CISO Series Newsletter
Posts
11-21-19 - Oops! Did We Just Hire a Cyber Moron?

11-21-19 - Oops! Did We Just Hire a Cyber Moron?

Oops! Did We Just Hire a Cyber Moron?

November 21, 2019

View this email in your browser

CISO | Security Vendor Relationship Series

This week's episode of Defense in Depth

Cybersecurity Readiness as Hiring Criteria

On this episode of Defense in Depth:

Co-host Allan Alford and our guest Greg van der Gaast, head of information security, University of Salford, discussed:

For all candidates, whether in cybersecurity or not, gauge their current level of cybersecurity awareness.
There was a time we put knowledge of Microsoft Word and Excel on our resumes. Now you never see it because it's common knowledge. Security knowledge is not common. At this stage it would be seen as a valuable bonus to have it on your resume.
There are always small things that hiring managers look for to tip the scales in a candidates favor. Cybersecurity skills should be one of them.
For candidates who would have the most to gain from cybersecurity awareness, bring in the CISO to ask one or two questions during the hiring process.
Different departments bounce candidates off each other even if they're not going to be working in a specific department. They want to know how well a person will or won't interface with your department.
There's a strong fear that adding cybersecurity into the hiring criteria will greatly slow down the hiring process which could damage business productivity.
There was much debate around seemingly great candidates, such as an accountant with 20 years of experience, who fails miserably on cyber awareness. Would that raise a red flag?

Special thanks to this week's Defense in Depth podcast sponsor, Enzoic.

Enzoic is an enterprise-focused cybersecurity company committed to preventing account takeover and fraud through compromised credential detection. Organizations can use Enzoic solutions to screen customer and employee accounts for exposed username and password combinations to identity accounts at risk and mitigate unauthorized access. Learn more about Enzoic.

Dave Bittner, host of The Cyberwire on Cybersecurity and the Media

TOMORROW! CISO Series Video Chat (Friday, 11/22/19 at 10 AM Pacific)

Hacking the Email Pitch:

An hour of critical thinking on a security vendor's very first outreach to a prospect

Join us tomorrow for this super fun weekly event, where everyone can participate. Either in text chat or on video. We're going to talk about do's and don'ts of pitching to CISOs via email.Go ahead and register. It all starts at 10 AM Pacific tomorrow.

Anahi Santiago, CISO, ChristianaCare on security and patient safety

SUBSCRIBE TO BOTH PODCASTS

Go ahead and click on any of these links to subscribe to the podcast feed of your favorite podcast catcher.

If you're already a subscriber, THANK YOU! If you like either or both shows, please tell all your friends on social media and write a review on iTunes.