The only constant in life is change. Sometimes change comes from an existential crisis. Need proof? Ask a CISO. The cybersecurity function traditionally solved technology problems with technology solutions like network firewalls and data encryption. Cybersecurity experts learned however that technology is only part of the equation. Businesses do not function without people. Unlike technology, people have biases. As a result, the cybersecurity function must understand people, human behavior, and the business goals that influence decision making. Hackers have already made the transition. Why do phishing attacks continue to plague businesses? Because they capitalize on human characteristics like trust, curiosity, and an eagerness to please. No level of technical expertise or certification will change human behavior. CISOs looking to close the talent or skills gap should look to people who possess empathy and excel in relationship building, listening, facilitating, and other soft skills.
Prior to COVID-19, CISO Street sat down with MJ McSheehy, Director of Information Security for Addison Group, to discuss some of the lessons he’s learned in his career. In this video, MJ – who entered cybersecurity after a lengthy career in theater – shares his views on the cybersecurity team’s emerging role.
