Posts categorized: Strategy and Governance

25 November 2021 / Strategy and Governance / JC Gaillard

It is not rare for OT Security to end up in some form of organisational no-man’s-land This interesting interview with Andy Norton puts things in perspective around IT and OT Security (“The top 5 cybersecurity threats to OT security” – IT Security Guru… Read more »

Read More

16 September 2021 / Strategy and Governance / JC Gaillard

Time to move away from bottom-up dynamics: The Board should decide on priorities and drive the discussion   As we hit budget time again in many large organisations, it is still amazing to see the amount of content online dedicated to justifying cy… Read more »

Read More

17 June 2021 / Strategy and Governance / JC Gaillard

Defence in depth is key, but why are we hearing so little about it? Time for a few hard truths   Frankly, this is starting to become embarrassing for some security professionals. In these columns, we have been writing about ransomware since 2016,… Read more »

Read More

3 June 2021 / Strategy and Governance / JC Gaillard

But are the CISOs ready for it? A comment left on one of my articles made me think: How can cyber security leaders drive a long-term transformative agenda, with a business and a board that cannot see beyond the short-term? I see several angles worth di… Read more »

Read More

25 February 2021 / Strategy and Governance / JC Gaillard

The protection of the business from cyber threats is something you need to grow, not something you can buy   The role of the Board in relation to cyber security is a topic we have visited several times since 2015, first in the wake of the TalkTalk… Read more »

Read More

11 February 2021 / Strategy and Governance / JC Gaillard

Only a cultural shift across the Boardroom can move the needle   The survey released by BT Security in January 2021 (“CISOs under the spotlight”) is interesting, if only by the size of the population surveyed (over 7,000 people) and its triple foc… Read more »

Read More

21 January 2021 / Strategy and Governance / JC Gaillard

Security culture and governance eat tech for breakfast   *** Watch JC Gaillard talk through the content of this article at the Cyber Security Leadership Summit 2021 on 11th November 2021 ***   Looking back at what happened at ground level thr… Read more »

Read More

3 September 2020 / Strategy and Governance / JC Gaillard

This is not just about tech, and there is no tech silver bullet which can buy you cyber resilience *** Watch JC Gaillard talk through the content of this article at the DigitalLeaders Week on 14th October 2020 *** The COVID crisis is presenting most bu… Read more »

Read More

13 August 2020 / Strategy and Governance / JC Gaillard

Empirical, bottom-up and organically developed cyber security functions need to evolve   The 2020 Information Security Maturity Report from ClubCISO makes interesting reading. It compiles responses from 100 of their members to a questionnaire sent… Read more »

Read More

11 June 2020 / Strategy and Governance / JC Gaillard

The post-COVID winners will be those who treat it strategically now   C-level executives must stop looking at cyber security as a mere operational matter: Something which is below them and is dealt with somewhere below them in the organisation. It… Read more »

Read More