Posts categorized: JC’s Column

24 October 2019 / JC's Column / JC Gaillard

It doesn’t make sense to oppose maturity & risk-based approaches to cyber security This interesting piece from McKinsey made me think and deserves some comments: “The risk-based approach to cybersecurity” (Jim Boehm, Nick Curcio, Peter Merrath, Luc… Read more »

1 August 2019 / JC's Column / JC Gaillard

Public authorities must step up their game to help SMBs Ransomware has been on the radar with cyber security professionals for a number of years. At Corix Partners, we wrote about it for the first time 3 years ago in the summer of 2016 following a conf… Read more »

20 June 2019 / JC's Column / JC Gaillard

Security Organizations must evolve. The CISO cannot be credible on all fronts A recent comment I read on Linkedin made me think. It was in response to a post on zero-day vulnerabilities and software patching, and roughly translated from the French, it… Read more »

25 April 2019 / JC's Column / JC Gaillard

Cyber resilience must not be used to legitimise window-dressing practices around cyber security Although the theme is gaining momentum, there is a certain amount of confusion around what cyber resilience really means for organisations. For many, it is… Read more »

28 February 2019 / JC's Column / JC Gaillard

Are we reaching the point where a harder enforcement line is required? The recent Data Breach Survey released by DLA Piper earlier this month deserves some comments: It gives us for the first time some consolidated real-world statistics around the way… Read more »

3 January 2019 / JC's Column / JC Gaillard

Talent alienation is the biggest issue behind the cybersecurity management skills gap, but it shouldn’t be the case Who wants to be a CISO these days? And at which stage in your career should you consider the move? What balance of managerial and techni… Read more »

8 November 2018 / JC's Column / JC Gaillard

Simply throwing money at the problem is rarely the answer Many CIOs and CISOs would have come across this situation after an incident, a serious near-miss or a bad audit report: Suddenly, money and resources – which were previously scarce – appear out… Read more »

16 August 2018 / JC's Column / JC Gaillard

Quite a lot will now go down to the regulator’s appetite   So … May 25th came and went, quickly followed by the football world cup and a heatwave which wrecked most of Europe and many other parts of the world … Around the GDPR, bureaucracy claimed… Read more »

21 June 2018 / JC's Column / JC Gaillard

The traditional role of the CISO is changing. It is being challenged by emerging new regulations such as GDPR, which are impacting all industry sectors, and the arrival on the scene of the new role of the DPO in many firms. It is being marginalised by… Read more »

24 May 2018 / JC's Column / JC Gaillard

Is the CISO an outdated concept? And what to do about it? The last SASIG meeting in London on 8th May 2018 examined the role and career of the CISO. It is hard to walk out of an event like this one not feeling that a number of things are seriously goin… Read more »