CIO Tech Asia: Living a Tech-Free Life
CIO Tech Asia invited me to join them on a podcast. We discussed the top cybersecurity threats facing businesses in 2020 and beyond. We also provided deeper insights into the steps CISOs can take to prepare for an attack.
I also explore the current ransomware attacks on major companies, and consider when an organization should decide whether to pay or not the ransom.
The podcast can be downloaded here
To listen via Spotify
To listen via Apple Podcast
To listen via Android Podcast
For all the rest and more:
Live a Tech-Free Life
For more information on evets:
How CISOs can reduce risks? Interview with Intelligence CIO Magazine
Cyberthreats are becoming more complex and widespread in the Middle East. Chief Information Security Officers (CISOs), who are responsible for cybersecurity, must constantly review their processes and practices to ensure they are effective and efficient. Intelligent CIO Middle East is joined by Dr Erdal Ozkaya (Regional Chief Information Security Officer, Standard Chartered Bank), who has more than 20 years experience in cybersecurity. He shares his personal insights and tips with fellow CISOs from the region about how to create a safer environment for their businesses.
The role of chief security officer (CISO), is no longer the same as it was five or ten years ago. Those who are in the position today say that it’s not necessarily a negative thing.
In the past, chief security officers (CSOs), who were lauded as IT security administrators, were responsible for maintaining firewalls and negotiating with software vendors about faulty antivirus signature updates. They also cleaned out infected desktops and laptops of spyware. While some CSOs in the Middle East still play this role, the majority of their responsibility has moved to the bigger picture and designing a program that balances acceptable risks with the unacceptable.
Today’s CISO would hire someone to handle all technical security tasks. This is the ideal scenario. The question is not if you can inspire them to do the same things you did, or if they’ll reject you because you think you are superior.
Talk to us about the role of a CISO, and how enterprises in the Middle East can protect their digital assets.
Previously, a CISO was a core cybersecurity role. However, today, the CISO’s role involves more business leadership and risk management. A CISO must be able help executives at the C-suite understand risk and how it affects them. Any CISO in a Middle East enterprise organisation must have the ability to explain security to non-techies, build and maintain crucial relationships, and communicate at both operational and senior levels. Soft skills are essential for evangelizing security initiatives, celebrating successes, and expressing business outcomes.
Cybersecurity is becoming more important due to the increasing number of cyberattacks and the large losses that victims are reporting. Many organisations implement cybersecurity as a result of an attack or threat. Organisations can choose to implement reactive, proactive, or operational cyberdefences depending on their financial resources and level of vulnerability to threats. A CISO will help an organisation choose the best cyberdefence strategy by going through the different approaches to cybersecurity.
A CISO spends most of his or her time dealing in cyber-risk and security operations.
Data loss prevention and fraud prevention, planning and buying security hardware and software, identity management, and roll-out,