Writing
Posts on leadership, cybersecurity, and AI governance from the CISO seat at the National Football League.
Regularly Test Backup and Recovery Plans
Having a reliable backup and recovery plan is a critical component of an organization's cybersecurity strategy.
Ensure Compliance with Data Privacy Laws
Staying compliant with evolving data privacy laws and regulations is crucial for maintaining trust and avoiding legal penalties.
Manage Shadow IT Risks
Shadow IT refers to IT systems or software used within organizations without explicit approval.
Develop a Cyber Resilience Plan
Beyond prevention, organizations must be prepared to respond and recover from cyber incidents.
Embed Security in Project Lifecycle
To effectively mitigate cybersecurity risks, security considerations must be embedded in the lifecycle of every project, from inception through deployment and beyond.
Foster Security Collaboration Across Industries
Cybersecurity is a shared challenge that benefits from cross-industry collaboration. Boards should encourage their organizations to participate in industry-wide cybersecurity…
Enhance Physical Security Measures
While cyber threats often take the spotlight, physical security breaches can also lead to significant information security risks.
Prioritize Risk Assessment
Effective cybersecurity starts with a comprehensive risk assessment. For board members, it's essential to ensure that your organization continuously evaluates its digital assets,…
Solidify Your Cybersecurity Policy
A cybersecurity policy is the foundation of a secure organization. Board members should advocate for the development and continuous refinement of policies that address current…
Strategize Cybersecurity Investment
Strategic investment in cybersecurity is essential for protecting your organization's digital assets.