Posts categorized: Strategy and Governance
19 September 2024 / Strategy and Governance / JC Gaillard
CISOs must avoid the repeat of some historical situations where cybersecurity might have been seen at odds with business needs For the past two years, the business world has been trying to figure out what to do in practice with generative AI. Be… Read more »
29 August 2024 / Strategy and Governance / JC Gaillard
Without a sense of context, the CISO cannot be expected to communicate meaningfully towards the Board You don’t have to go far online or on social media to come across articles analysing the difficulties CISOs have in communicating with the Boar… Read more »
9 May 2024 / Strategy and Governance / JC Gaillard
The Board needs to take an elevated view on cybersecurity, looking for cross-functional governance matters beyond the mere technical horizon As I was looking back at the role of the Board around cybersecurity oversight in the context of this rec… Read more »
14 March 2024 / Strategy and Governance / JC Gaillard
Many small firms would often benefit from looking internally first, before jumping to externalised cybersecurity solutions Many small firms have been struggling with cyber-attacks over the past few years and might have been tempted by virtual CI… Read more »
4 January 2024 / Strategy and Governance / JC Gaillard
The bottom-up approaches most have been pushing for 20 years around cybersecurity have simply failed I am delighted to share below my foreword to “The Cybersecurity Spiral of Failure – and How to Break out of It” >> BUY IT HERE on Amazon… Read more »
19 October 2023 / Strategy and Governance / JC Gaillard
Business protection from cyber threats must be rooted in the reality of the world we live in The role of the Board with regards to cybersecurity is a topic that keeps coming back and is often addressed in simplistic terms in my view. I don’t thi… Read more »
21 September 2023 / Strategy and Governance / JC Gaillard
The benchmarking question is often a symptom of trust erosion between CISOs and senior execs For as long as I have been involved in cybersecurity, I have heard top executives asking for benchmarking data around their cybersecurity practice. It m… Read more »
17 August 2023 / Strategy and Governance / JC Gaillard
It has become too complex to carry for the profile of people it attracts The role of the Chief Information Security Officer (CISO) has been in existence for the best part of the last 30 years. Infosec legends say that it was first created for St… Read more »
13 July 2023 / Strategy and Governance / JC Gaillard
It starts to make sense to evolve the role of the CISO and return it to its native technical content In many large organizations, defining and structuring a Chief Security Officer role (CSO) is starting to make more and more sense. The concept i… Read more »
1 June 2023 / Strategy and Governance / JC Gaillard
Cybersecurity transformation cannot be seen as a straightforward change This interesting piece in the Harvard Business Review should be a must-read for all transformational CISOs (“The Most Successful Approaches to Leading Organizational Change”… Read more »