CyberOXtales
Join Neatsun Ziv, CEO of OX Security, in this bi-weekly, 20-minute video podcast designed for senior-level security professionals. Each episode features one guest and includes 3-5 questions, delving into key areas such as cybersecurity leadership and strategy. Gain insights into the strategic aspects of being a CISO, developing effective cybersecurity policies, building a security-minded culture, and aligning security strategies with business objectives. Stay updated on emerging threats and trends, focusing on the latest cybersecurity threats, trends, and techniques affecting application security. Additionally, explore compliance and regulatory updates, with discussions on the evolving landscape of compliance and regulations impacting application security, including CISA Directives, GDPR, CCPA, and HIPAA. Learn how CISOs can navigate these requirements effectively. Featuring conversations with CISOs, security experts, and thought leaders, this podcast is your go-to source for high-level and strategic communication of risk.
CyberOXtales
How to Align Infosec to Business Operations: Sam Curry’s Cybersecurity Playbook for Executives
In this episode of CyberOXtales Podcast, host Neatsun Ziv, CEO of OX Security, interviews Sam Curry, CISO of Zscaler. The focus of the conversation is on building relationships within and outside of the cybersecurity team. Sam shares his insights on the importance of alignment between cybersecurity and business counterparts, the challenges faced by CISOs, and the need for cybersecurity professionals to develop business skills. He emphasizes the four factors of trust and the role they play in building strong relationships. Sam also discusses the specific relationships that cybersecurity professionals need to cultivate, such as with the general counsel and finance teams. The episode concludes with practical advice on how to improve relationship-building skills and navigate the complexities of the cybersecurity field.
About Our Guest:
Sam Curry is a veteran in the field of cybersecurity, having witnessed its evolution from its nascent stages to its current complexities. Over the years, he has observed the field mature and transform significantly. Despite these advancements, Sam identifies a persistent challenge that hampers effective cybersecurity: the misalignment between information security and business operations. He emphasizes that while some professionals excel in bridging this gap, the tendency for cybersecurity to drift away from business priorities remains a recurring issue. Throughout his career, Sam has been dedicated to addressing this disconnect, striving for a more integrated approach to protect organizations better.
Key Takeaways:
- Building strong relationships between cybersecurity and business counterparts is crucial for the success of cybersecurity initiatives.
- The lack of alignment between cybersecurity and the business is a common problem in the industry, leading to burnout and short tenures for CISOs.
- Trust is a key factor in building relationships, and it is based on credibility, reliability, intimacy, and alignment.
- Cybersecurity professionals should develop business skills and be steeped in the core business of their organizations.
- It is important to establish relationships with key stakeholders such as the general counsel, finance teams, and customers to effectively address cybersecurity risks.
Listen to the full episode here. Stay tuned for more insightful stories, scenarios, and cybersecurity playbooks on CyberOXtales!