Intelligent CISO Issue 45 | Page 72

GO PHISH
Every individual needs to realise and understand that data is now the main currency of criminals and industries and the connotations that brings .

GO PHISH

If you could go back and change one career decision what would it be ?
I consider every part of my career a learning experience , so I wouldn ’ t change a thing . But , if there was a way to go back in time , from a personal perspective I would save more money when I was younger instead of partying !

Every individual needs to realise and understand that data is now the main currency of criminals and industries and the connotations that brings .

What do you currently identify as the major areas of investment in the cybersecurity industry ?
One of the biggest areas of investment right now is Data Loss Prevention ( DLP ). Lots of businesses are beginning to explore solutions in the area , which have advanced a lot recently . Given the implementation of regulations like GDPR , it ’ s a wise move because the fines for not having good control over your data are significant .
Are there any differences in the way cybersecurity challenges need to be tackled in the different regions ?
I think cybersecurity threats across the world are largely consistent in nature . That said , there are different regulations and cultural differences across countries that need to be taken into consideration . The key for most Security Operation Centres is to try and ensure consistency . Regularly auditing policies and postures in each region should mean any required changes are quickly highlighted and alerts actioned appropriately when threats do occur , so there ’ s no need to worry about regional false positives .
What changes to your job role have you seen in the last year and how do you see these developing in the next 12 months ?
I hope to see more people in my role in the future . Companies are taking security more seriously than ever and as a result , are investing in the appropriate solutions to ensure their cyber processes are more robust . I just hope this trend continues because in most modern security scenarios , cybercriminals usually come out on top . They ’ re making a lot of money and many businesses are falling victim . So , anything that can be done to minimise their success would be welcomed .
What advice would you offer somebody aspiring to obtain a C-level position in the security industry ?
Keep learning . Make sure you have a well-rounded knowledge because the security industry is as much about compliance and regulation as it is about IT . The next generation of boardlevel security executives will need to implement appropriate security controls which don ’ t impede digital business , so experience is quite often key in understanding the industry and what would be an appropriate level of risk . u
72 www . intelligentciso . com