Security Magazine logo
search
cart
facebook twitter linkedin youtube
  • Sign In
  • Create Account
  • Sign Out
  • My Account
Security Magazine logo
  • NEWS
    • Security Newswire
    • Technologies & Solutions
  • MANAGEMENT
    • Leadership Management
    • Enterprise Services
    • Security Education & Training
    • Logical Security
    • Security & Business Resilience
    • Profiles in Excellence
  • PHYSICAL
    • Access Management
    • Fire & Life Safety
    • Identity Management
    • Physical Security
    • Video Surveillance
    • Case Studies (Physical)
  • CYBER
    • Cybersecurity News
    • More
  • BLOG
  • COLUMNS
    • Career Intelligence
    • Cyber Tactics
    • Cybersecurity Education & Training
    • Leadership & Management
    • Security Talk
  • EXCLUSIVES
    • Annual Guarding Report
    • Most Influential People in Security
    • The Security Benchmark Report
    • Top Guard and Security Officer Companies
    • Top Cybersecurity Leaders
    • Women in Security
  • SECTORS
    • Arenas / Stadiums / Leagues / Entertainment
    • Banking/Finance/Insurance
    • Construction, Real Estate, Property Management
    • Education: K-12
    • Education: University
    • Government: Federal, State and Local
    • Hospitality & Casinos
    • Hospitals & Medical Centers
    • Infrastructure:Electric,Gas & Water
    • Ports: Sea, Land, & Air
    • Retail/Restaurants/Convenience
    • Transportation/Logistics/Supply Chain/Distribution/ Warehousing
  • EVENTS
    • Industry Events
    • Webinars
    • Solutions by Sector
    • Security 500 Conference
  • MEDIA
    • Interactive Spotlight
    • Photo Galleries
    • Podcasts
    • Polls
    • Videos
      • Cybersecurity & Geopolitical Discussion
      • Ask Me Anything (AMA) Series
  • MORE
    • Call for Entries
    • Classifieds & Job Listings
    • Newsletter
    • Sponsor Insights
    • Store
    • White Papers
  • EMAG
    • eMagazine
    • This Month's Content
    • Advertise
  • SIGN UP!
ColumnsCybersecurityManagementCyber Tactics ColumnSecurity Leadership and ManagementSecurity & Business Resilience

Cyber Tactics

Reflections on 35 years in the trenches

To stay ahead of our adversaries, cybersecurity leaders must continually innovate and prioritize proactive security.

By John McClurg
cyber tactics author
cyber security

your_photo / iStock / Getty Images Plus via Getty Images

cyber tactics author
cyber security
March 10, 2023

“May you live in interesting times” is a proverb that has resonated in my life over the last four decades as both a curse and blessing.

No small part of that valuation is attributable to the pace at which technology innovations have been advanced and now contribute to the quality and challenges of the lives we lead. Those advances came at a cost, none more notable than the degradation of the boundaries that traditionally defined our world and around which we constructed and imputed meaning to the environments churning around us. The associated porosity that attended that degradation has been exacerbated by the rise of the Internet of Things (IoT), in which our adversaries have discovered new and almost innumerable attack vectors through which to strike at our interests.

Our response to those attacks always aspired to be proactively preventative, but more times than not found itself stymied in the world of the reactive. Rather than being a guardrail at the top of the cliff, we found ourselves serving as an ambulance at the bottom. The associated costs of those efforts were not inconsequential and over time exacted such a toll on our businesses that we came to be perceived as a distasteful cost of doing business, reflected in complex structures often characterized as “defense in depth.” Those of us who sold into these structures appreciated them for what they really were: “expense in depth,” made necessary by a failure of signature-based anti-virus solutions deployed high in the kill chain.

With the rise of machine-learning-supported artificial intelligence (AI), deployed in the form of revolutionary endpoint protection and delivered at a price point that could achieve compliance while challenging old paradigms of defense, we saw the perception of our industry morph into that of being appreciated now as an indispensable and inextricable aspect of advancing the business. It’s that journey, that metamorphosis and its implications, that a good portion of my columns have explored over these last four years.

Our sense of being stuck in a never-ending cycle of whack-a-mole, reminiscent of the movie Groundhog Day, has potentially come to an end, including those unnecessary yet persistent instances of ransomware that claim the headlines of our day — if only more of us would step up and embrace the validated prowess of these new solutions. Too often those actions are interpreted as a foray down a “road less traveled.” In my career, taking that risk has been richly and consistently rewarded.

Even in the face of such strides, we know our adversaries will not stand by as we take the battle to them — too much money is at stake to acquiesce. They will continue to innovate. If we fail to sustain our cadence by taking steps like embracing structures of converged physical and cybersecurity operations, nation-states will strike at the gaps. Sustaining that effort has at times been sobering, particularly when punctuated by the realization that “no success at work will compensate for failure in our homes” — another proverb; that we can’t cut our way to profitability; and that we must, notwithstanding a persistent insider threat, trust and support our warfighters.

And after all we can do, our efforts will be for naught if we allow self-deception to creep in and undermine all that we might have otherwise achieved. Too much is at stake to allow that to happen. Thanks for your companionship on the journey. Best wishes to you on the road ahead.

 


KEYWORDS: artificial intelligence (AI) Chief Information Security Officer (CISO) cyber attack cyber security leadership cybercrime

Share This Story

Looking for a reprint of this article?
From high-res PDFs to custom plaques, order your copy today!

John mcclurg

John McClurg served as Sr. Vice President, CISO and Ambassador-At-Large in BlackBerry's/Cylance’s Office of Security & Trust. McClurg previously was CSO at Dell; Vice President of Global Security at Honeywell International, Lucent Technologies/Bell Laboratories; and in the U.S. Intelligence Community, as a twice-decorated member of the Federal Bureau of Investigation.

Recommended Content

JOIN TODAY
To unlock your recommendations.

Already have an account? Sign In

  • Cyber tech background

    Security’s Top Cybersecurity Leaders 2026

    Security magazine’s Top Cybersecurity Leaders 2026 award...
    Top Cybersecurity Leaders
  • Iintegration and use of emerging tools

    Future Proof Your Security Career with AI Skills

    AI’s evolution demands security leaders master...
    Career Intelligence
    By: Jerry J. Brennan and Joanne R. Pollock
  • The 2025 Security Benchmark Report

    The 2025 Security Benchmark Report

    The 2025 Security Benchmark Report surveys enterprise...
    The Security Benchmark Report
    By: Rachelle Blair-Frasier
Manage My Account
  • Security Newsletter
  • eMagazine Subscriptions
  • Manage My Preferences
  • Online Registration
  • Mobile App
  • Subscription Customer Service

More Videos

Popular Stories

Hand reaching up out of the ocean

What I Learned About Burnout the Hard Way (and How to Actually Fix it)

Broken wet floor sign

Why Response Time Is Becoming the Missing Metric in Workplace Safety and Security

Paparazzi

When Private Events Become Public Infrastructure: What Celebrity OSINT Teaches Security Leaders

Cyber Tactics

AIBOMs: Bringing AI Security Out of the Shadows, A Practical Guide for Security Professionals

Medical professional

Nearly 85% of Nurses Experienced Workplace Violence in the Last Year

Kaseware sponsored webinar
Schneider Electric sponsored webinar

Events

August 25, 2026

Critical Infrastructure Security Is National Security: Protecting Essential Operations in an Era of Escalating Risk

LIVE: August 25, 2026 at 2 PM EDT Learn why critical infrastructure security has become a national security imperative, and the strategies organizations can adopt to improve visibility, collaboration, and response across their security operations.

August 27, 2026

Leveraging AI & Mobility to Advance Your Security Domain

LIVE: August 27, 2026 at 2 PM EDT Explore how AI-driven cloud security solutions can elevate your security domain enhancing threat detection, streamlining operations, and delivering the resilience modern organizations demand.

View All Submit An Event

Products

Security Culture: A How-to Guide for Improving Security Culture and Dealing with People Risk in Your Organisation

Security Culture: A How-to Guide for Improving Security Culture and Dealing with People Risk in Your Organisation

See More Products


Alertmedia sponsored webinar

Related Articles

  • Ground Zero 9/11 terrorist attacks 20th anniversary

    The 20th anniversary of September 11: Reflections on the evolution of enterprise security

    See More
  • europe-enews

    Four Years in Europe: Lessons in Cybersecurity

    See More
  • SEC0621-cyber-Feat-slide1_900px

    Reflections in the wake of RSA 2021: Cyber resiliency

    See More

Related Products

See More Products
  • Physical Security and Safety: A Field Guide for the Practitioner

  • Risk Analysis and the Security Survey, 4th Edition

  • security culture.webp

    Security Culture: A How-to Guide for Improving Security Culture and Dealing with People Risk in Your Organisation

See More Products

Events

View AllSubmit An Event
  • July 17, 2025

    Tech in the Jungle: Leveraging Surveillance, Access Control, and Technology in Unique Environments

    ON DEMAND: What do zebras, school groups and high-tech surveillance have in common? They're all part of a day’s work for the security team at the Toledo Zoo. Learn how this dynamic public environment leverages cutting-edge security technologies to protect people, animals and assets.
View AllSubmit An Event
×

Sign-up to receive top management & result-driven techniques in the industry.

Join over 20,000+ industry leaders who receive our premium content.

SIGN UP TODAY!
  • RESOURCES
    • Advertise
    • Contact Us
    • Store
    • Want More
  • SIGN UP TODAY
    • Create Account
    • eMagazine
    • Newsletter
    • Customer Service
    • Manage Preferences
  • SERVICES
    • Marketing Services
    • Reprints
    • Market Research
    • List Rental
    • Survey/Respondent Access
  • STAY CONNECTED
    • LinkedIn
    • Facebook
    • YouTube
    • X (Twitter)
  • PRIVACY
    • PRIVACY POLICY
    • TERMS & CONDITIONS
    • DO NOT SELL MY PERSONAL INFORMATION
    • PRIVACY REQUEST
    • ACCESSIBILITY

Copyright ©2026. All Rights Reserved BNP Media, Inc. and BNP Media II, LLC.

Design, CMS, Hosting & Web Development :: ePublishing