Columns

RSS

Paul McCartney wrote “The Long and Winding Road” while the Beatles were in the throes of dissent and months away from breaking up. Listening now to the song’s yearning lyrics and plaintive melody, is it possible that Sir Paul actually anticipated the NIST Cybersecurity Framework’s Recover function, and was imagining the category titled Recovery Planning?

If you’ve ever been a parent to a teenage child, you may believe that teaching your child to show respect for authority figures is crucial to maintain relationships.

The Obama Administration had more damaging leaks than any Presidential Administration in modern history.

Historically there has been a shortage of college and university-level education programs focused on the knowledge, skills and competencies required for effective management of corporate security risk-related activities.

When I speak with security executives privately about their challenges, one that I often hear is the pressure of time, budget and resources.

If at first you don’t succeed, try, try again.” Although catchy, we all know that the real keys to success after failure are reflection and adaptation, not mere persistence.

While some companies are employing open-air workplaces, writable walls and treadmill desks, most aren’t there yet. And they won’t be for a while.

Since the onset of the 24-hour news cycle and the constant barrage of social media blogs, the way things are characterized seems to have evolved into creating the most sensationalized sound bite. 

At some point in their career, most security executives make the decision to seek out new employment opportunities.

Within security leadership associations and meetings, key decisions are made about paths forward in the security industry, driving us to become trusted advisors, to learn about CSOs’ pain points and challenges, and to devise a more effective strategic direction for my company.