Posts categorized: Strategy and Governance

16 September 2021 / Strategy and Governance / JC Gaillard

Time to move away from bottom-up dynamics: The Board should decide on priorities and drive the discussion   As we hit budget time again in many large organisations, it is still amazing to see the amount of content online dedicated to justifying cy… Read more »

Read More

17 June 2021 / Strategy and Governance / JC Gaillard

Defence in depth is key, but why are we hearing so little about it? Time for a few hard truths   Frankly, this is starting to become embarrassing for some security professionals. In these columns, we have been writing about ransomware since 2016,… Read more »

Read More

3 June 2021 / Strategy and Governance / JC Gaillard

But are the CISOs ready for it? A comment left on one of my articles made me think: How can cyber security leaders drive a long-term transformative agenda, with a business and a board that cannot see beyond the short-term? I see several angles worth di… Read more »

Read More

25 February 2021 / Strategy and Governance / JC Gaillard

The protection of the business from cyber threats is something you need to grow, not something you can buy   The role of the Board in relation to cyber security is a topic we have visited several times since 2015, first in the wake of the TalkTalk… Read more »

Read More

11 February 2021 / Strategy and Governance / JC Gaillard

Only a cultural shift across the Boardroom can move the needle   The survey released by BT Security in January 2021 (“CISOs under the spotlight”) is interesting, if only by the size of the population surveyed (over 7,000 people) and its triple foc… Read more »

Read More

21 January 2021 / Strategy and Governance / JC Gaillard

Security culture and governance eat tech for breakfast Looking back at what happened at ground level throughout the COVID crisis, it is clear that the focus has been entirely on operational matters: From moving into remote working at scale for the serv… Read more »

Read More

3 September 2020 / Strategy and Governance / JC Gaillard

This is not just about tech, and there is no tech silver bullet which can buy you cyber resilience *** Watch JC Gaillard talk through the content of this article at the DigitalLeaders Week on 14th October 2020 *** The COVID crisis is presenting most bu… Read more »

Read More

13 August 2020 / Strategy and Governance / JC Gaillard

Empirical, bottom-up and organically developed cyber security functions need to evolve   The 2020 Information Security Maturity Report from ClubCISO makes interesting reading. It compiles responses from 100 of their members to a questionnaire sent… Read more »

Read More

11 June 2020 / Strategy and Governance / JC Gaillard

The post-COVID winners will be those who treat it strategically now   C-level executives must stop looking at cyber security as a mere operational matter: Something which is below them and is dealt with somewhere below them in the organisation. It… Read more »

Read More

21 May 2020 / Strategy and Governance / JC Gaillard

Skills and data are building up, leading to less favourable conditions for negligent buyers   Our recent review of the Cyber Insurance market place, in collaboration with Cyber Solace, highlights a number of key elements. The market has changed co… Read more »

Read More