The list of top ten IT security risks is a bad idea.
The reason is that you are the only business leader in your organization doing this. Do you think that the sales leader in your company expresses her plans with certainty and deterministic figures?
I don’t think so.
She has no certainty at all. The only certainty in sales is that there is no certainty. Period.
She has ranges that she communicates based on certainty. For example, selling a maintenance renewal contract on an existing customer has more certainty than a ‘net new’ customer sale so this would be presented as a percentage of revenue with higher probability.
I recently had a wonderful talk with Zack Schuler. We discussed how 95 % of all breaches are caused by human error. It seems like such an obvious problem. But what can you do about this? Zack’s company has developed a way using a team of Hollywood writers to develop compelling security education and training to not just have your IT professionals involved in IT defense, but have all your employees involved.
4 Key Learning Points:
The importance of the gamification of security training in developing a security culture
The importance of entertainment in storytelling
How to deploy training easily and efficiently.
How to measure the effectiveness of training.
Listen to more about how to help train staff on increasing security awareness and education through a unique method of gamification and storytelling.
Read on if you are interested in the following topics:
Why the CISO Should Not Report to the CIO
Why You Should Assume you Have Been Hacked
6 Kill Chain Fundamentals You Must Know
7 ‘Must Ask and Prove’ Questions a CIO/CISO must ask about their Next Gen Firewall
How Can You Deny Command and Control Attacks
Cybersecurity Canon Books – Hall of fame for Cyber Security Books – Readers are leaders
Scaling Security with Real Cooperation between companies happening now
AI’s (Artificial Intelligence’s) Role in Info Sec.
The Beginnings of AI and Security
Alan Turing Should be a Hero!
Learn how Alan Turing cut WW2 by 2 years and saved 20 million lives
Rick and I had a fantastic and varied discussion about the above topics. He not only reports directly to the CEO (rare) but he has serious technical chops as well. He is an avid reader whose interests include various security sub topics. He has some great suggestions on books, movies, etc.