bsw201

Business Security Weekly Episode #201 – January 04, 2021

Subscribe to all of our shows and mailing list by visiting: https://securityweekly.com/subscribe

1. CISO Stories – Cybersecurity Leadership 2021 – 03:00 PM-03:30 PM

Announcements

  • Do you want to stay in the loop on all things Security Weekly? Visit https://securityweekly.com/subscribe to subscribe on your favorite podcast catcher or our Youtube channel, sign up for our mailing list, and join our Discord Server!

  • If you missed Security Weekly Unlocked, you can now access all of the content on-demand, whether you registered before the live event or not, by visiting https://securityweekly.com/unlocked and clicking either the button to register or the button to login!

Description

Up Your game with the CISO STORIES Podcast! If anything this past year has taught us is that we can not go on our own, and leveraging the experiences from other CISOs is critical to our success. Join Todd as he introduces a new Podcast featuring actionable lessons from top-notch CISOs and Cybersecurity Leaders.

Link to the cybersecurity collaborative www.cyberleadersunite.com

Todd’s latest CISO COMPASS book many of the Podcasts are based on www.amazon.com/author/toddfitzgerald

Guest(s)

Todd Fitzgerald

Todd Fitzgerald –

Vice President, Cybersecurity Strategy at Cybersecurity Collaborative

Todd Fitzgerald has built information Fortune 500/large company security programs for 20 years. Todd serves as VP, Cybersecurity Strategy and Chairman of the Cybersecurity Collaborative Executive Committee, was named 2016–17 Chicago CISO of the Year, ranked Top 50 Information Security Executive, authored 4 books including #1 Best Selling and 2020 CANON Hall of Fame Winner CISO COMPASS: Navigating Cybersecurity Leadership Challenges with Insights from Pioneers (2019), ground-breaking CISO Leadership: Essential Principles for Success, as well as contributions to a dozen others. Todd held senior leadership positions at Northern Trust, Grant Thornton International, Ltd, ManpowerGroup, WellPoint (Anthem) Blue Cross Blue Shield/ National Government Services, Zeneca/Syngenta, IMS Health and American Airlines. Todd is a sought-after, top-rated RSA conference and ISACA conference speaker and maintains certifications including CISSP, CISA, CISM, CGEIT, CRISC, CIPP/US, CIPP/E, CIPP/C, CIPM, PMP, and ITILv3F.

Hosts

JasonAlbuquerue

Jason Albuquerue –

CIO & CSO at Carousel Industries

 MattAlderman

Matt Alderman –

Executive Director at CyberRisk Alliance

 PaulAsadoorian

Paul Asadoorian –

Founder/CIO at Security Weekly/CyberRisk Alliance

2. 6 Security Concerns, 3 Steps, & 10 Skills – 03:30 PM-04:00 PM

Announcements

  • Do you have a specific guest or topic that you want us to cover on one of the shows? Submit your suggestions for guests by visiting https://securityweekly.com/guests and completing the form! We review suggestions monthly and will reach out to you once reviewed!

  • Learn how to conquer cloud complexity in our first Security Weekly webcast of 2021 on January 28th @ 11am ET! Register at https://securityweekly.com/webcasts. If you missed any of our 2020 webcasts or technical trainings, they are available at https://securityweekly.com/ondemand

Description

In the leadership and communications section, 6 board of directors security concerns every CISO should be prepared to address, Four ways to improve the relationship between security and IT, CISO playbook: 3 steps to breaking in a new boss, and more!

Hosts

JasonAlbuquerue

Jason Albuquerue –
MattAlderman

Matt Alderman –

  1. 6 board of directors security concerns every CISO should be prepared to address – The COVID pandemic and spike in cybercriminal activity has raised interest in security among corporate boards. These are the concerns and questions CISOs say they are now hearing from them:

    1. Cyber accountability
    2. Security status during COVID-19 and beyond
    3. Security strategy
    4. Benchmarking against industry best practices
    5. Resilience to cyberattacks
    6. Continuous compliance

  2. Four ways to improve the relationship between security and IT – Help Net Security – Corporate security and IT departments and the people who lead them often have complicated relationships. But does it really have to be that way? Here are four suggestions to improve the relationship:

    1. Change the culture of division
    2. Early communication and collaboration
    3. Don’t sweat org charts
    4. Embrace the CISO-as-risk-management-leader model

  3. CISO playbook: 3 steps to breaking in a new boss – As CISOs know all too well, change is inevitable—and that includes organizational regime change. Here, security leaders share their best advice for starting new C-suite relationships off on the right foot.

    1. Establish your base
    2. Strengthen your position
    3. Set a new course

  4. How to Lead Your High Performers to Excellence – High performers in any organization aren’t easy to manage. With their uncanny ability to produce outstanding work and an appetite to solve tough problems, they demand even greater attention and engagement from their managers. Here are 7 proactive steps to manage high performers:

    1. Scratch below the surface
    2. Connect the dots to learning and growth
    3. Let them steer their own ship
    4. Seek psychological investment
    5. Extend visibility beyond team boundaries
    6. Don’t make them your fallback option
    7. Establish healthy work boundaries

  5. Stop Micromanaging and Give People the Help They Really Need – Colin Fisher, associate professor at University College London’s School of Management, conducted in-depth studies at several companies to determine how managers can effectively help employees who need assistance without demoralizing them. He found that the most effective helpers were the ones who clearly communicated their intentions, timed their interventions at points when people were most receptive, and figured out a rhythm of involvement that best suited their needs.
  6. Top 10 in-demand cybersecurity skills for 2021 – The list of needed security skills is long and growing. Here are the 10 areas where skills are most in demand for the year ahead:

    1. Risk identification and management
    2. Technical fundamentals
    3. Data management and analysis
    4. DevSecOps
    5. Cloud
    6. Automation
    7. Threat hunting
    8. Interpersonal skills
    9. Business acumen
    10. Agility
PaulAsadoorian

Paul Asadoorian –