GO phish
After 15 years in the army , I knew I had a combination of skills , education and experience that was right for the industry . that has deep technical subject-matter expertise and experience . I learn , drawing on others ’ experience to weld together a team that functions under my leadership . This is exactly what I did in the army .
I am also able to use my broad experience to drive change and foster innovation . This is extremely useful in the private sector , especially in fast paced industries or with businesses who are experiencing fast growth .
What do you think is the current hot cybersecurity talking point ?
As mentioned , the cybersecurity industry is fast paced to keep up with cybercriminals . As such , the hot topics can be quite fleeting . Currently , we are still seeing ransomware as the most prevalent threat faced by SMBs in the UK , often exploiting security weaknesses in the supply chain to reach the ultimate target . We have seen that this can be combatted effectively when businesses have conducted cyber-risk management and chosen to invest in contemporary security tools and regular cyberawareness training for their staff . We predict that this threat will persist into 2025 and therefore putting measures in place to be secured against it are even more important .
A new trend moving into 2025 is the importance of Identity . This can involve criminals , utilising AI to impersonate business employees using their voice , words or credentials . The aim of the criminals in this instance is to elicit payments or information from within the business by impersonating those with existing access or authority . Combatting this new threat can be difficult , however there are measures which can be implemented to make things much more difficult to cybercriminals to be successful .
How do you deal with stress and unwind outside the office ?
I have two small children , which takes up most of my time . When I do get some free time I enjoy exercise , hillwalking and tinkering with classic motorcycles .
If you could go back and change one career decision , what would it be ?
Nothing specific springs to mind , as I have had an exciting and fulfilling career in the military for which I am deeply grateful . That said , there is always more to learn , which is a mindset I wish I had embodied earlier in my professional journey .
What do you currently identify as the major areas of investment in the cybersecurity industry ?
We know that approximately 60 % of the smallto-medium-sized businesses have no effective cybersolution , which amounts to a major area of vulnerability for the UK as a nation .
SMBs should invest time in considering their cybersecurity risk . This time integrating cyber-risk into their BAU risk management processes will enhance their cyberconscience and allow them to make calculated decisions which may involve treating risk by investing in cyberdefensive solutions .
The cyberindustry also needs to be more flexible about recruitment to solve skills shortages . We should recruit people with broader experience with different skillsets and a fresh outlook and be prepared to train them in cybersecurity . That is why I would strongly recommend the cybersecurity industry invest in ex-forces personnel who are accustomed to learning fast , working under heavy pressure and solving problems for themselves .
Are there any differences in the way cybersecurity challenges need to be tackled in the different regions ?
Different regions and industries are covered by different legislation and regulation . What matters most is that businesses understand how to achieve success and reduce their risk . Compliance is going to become more important as industries begin to recognise the risks posed by non-compliance and not having a proactive cybermindset within a business .
68 WWW . INTELLIGENTCISO . COM