Posts categorized: Strategy and Governance

19 September 2024 / Strategy and Governance / JC Gaillard

CISOs must avoid the repeat of some historical situations where cybersecurity might have been seen at odds with business needs   For the past two years, the business world has been trying to figure out what to do in practice with generative AI. Be… Read more »

Read More

29 August 2024 / Strategy and Governance / JC Gaillard

Without a sense of context, the CISO cannot be expected to communicate meaningfully towards the Board   You don’t have to go far online or on social media to come across articles analysing the difficulties CISOs have in communicating with the Boar… Read more »

Read More

9 May 2024 / Strategy and Governance / JC Gaillard

The Board needs to take an elevated view on cybersecurity, looking for cross-functional governance matters beyond the mere technical horizon   As I was looking back at the role of the Board around cybersecurity oversight in the context of this rec… Read more »

Read More

14 March 2024 / Strategy and Governance / JC Gaillard

Many small firms would often benefit from looking internally first, before jumping to externalised cybersecurity solutions   Many small firms have been struggling with cyber-attacks over the past few years and might have been tempted by virtual CI… Read more »

Read More

4 January 2024 / Strategy and Governance / JC Gaillard

The bottom-up approaches most have been pushing for 20 years around cybersecurity have simply failed   I am delighted to share below my foreword to “The Cybersecurity Spiral of Failure – and How to Break out of It” >> BUY IT HERE on Amazon… Read more »

Read More

19 October 2023 / Strategy and Governance / JC Gaillard

Business protection from cyber threats must be rooted in the reality of the world we live in   The role of the Board with regards to cybersecurity is a topic that keeps coming back and is often addressed in simplistic terms in my view. I don’t thi… Read more »

Read More

21 September 2023 / Strategy and Governance / JC Gaillard

The benchmarking question is often a symptom of trust erosion between CISOs and senior execs   For as long as I have been involved in cybersecurity, I have heard top executives asking for benchmarking data around their cybersecurity practice. It m… Read more »

Read More

17 August 2023 / Strategy and Governance / JC Gaillard

It has become too complex to carry for the profile of people it attracts   The role of the Chief Information Security Officer (CISO) has been in existence for the best part of the last 30 years. Infosec legends say that it was first created for St… Read more »

Read More

13 July 2023 / Strategy and Governance / JC Gaillard

It starts to make sense to evolve the role of the CISO and return it to its native technical content   In many large organizations, defining and structuring a Chief Security Officer role (CSO) is starting to make more and more sense. The concept i… Read more »

Read More

1 June 2023 / Strategy and Governance / JC Gaillard

Cybersecurity transformation cannot be seen as a straightforward change   This interesting piece in the Harvard Business Review should be a must-read for all transformational CISOs (“The Most Successful Approaches to Leading Organizational Change”… Read more »

Read More