154
Keys to Career Success
I’ve given variants of this talk at a few events in 2024 and received a lot of requests for the slides and a blog post. So here we go. ...
Jan 115 min read
3,292
Top Ideas and Posts from 2024
I managed to keep up the pace of 1 post every 2 weeks throughout 2024. Just when I think I might be running out of ideas, and the backlog...
Dec 28, 20246 min read
1,419
Leadership: One Day at a Time, One Step at a Time
One of the most profound, yet simple, acts of leadership I personally experienced was in the days after 9/11/2001. After the terrorist...
Dec 14, 20242 min read
903
Regulatory Harmonization - Let’s Get RealÂ
Every few months some association or other learned group of professionals makes a fresh call to action for cybersecurity regulatory...
Nov 30, 20247 min read
1,647
Lessons in Crisis Management - Top 10 Disaster MoviesÂ
I’ve previously posted about some of the best security movies made  but I have to confess I’m not a big fan of the genre. They tend not...
Nov 16, 20243 min read
887
Risk Appetite and Risk Tolerance - A Practical Approach
If you work for a large organization, especially public or otherwise regulated companies, then you may well have faced the prospect of...
Nov 2, 202413 min read
7,145
bottom of page