Posts categorized: Strategy and Governance

16 March 2023 / Strategy and Governance / JC Gaillard
It has to start with a degree of integration between threats, risks, controls and protective measures. Click here to watch our Founder & CEO JC Gaillard present on the theme (in French) with the Institute of Risk and Compliance in Paris on 9th Marc… Read more »

19 January 2023 / Strategy and Governance / JC Gaillard
Trust between CISOs and senior executives is the only platform on which successful transformative efforts can be built around cyber security. For the past two decades, many organizations have been trapped in a spiral of failure around cybersecur… Read more »

28 July 2022 / Strategy and Governance / JC Gaillard
Look at it in all its dimensions before jumping to ready-made solutions You don’t have to go far to find cyber security professionals complaining about skills shortages, but the problem has several dimensions which have to be understood and mapp… Read more »

17 March 2022 / Strategy and Governance / JC Gaillard
This is no longer just about tech — if it ever was Surveys focused on the concerns and priorities of the CISO community have been quite consistent over the last few years, and collectively, they paint a slightly uncomfortable picture: The picture of CI… Read more »

24 February 2022 / Strategy and Governance / JC Gaillard
When some people say they don’t know what to do around cyber, you may want to ask them where they have been for the last 10 years… For a number of years, I have been puzzled by the high idea some cyber security professionals seem to have that th… Read more »

25 November 2021 / Strategy and Governance / JC Gaillard
It is not rare for OT Security to end up in some form of organisational no-man’s-land This interesting interview with Andy Norton puts things in perspective around IT and OT Security (“The top 5 cybersecurity threats to OT security” – IT Security Guru… Read more »

16 September 2021 / Strategy and Governance / JC Gaillard
Time to move away from bottom-up dynamics: The Board should decide on priorities and drive the discussion As we hit budget time again in many large organisations, it is still amazing to see the amount of content online dedicated to justifying cy… Read more »

17 June 2021 / Strategy and Governance / JC Gaillard
Defence in depth is key, but why are we hearing so little about it? Time for a few hard truths Frankly, this is starting to become embarrassing for some security professionals. In these columns, we have been writing about ransomware since 2016,… Read more »

3 June 2021 / Strategy and Governance / JC Gaillard
But are the CISOs ready for it? A comment left on one of my articles made me think: How can cyber security leaders drive a long-term transformative agenda, with a business and a board that cannot see beyond the short-term? I see several angles worth di… Read more »

25 February 2021 / Strategy and Governance / JC Gaillard
The protection of the business from cyber threats is something you need to grow, not something you can buy The role of the Board in relation to cyber security is a topic we have visited several times since 2015, first in the wake of the TalkTalk… Read more »