Posts categorized: Strategy and Governance

16 March 2023 / Strategy and Governance / JC Gaillard

It has to start with a degree of integration between threats, risks, controls and protective measures. Click here to watch our Founder & CEO JC Gaillard present on the theme (in French) with the Institute of Risk and Compliance in Paris on 9th Marc… Read more »

Read More

19 January 2023 / Strategy and Governance / JC Gaillard

Trust between CISOs and senior executives is the only platform on which successful transformative efforts can be built around cyber security.   For the past two decades, many organizations have been trapped in a spiral of failure around cybersecur… Read more »

Read More

28 July 2022 / Strategy and Governance / JC Gaillard

Look at it in all its dimensions before jumping to ready-made solutions   You don’t have to go far to find cyber security professionals complaining about skills shortages, but the problem has several dimensions which have to be understood and mapp… Read more »

Read More

17 March 2022 / Strategy and Governance / JC Gaillard

This is no longer just about tech — if it ever was Surveys focused on the concerns and priorities of the CISO community have been quite consistent over the last few years, and collectively, they paint a slightly uncomfortable picture: The picture of CI… Read more »

Read More

24 February 2022 / Strategy and Governance / JC Gaillard

When some people say they don’t know what to do around cyber, you may want to ask them where they have been for the last 10 years…   For a number of years, I have been puzzled by the high idea some cyber security professionals seem to have that th… Read more »

Read More

25 November 2021 / Strategy and Governance / JC Gaillard

It is not rare for OT Security to end up in some form of organisational no-man’s-land This interesting interview with Andy Norton puts things in perspective around IT and OT Security (“The top 5 cybersecurity threats to OT security” – IT Security Guru… Read more »

Read More

16 September 2021 / Strategy and Governance / JC Gaillard

Time to move away from bottom-up dynamics: The Board should decide on priorities and drive the discussion   As we hit budget time again in many large organisations, it is still amazing to see the amount of content online dedicated to justifying cy… Read more »

Read More

17 June 2021 / Strategy and Governance / JC Gaillard

Defence in depth is key, but why are we hearing so little about it? Time for a few hard truths   Frankly, this is starting to become embarrassing for some security professionals. In these columns, we have been writing about ransomware since 2016,… Read more »

Read More

3 June 2021 / Strategy and Governance / JC Gaillard

But are the CISOs ready for it? A comment left on one of my articles made me think: How can cyber security leaders drive a long-term transformative agenda, with a business and a board that cannot see beyond the short-term? I see several angles worth di… Read more »

Read More

25 February 2021 / Strategy and Governance / JC Gaillard

The protection of the business from cyber threats is something you need to grow, not something you can buy   The role of the Board in relation to cyber security is a topic we have visited several times since 2015, first in the wake of the TalkTalk… Read more »

Read More