For Us to Change, I Must Change

Our biggest challenge is not the adversary, nor the management of our cyber security organizations. Our biggest challenge is finding and maintaining alignment throughout the organizations we protect. Success for us means creating advocates and evangelists out of everyone in the enterprise. This is our primary aim- the rest of our job gets easier when that happens. As crisis managers, we understand two things very well. First, paraphrasing Mike Tyson, everyone has a plan until the fight actually happens. Second, the idea of “never wasting a crisis” rarely results in sustained momentum for positive change. If evidence is the currency cyber defenders use to pay down security debt and balance the value equation between adversaries and the enterprise. Empathy and alignment manifested as trust, is the internal currency the security organization relies on to build pathways and bridges into the broader enterprise. To respond to and evolve from crisis events we must understand the structures upon which operational excellence, no matter the organization, are built and have both the strategic acumen and established trust to grab a hand and walk out of the fire stronger together. We will focus on removing information asymmetries within our organization, elevating the conversation as we speak with partner teams, and leading strategically with empathy by stepping out of our comfort zone. SANS Cybersecurity Leadership Summit 2023 Title: For Us to Change, I Must Change Speaker: Bernard Brantley, Chief Information Security Officer, Corelight View upcoming Summits: http://www.sans.org/u/DuS