ON THE LIGHTER SIDE OF THINGS, WE

INSIDE AND OUTSIDE THE OFFICE.

What would you describe as your most memorable achievement in the cybersecurity industry?

I’ ve had so many wonderful and memorable achievements that it’ s hard to pick just one, but last year I was selected into the CSO Hall of Fame. There are only about 34 inductees to date and that was a huge honour. This recognition signifies the compilation of all my work, skills and experience during this amazing journey that my career has taken so far. From becoming a Special Agent in the FBI assigned to the Cyber Crime squad and working at multiple telecom industry leaders like BT Global Services, Exodus, and Cable & Wireless to my role as Mattel CISO protecting a world leading toy company and building a strong security programme for a private equity company at Cheetah Digital, I’ ve been lucky to work with such a diverse set of organisations.

Today as CISO at BlackLine, I help secure the financial data of our 4,000 + customers, along with the BlackLine organisation itself, and it is a huge honour to be named with such a select group of cyber security pioneers.

What first made you think of a career in cybersecurity?

Growing up on a farm in Texas, I graduated from Texas A & M University with a degree in computer science. After graduation, I initially worked with the Department of Navy and the US Bankruptcy Court, however, my lifelong dream of joining the FBI led me to a career in cybersecurity. My expertise in computer science caught the attention of the FBI’ s cybercrime supervisor, which propelled me into significant cases like the Mitnick case and the Mafiaboy case. Working with influential figures such as Bruce Schneier further shaped my approach to cybersecurity, solidifying a career driven by passion and a unique perspective.

What style of management philosophy do you employ in your current position?

For me, being able to communicate in business terminology is really important. My time at BT was instrumental in helping me define security using risk management terminology, which resonates better with executives. Whether it’ s business, financial or technology risk, being able to articulate these concepts in a way that resonates with my team is vital.

Secondly, I prioritise honesty and transparency. From the outset, I have been very clear about the types of metrics I focus on and the standards I hold. This transparency extends to our successes, as well as our challenges and I believe in consistently communicating our wins and areas where we need improvement. This approach not only builds trust but also fosters a culture of continuous improvement. Being brutally honest and transparent helps in setting realistic expectations and maintaining credibility with the team and stakeholders.

Lastly, I value feedback from the board and other stakeholders. I actively seek out their input and use it to refine our strategies and operations. This collaborative approach ensures that we are aligned with the broader organisational goals and are responsive to the needs and concerns of our stakeholders. By incorporating their feedback, we can make informed decisions that drive the organisation forward.

What do you think is the current hot cybersecurity talking point?

In the current cybersecurity landscape, one of the hottest, if not the hottest, talking point, is around regulatory compliance. Given the extensive regulations that have been in place for many years, organisations in this industry are constantly striving to meet the stringent standards set by banks and financial institutions.

To mitigate these threats, we focus on maintaining multiple ISO certifications, with ISO 27001 being a top priority. These certifications span across cloud security and privacy, ensuring that we meet international standards and we additionally uphold our

WWW. INTELLIGENTCISO. COM 67