Winning in cybersecurity starts with great leaders - exceptional people that possess the unique combination of skills that can unlock massive gains. This book looks at how to enable the science of cybersecurity through the art of leadership: cultivating passion in others, enlightening and rallying a broad stakeholder community, orchestrating resources, and implementing real security in an environment.
Cyber Risk Leaders: Global C-Suite Insights - Leadership and Influence in the Cyber Age’, by Shamane Tan - explores the art of communicating with executives, tips on navigating through corporate challenges, and reveals what the C-Suite looks for in professional partners. For those who are interested in learning from top industry leaders, or an aspiring or current CISO, this book is gold for your career. It’s the go-to book and your CISO kit for the season.
This book enables newcomers, business professionals as well as seasoned cybersecurity practitioners and marketers to understand and to explain the discipline to anyone. This book is not about technology and no technical knowledge or prior background is required to understand this book. The book is also highly recommended as a general management and leadership book. Cybersecurity involves people, policy, and technology. Yet most books and academic programs cover only technology. Hence the implementation of cybersecurity as a people powered perpetual innovation and productivity engine is not done. People think they can buy cybersecurity as a product when in fact the discipline is the modern practice of digital business strategy. People also equate cybersecurity with information security or security alone. However, security is a state, while cybersecurity is a process. Too many people equate cybersecurity with computer science even though cybersecurity is a business discipline. Written by Dr. Mansur Hasib a globally acclaimed scholar, practitioner, and author with a Doctor of Science in cybersecurity and over ten years experience designing and running award-winning cybersecurity education programs on a global scale. The author also served as Chief Information Officer and implemented profitable digital transformations and cybersecurity strategy in healthcare, biotechnology, education, and energy for more than 30 years. This book is widely acclaimed by practitioners and scholars alike as the definitive book on cybersecurity leadership and governance. Dr. Hasib is a sought after speaker and has won multiple global awards such as: 2020 Cybersecurity Champion of the Year; 2020 People's Choice Award in Cybersecurity; 2019 Best Cybersecurity Higher Education Program in the USA; 2019 Outstanding Global Cybersecurity Leadership; 2018 Best Cybersecurity Higher Education Program in the USA; 2018 Hall of Fame; 2017 People's Choice Award in Cybersecurity; 2017 Information Governance Expert of the Year; 2017 (ISC)2 Americas ISLA Award. Dr. Hasib enjoys table tennis, comedy, and travel and has been to all 50 states of the USA. Twitter @mhasib Subscribe free to YouTube Channel with 200+ videos: https://www.youtube.com/@DrMansurHasib Contact for speaking invites and author-signed books: https://www.cybersecurityleadership.com
If Sun Tzu were alive today, rather than in the fifth century BC, he would be on various stages and his strategies would be all the rage for individuals and organizations alike. In The Art of Cyber Conflict, Henry J. Sienkiewicz brings his strategic and practical experience to bear as he uses the timeless strategies from Sun Tzu’s The Art of War in this highly relevant and exceptionally approachable guidebook. From a technology-independent perspective, Henry focuses on knowing and understanding cyber, the cyber environment, the cyber actors, and this constantly evolving form of modern conflict, while concurrently providing direct approaches to recognize, remediate, and resolve the underlying threats. “A thought-provoking and earnest view of the current cyber landscape from the classic construct of Sun Tzu. I anticipate it soon will be a key text for War College students as they explore cyber risk management strategies.”
Cybersecurity threats are on the rise. As a leader, you need to be prepared to keep your organization safe. Companies are investing an unprecedented amount of money to keep their data and assets safe, yet cyberattacks are on the rise--and the problem is worsening. No amount of technology, resources, or policies will reverse this trend. Only sound governance, originating with the board, can turn the tide. Protection against cyberattacks can't be treated as a problem solely belonging to an IT or cybersecurity department. It needs to cast a wide and impenetrable net that covers everything an organization does--from its business operations, models, and strategies to its products and intellectual property. And boards are in the best position to oversee the needed changes to strategy and hold their companies accountable. Not surprisingly, many boards aren't prepared to assume this responsibility. In A Leader's Guide to Cybersecurity, Thomas Parenty and Jack Domet, who have spent over three decades in the field, present a timely, clear-eyed, and actionable framework that will empower senior executives and board members to become stewards of their companies' cybersecurity activities. This includes: Understanding cyber risks and how best to control them Planning and preparing for a crisis--and leading in its aftermath Making cybersecurity a companywide initiative and responsibility Drawing attention to the nontechnical dynamics that influence the effectiveness of cybersecurity measures Aligning the board, executive leadership, and cybersecurity teams on priorities Filled with tools, best practices, and strategies, A Leader's Guide to Cybersecurity will help boards navigate this seemingly daunting but extremely necessary transition.
This book is for cybersecurity leaders across all industries and organizations. It is intended to bridge the gap between the data center and the board room. This book examines the multitude of communication challenges that CISOs are faced with every day and provides practical tools to identify your audience, tailor your message and master the art of communicating. Poor communication is one of the top reasons that CISOs fail in their roles. By taking the step to work on your communication and soft skills (the two go hand-in-hand), you will hopefully never join their ranks. This is not a “communication theory” book. It provides just enough practical skills and techniques for security leaders to get the job done. Learn fundamental communication skills and how to apply them to day-to-day challenges like communicating with your peers, your team, business leaders and the board of directors. Learn how to produce meaningful metrics and communicate before, during and after an incident. Regardless of your role in Tech, you will find something of value somewhere along the way in this book.
Successfully lead your company through the worst crises with this first-hand look at emergency leadership Cyber security failures made for splashy headlines in recent years, giving us some of the most spectacular stories of the year. From the Solar Winds hack to the Colonial Pipeline ransomware event, these incidents highlighted the centrality of competent crisis leadership. Cyber Mayday and the Day After offers readers a roadmap to leading organizations through dramatic emergencies by mining the wisdom of C-level executives from around the globe. It’s loaded with interviews with managers and leaders who've been through the crucible and survived to tell the tale. From former FBI agents to Chief Information Security Officers, these leaders led their companies and agencies through the worst of times and share their hands-on wisdom. In this book, you’ll find out: What leaders wish they'd known before an emergency and how they've created a crisis game plan for future situations How executive-level media responses can maintain – or shatter – consumer and public trust in your firm How to use communication, coordination, teamwork, and partnerships with vendors and law enforcement to implement your crisis response Cyber Mayday and the Day After is a must-read experience that offers managers, executives, and other current or aspiring leaders a first-hand look at how to lead others through rapidly evolving crises.
Widely acclaimed and cited by practitioners and scholars alike as the definitive book on cybersecurity leadership and governance appropriate for anyone within or outside the cybersecurity discipline. Explains cybersecurity, Chief Information Officer, Chief Information Security Officer roles, the role of ethical leadership and the need for perpetual innovation in the discipline. This is listed as one of the best books of all time in cybersecurity as well as management by BookAuthority. The book provides an authoritative peer reviewed definition of cybersecurity based on models explained in the books. It is a significant reference book for leadership in any organization; however, it specifically addresses the challenges unique to technology and cybersecurity. The book provides a business-level understanding of cybersecurity and critical leadership principles for interdisciplinary organizational leaders and technology professionals. It should be the starting point of anyone seeking to enter the cybersecurity field or gain a business level understanding of what is required for anyone to successfully implement cybersecurity in an organization.
"All men can see the individual tactics necessary to conquer, but almost no one can see the strategy out of which total victory is evolved." Sun Tzu - The Art of War My objective in writing this book is very clear, I wish to inform a senior business audience on what the cyber risk landscape is comprised of today and what they can do to protect their organisations in developing a cyber risk oversight strategy. Aimed at a very busy audience, I have kept this work as concise and focussed as possible. The book is essentially set out in two sections. The first section outlines what exactly the challenge is from a cyber risk landscape perspective. What are the threats and what are their origins? In writing this book, I have considered myself in dialogue with a board member and therefore refrained from technical terms as much as possible. The second section of the book outlines what you can do. It sets out ten principles of cyber risk oversight. Consider each principle like a strand of rope having its own strength but when twisted together are immensely strong. The answer to cyber risk lies with strategic leadership. Sun Tzu is a 500BC Chinese military strategist who's work "The Art of War" has been used for over two and a half thousand years around the globe to develop military and even business strategy. To reinforce this proven approach, I have aligned the "Ten Principles of Cyber Risk Oversight" with Sun Tzu's lessons so that you can help your organisation develop your cyber risk oversight with military precision. I hope my 25 years of experience in dealing with cyber risk from a military, law enforcement and enterprise perspective will greatly assist you in dealing with the risk to your organisation from cyber related threats. Paul C Dwyer Author
The real-world guide to defeating hackers and keeping your business secure Many books discuss the technical underpinnings and complex configurations necessary for cybersecurity—but they fail to address the everyday steps that boards, managers, and employees can take to prevent attacks. The Cybersecurity Playbook is the step-by-step guide to protecting your organization from unknown threats and integrating good security habits into everyday business situations. This book provides clear guidance on how to identify weaknesses, assess possible threats, and implement effective policies. Recognizing that an organization’s security is only as strong as its weakest link, this book offers specific strategies for employees at every level. Drawing from her experience as CMO of one of the world’s largest cybersecurity companies, author Allison Cerra incorporates straightforward assessments, adaptable action plans, and many current examples to provide practical recommendations for cybersecurity policies. By demystifying cybersecurity and applying the central concepts to real-world business scenarios, this book will help you: Deploy cybersecurity measures using easy-to-follow methods and proven techniques Develop a practical security plan tailor-made for your specific needs Incorporate vital security practices into your everyday workflow quickly and efficiently The ever-increasing connectivity of modern organizations, and their heavy use of cloud-based solutions present unique challenges: data breaches, malicious software infections, and cyberattacks have become commonplace and costly to organizations worldwide. The Cybersecurity Playbook is the invaluable guide to identifying security gaps, getting buy-in from the top, promoting effective daily security routines, and safeguarding vital resources. Strong cybersecurity is no longer the sole responsibility of IT departments, but that of every executive, manager, and employee.
