Expert Contributor and cybersecurity specialist Jean-Christophe Gaillard highlights the instability of the current security landscape. Specifically, he delves into why cutting security spending to the ground in the midst of the COVID-19 crisis would be disastrous.
While this is better than doing nothing or relying blindly on the security of cloud providers, those externalised, part-time services – often delivered remotely – are rarely the magic bullet they pretend to be…
It does not make sense to oppose maturity-based approaches and risk-based approaches to cyber security: They are just different ways of managing, driving and measuring action around cyber security in different situations and different firms. One does not have to be superior to the other.
You don’t become a transformational leader overnight, in particular if your background, your skills and your core interests are centred around the more technical aspects of cyber security.
Culture and governance are key to drive change around cyber security behaviours, but too many awareness programmes focus simply on superficial technical gimmicks. JC Gaillard from Corix Partners deconstructs 3 clichés which have been dominating the security awareness arena for the past decade.
Cyber Security maturity stagnates because CISOs are structurally prevented from looking beyond day-to-day firefighting
Clarity of roles and responsibilities across Security and IT, and a clear approach putting People and Process first ahead of ready-made Technology solutions, form the only basis on which cyber security maturity can grow, across any organisation, large or small.