Articles on Leadership
Below are my perspectives on Leadership, drawn from my work as a security leader and practitioner.
- Communication Templates for Cybersecurity Executive Briefings In an effective executive brief, you lead with the bottom line and what a finding means for your organization. Use these four customizable templates to do exactly that across threat intel,...
- Communication Handling High-Profile Vulnerabilities When a high-profile vulnerability surfaces, executives and customers want to know whether it affects you. With a one-page brief and a short process, you can capture the key details and reach the...
- Artificial Intelligence What to Make of AIUC-1, a New AI Agent Certification New certifications start as claims and earn credibility through cycles of scrutiny. AIUC-1, a compliance framework for AI agent vendors, is at that starting point. How its structure, governance, and...
- Leadership When Executives Reject Your Security Recommendations A rejected security recommendation feels personal, but it often reflects competing demands the security team doesn't fully see. Knowing how to act on that reality helps the CISO become someone the...
- Leadership Security Governance at the Speed of Vibe Coding Employees who've never written code now build production apps using AI, without security review, dependency scanning, or enterprise oversight. The SaaS and DevOps transitions give security teams a...
- Assessments Scope Security Assessments for Attack Paths, Not Org Charts When assessment scope follows organizational lines, gaps open where team boundaries meet and real attackers don't stop. Pulling adjacent teams into the scoping conversation and following attack logic...