- CISO Series Newsletter
- Posts
- We Take Privacy, Not Our CISO, Seriously
We Take Privacy, Not Our CISO, Seriously
We Take Privacy, Not Our CISO, Seriously
This week's episode of CISO/Security Vendor Relationship Podcast
We Take Privacy, Not Our CISO, Seriously
was recorded live on June 6th at The B.O.B. in Grand Rapids, Michigan at the 2019 West Michigan IT Summit, hosted by C3 Technology Advisors. My co-host Allan Alford, and our guest, Dan Lohrmann, former CISO/CSO/CTO of the state of Michigan, discuss:
Don't base security spending on a percentage of anything (IT budget or industry recommendations).
It's simply not a way to calculate security, nor does it get you any more or less secure. It also backs you into a corner as to how much you have to spend on security.
Annual security awareness training doesn't stick.
Everyone at our event had gone through it and it's more of a requirement, than a fun thing to do. Instead, 10 minute monthly gamified reminders of cybersecurity awareness are far more valuable, useful, and if programmed correctly, can be fun.
Asking a prospect if they know something about their environment can be an insult.
If your product is able to find
X
, one would think a great way to market your product is to ask your prospect if they know where
X
is in their environment. Not necessarily wise when selling cybersecurity. Such a question challenges the security professional's ability to do their own job.
Don't promise to do anything in "minutes."
When a CISO sees that it just screams BS. Nothing ever gets fixed in minutes.
Special thanks to this week's CISO/Security Vendor Relationship Podcast sponsors: C3 Technology Advisors, Assured Data Protection, and Fuze.
C3 Technology Advisors is a technology consulting firm that helps midsize to enterprise organizations make better technology buying decisions. With technology quickly changing, let C3 help you shift through all the disruption, noise, and sales pitches to allow you to make better technology buying decisions for your organization.
Assured Data Protection provides backup and disaster recovery solutions utilizing Rubrik ‘as a Service’. They offer 24/7 global support, with expertise that truly sets them apart from other back up and DR service providers.
Fuze is the #1 cloud communications and collaboration platform for the enterprise, combining calling, meeting, chatting, and sharing into a single, easy-to-use application. Designed for the way people work, Fuze allows the modern, mobile workforce to seamlessly communicate anytime, anywhere, across any device.
David Spark and Allan Alford, co-hosts of
Defense in Depth
recording an episode of
CISO/Security Vendor Relationship Podcast
in Grand Rapids, MI
.
This FRIDAY, Allan and Dave in Dallas
June 14th, Dallas, TX - From Hiring to Buying: What Do CISOs Want?Come join this open discussion I'll be leading with Allan about hiring and selling in cybersecurity. Please REGISTER
Video preview from this week's CISO/Security Vendor Relationship Podcast
Why Is This a Bad Pitch?
Here's a segment from our live recording of the CISO/Security Vendor Relationship Podcast at the 2019 West Michigan IT Summit in Grand Rapids, Michigan. See me, Allan, and Dan critiquing a truly awful pitch.
SUBSCRIBE TO BOTH PODCASTS
Go ahead and click on any of these links to subscribe to the podcast feed of your favorite podcast catcher.
If you're already a subscriber, THANK YOU! If you like either or both shows, please tell all your friends on social media and write a review on iTunes.