top of page
Search
CISO: Librarian, Archeologist or Explorer?
I first wrote this post back in 2021 so I thought it’s time for a revisit with an addition of a few more roles. We talk about attackers...
May 36 min read
742 views
Why Stuff Fails (“The Thermocline of Truth”)
For many years I’ve observed the same pattern of failure in projects, programs, issue mitigation and indeed anything that requires more...
Apr 195 min read
1,612 views
Security Programs - A Plan is Not a Strategy
Many security leaders, at all levels, correctly focus on having a good strategy and executing against that. However, many teams confuse...
Apr 55 min read
4,553 views
Security Leaders’ Reading List
I have a regular set of go to books both for myself and what I recommend to others at all stages in their career. Here they all are with...
Mar 226 min read
4,975 views
Turning the Security Flywheel
Jim Collins wrote a great little book called Turning the Flywheel to further develop an idea introduced in his book Good to Great to...
Mar 89 min read
3,402 views
The CISO Factories: 12 Features of Organizations that Create Security Leaders
There are organizations that seem to have disproportionately created a large number of leaders who have gone on to be CISOs or other...
Jan 256 min read
2,240 views
Keys to Career Success
I’ve given variants of this talk at a few events in 2024 and received a lot of requests for the slides and a blog post. So here we go. ...
Jan 115 min read
3,411 views
Top Ideas and Posts from 2024
I managed to keep up the pace of 1 post every 2 weeks throughout 2024. Just when I think I might be running out of ideas, and the backlog...
Dec 28, 20246 min read
1,473 views
Leadership: One Day at a Time, One Step at a Time
One of the most profound, yet simple, acts of leadership I personally experienced was in the days after 9/11/2001. After the terrorist...
Dec 14, 20242 min read
918 views
Job Interviews: Part 2 Conducting the Security Interview - The Big 10
This is the second of two posts about interviews (the first post is here ). In this one I’ll focus on interviewing candidates and the...
Oct 5, 202417 min read
4,133 views
Job Interviews: Part 1 Acing the Security Interview - 10 Top Tips
This is the first of two posts about interviews. In this one I’ll focus on interviewing for a role. In the next one we’ll look at how to...
Sep 21, 202411 min read
4,019 views
Incentives for Security: Flipping the Script
We’re getting it wrong on the messaging for incentives to do security - and people are pretending it’s landing when it isn’t. There are 5...
Jun 1, 20248 min read
4,489 views
The Crucial Test of Security Leadership: A-grades vs. Pass/Fail
A major success marker of great security leaders and their teams is one simple prioritization technique: the ability to know what needs...
May 18, 20244 min read
2,622 views
Security and Ten Laws of Technology
There are many well known, so called, laws of technology. Moore’s law being particularly emblematic. Let’s look at some of them and see...
Apr 20, 202410 min read
4,391 views
The Power of Community: 5 Steps to Fast-Track Your InfoSec Career
As we start out, or even when entering a new stage of our careers, we realize the need to be connected to a professional community. For...
Feb 24, 202413 min read
2,660 views
The 80 / 20 Principle
Ever since I first became familiar with the 80/20 principle, and other circumstances marked by Pareto distributions, I began to see...
Feb 10, 20245 min read
3,862 views
Leadership Transitions - 10 Steps for Success
Many of us have been through several leadership transitions in our careers. It could be a new role in the same or different organization....
Jan 27, 20249 min read
3,491 views
Top Ideas and Posts from 2023
Thankfully I managed to keep up the pace of 1 post every 2 weeks throughout 2023. Just when I think I might be running out of ideas, and...
Dec 30, 20235 min read
2,107 views
The Art of Influencing - 7 Steps
A critical measure of success for most security roles is the ability to influence. I’ve often found people think influence skills are...
Dec 16, 20233 min read
4,967 views
The Danger of Comparisons (There’s Always One Level Above)
No matter what you experience, what level of achievement, results or status you attain there is always something that might be perceived...
Dec 2, 202310 min read
3,792 views
bottom of page