David sits down with Jean-Christophe Gaillard as he reflects on over 20 years of growth in the cybersecurity sector. JC reflects on how the cybersecurity model has changed, from one of risk and compliance to real-life inevitability.
Cyber Security maturity stagnates because CISOs are structurally prevented from looking beyond day-to-day firefighting
Clarity of roles and responsibilities across Security and IT, and a clear approach putting People and Process first ahead of ready-made Technology solutions, form the only basis on which cyber security maturity can grow, across any organisation, large or small.
As we look towards the next decade, the industry must pivot towards a clearer execution focus: Security cannot be seen any more JUST as a matter of risk appetite or as a box-checking exercise
Nobody can be reasonably expected to be GENUINELY and EFFECTIVELY credible from the board down, across all managerial and technical layers of the enterprise, and transversally across all its silos, from HR to Legal, Procurement or Compliance – and of course across all geographies and cultures for global firms.This profile simple does not exist
“Moving fast and breaking things” has never created trust. Start-ups must build customer trust from early days by embedding sound security and privacy practices in the products and in their culture.
For regulated industries (which isn’t in the age of GDPR?), blind trust will never be enough and being able to demonstrate a sufficient degree of due-diligence on key vendors will always be essential to defend against any liability in case of a data breach.