Defense in Depth

What Triggers a CISO?

Aug 22, 2024

Sherron Burgess, CISO at BCD Travel, shares her insights on the evolving challenges CISOs face in the cybersecurity landscape. She candidly discusses the frustrations with vendor interactions and the pressure of disingenuous claims in sales. Sherron emphasizes the importance of culture shifts within organizations to recognize security as a shared responsibility. She also highlights the necessity for clear boundaries and effective communication in navigating the complex dynamics of risk and security while advocating for diversity in the workforce.

33:27

Creator website

Episode guests

Sherron Burgess

AI Summary

AI Chapters

Episode notes

Podcast summary created with Snipd AI

Quick takeaways

CISOs often experience frustration from ineffective vendor interactions, which leads to wasted time on irrelevant solutions that do not meet their specific needs.

The evolving concept of risk acceptance within organizations highlights a cultural disconnect where security is often viewed as an obstacle rather than a collaborative necessity.

Deep dives

Triggers for CISOs

CISOs face numerous annoyances, particularly stemming from ineffective vendor interactions and internal organizational pressures. Common frustrations include vendors pitching solutions that fail to address specific needs or falsely claiming comprehensive security coverage. Additionally, there is a rising velocity of these trigger points due to the increasing number of companies vying for attention in the cybersecurity landscape. This pressure is exacerbated by unrealistic demands from their own organizations, showcasing a disconnection between business imperatives and cybersecurity realities.

Intro

2min

Frustrations in Cybersecurity Sales

10min

Navigating Risk and Security Dynamics in Business

4min

Navigating CISO Challenges in Cybersecurity

13min

Navigating Cybersecurity Complexity

4min

All links and images for this episode can be found on CISO Series.

Check out this post for the discussion that is the basis of our conversation on this week’s episode co-hosted by me, David Spark (@dspark), the producer of CISO Series, and Steve Zalewski. Joining me is our guest, Sherron Burgess, CISO, BCD Travel.

In this episode:

Disingenuous claims rub everyone the wrong way.
Don’t put the CISO behind the 8-ball
The sales hustle
They didn’t understand the assignment

Thanks to our podcast sponsor, Scrut Automation

Scrut Automation allows compliance and risk teams of any size to establish enterprise-grade security programs. Our best-in-class features like process automation, AI, and 75+ native integrations reverse compliance debt and help manage risk proactively as your business grows. Visit www.scrut.io to learn more or schedule a demo.

Remember Everything You Learn from Podcasts

Save insights instantly, chat with episodes, and build lasting knowledge - all powered by AI.

Defense in Depth

What Triggers a CISO?

Episode guests

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

Triggers for CISOs

Vendor Miscommunication

Acceptance of Risk

Cultural Challenges in Security

Remember Everything You Learn from Podcasts