• Phil Venables

2020 Short Review

At the risk of being too understated, 2020 was an interesting year. In this blog I’ve covered many topics across the range of strategy and tactics for running enterprise security and risk programs. Below is a word-cloud of those posts from 2020. I think it speaks for itself as to what we’ve focused on all year.


Like all of us, 2020 was a significant time of learning for me.


What I learnt professionally:

  • We are only at the very early stages of the digital transformation of business and the secure transition to the cloud

  • People in all organizations are amazingly adaptable

  • Covid didn’t really drive any new trends even though it felt like it did, it just magnified and accelerated the changes that were already happening

What I learnt personally:

  • When you’re in Hong Kong in January and you realize this whole Covid thing is going to be a big deal before everyone else realizes that, then sell some stock. Although holding through the dip worked out ok......so far

  • Get a stand up desk earlier

  • Kids have had the toughest time of all this year, even if as parents we think we’ve had it pretty tough. I’m amazed at how they’ve dealt with it.


Here’s to 2021.

869 views0 comments

Recent Posts

See All

Relationship Management for the InfoSec Program

A key part of any security leader's role is relationship management. In my experience this is another one of those leadership skills that people seem to fall back on instinct a lot of the time. Howeve

Is Complexity the Enemy of Security?

One of the many pieces of accepted wisdom in information/cybersecurity is that complexity is the enemy of security. But is it? You certainly should not go about deliberately trying to introduce comple

Leadership, Business, Security and Risk Reading List

This is my list of favorite books across the various professional disciplines I’m interested in. I have a set of favorite books that are not professionally related but I won’t presume you are interest