For Today’s CISO, It’s All About Incident Response and Resilience

For many years, Chief Information Security Officers (CISOs) were measured against an impossible objective: 100% breach prevention. Thankfully, many today understand there is no such thing as 100% protection against breaches. This has changed how CISO effectiveness is gauged: from breach prevention to incident response and resilience.In a world where no organization is 100% protected from security compromise, creating an effective incident response (IR) plan is perhaps the most important job of the CISO.

Author: Molly Jin
Employees Play a Key Role in Fighting Cyberattacks

The number of worldwide cyberattacks is on the rise, and organizations with a global footprint face a relentless wave of attacks by motivated “threat actors.” To combat proliferating threats, it is important to take a holistic approach to cybersecurity that includes the three pillars of organizational transformation: people, process and technology. While employees can be the weakest link in cybersecurity – they also can be the first, and strongest, line of defense.

Author: Molly Jin
We’ve all Been Thrown a Curveball. What Now?

We were all thrown a curveball earlier this year, and as security professionals we remained calm, demonstrated leadership/ownership, and helped get our companies to where we are today: operational in a semi-state of lockdown with no clear path or time frame out of this environment. How will you lead during the ongoing pandemic environment and re-focus on the “now” rather than getting tunnel vision for the “end?” There is a myriad of unknowns to consider, but the more we can eliminate the discomfort around ambiguity, the safer and more productive our workplace and employees will be.

Author: Molly Jin
ISMA Op-Ed: Restructuring Organizational Teams for Success During the Pandemic

The plans many of us had in place pre-COVID were based on a management structure where the focus was on a hierarchy designed for efficiency in risk mitigation. Our chain of command facilitated the transfer of information in a vertical path to allow for analysis and additional inputs at each step for a holistic picture of the situation at hand. The corresponding approvals for action were then transferred back down the chain. While the process was efficient from an informational standpoint, it was encumbered by numerous choke points which lengthened response times. The variables that impact the organization today are evolving too rapidly to invoke an effective, swift, and agile response. We can no longer operate the way we have in the past. The answer to our new problem is a flatter organizational structure, one which facilitates a more nimble and adaptable response to the daily – sometimes hourly – changes that occur.

Author: Molly Jin
Corporate Security’s Adaptability in the Return to the Workplace  – an ISMA Member Perspective

COVID-19 has profoundly changed the way we live, work, and provide security. So, what's the new normal for corporate security?

Author: Molly Jin
ISMA Perspective: Navigating the Return to Work

The events of the last 3 months have undoubtedly affected and changed life for most of us. Throughout this pandemic the ISMA membership, made up of over 400 of the world’s leading Chief Security and Chief Information Security Officers, has been collaborating on a daily basis on a broad range of operational resilience initiatives to support business continuity and resilience, to secure operations and to support recovery efforts. ISMA members are at the forefront of business leadership, ensuring the safety and security of employees and customers while enabling the business to maintain and recover.

Author: Molly Jin
  • Comments