What is the most important advice you can give the next generation of security professionals and CISOs?

Security & GRCPersonal Development
1.7k viewscircle icon7 Comments
Sort by:
Field Chief information Security Officer (CISO) for Public Sector & Client Advisor in Finance (non-banking)3 years ago

Find a mentor, who is at least 5-10 years ahead of you in your professional career, and who you trust to guide your journey. Also, be a mentor for others and give back. 

For more details on this. see: https://www.govtech.com/blogs/lohrmann-on-cybersecurity/security-pros-need-a-mentor-heres-why-and-how.html 

Lightbulb on1
Director ERP Management in Travel and Hospitality3 years ago

Make sure to include a solid defense against Ransomware, review it regularly and update as new vulnerabilities are discovered. 

CISO in Finance (non-banking)3 years ago

Don't be afraid to fail and truly learn from those experiences.

CISO in Software3 years ago

Always have a training and growth plan with dedicated time allocation and structure to stay current on trends, technologies and processes.

CIO/CISO in Healthcare and Biotech3 years ago

Focus enough time on learning to translate the technical aspects of what you do (using risk as the key arbiter) into language that your C-Suite peers and board members can understand. The technical controls have become much more mature in the past 5 years, the real challenge is preparing to talk on the same language level as your peers in other business units

Content you might like

Which best describes your knowledge of the number of IoT devices (both managed and unmanaged) in your system’s network?

I know the exact number19%

I don't know the exact number, but have a dashboard that can tell it to me.62%

We don't have a way to determine that number currently.18%

View Results

With AI adoption accelerating across enterprises, what do you view as the top information security challenge that leaders should address? How can CISOs, VPs and Director’s align governance, risk and security investments to enable AI innovation without creating new exposures?

Do you have a lock out policy for system accounts? If so, how many attempts do you have it set too? 

Have you considered not having a lock out policy where accounts are vaulted / rotated & standing access is removed?

How are you currently managing SIEM costs? Have you found effective ways to actually reduce storage costs for your SIEM?

In the past 6 months, have you seen an uptick in targeted cyberattacks on telehealth devices and networks?

No Increase17%

1-5% increase46%

6-25% increase24%

26-50% increase7%

51-75% increase1%

76%+1%

Other2%

View Results