You’ve heard that culture eats strategy for breakfast, but can it also take a bite out of security? On this episode, Steve chats to George Finney, CISO of Southern Methodist University.
George speaks about how cybersecurity is a team sport – its dependence on collaboration; and how to encourage openness and sharing in a field that deals with attack, defense, hunt and response.
The CISO that Cried Wolf
George also touches on the nuances of trying to navigate the CISO position, as its purpose is to raise alarm when necessary. He talks about how you don’t want to be the CISO that cried wolf every time there is potential for risk. However, you also don’t want to keep quiet out of fear.
On this episode, Steve and George also tackle topics like:
- A healthy leadership mindset
- How a law degree has helped him in his security career
- The importance of culture and how poor company culture can lead to a higher risk of a data breach
- Phishing training and,
- How to tackle a culture audit at your organization
More about George Finney
George Finney is a CISO, author, speaker, professor, and consultant who believes that people are the solution to every cybersecurity problem. He offers education and guidance to help anyone master the nine cybersecurity habits that are fundamental to enduring success so that everyone understands, accepts, and contributes to a safe and prosperous future.
George has worked in Cybersecurity for nearly 20 years and has helped startups, global telecommunications firms, and nonprofits improve their security posture. As a part of his passion for education, George has taught cybersecurity at Southern Methodist University and is the author of several cybersecurity books including Well Aware: Master the Nine Cybersecurity Habits to Protect Your Future.