In this OODAcast, OODA Network Expert Jen Hoar interviews noted cybersecurity and intelligence professional Bob Gourley, CTO of OODA LLC, diving deep into what makes him tick. Jen asks Bob about his career, including the constants and dynamics in his professional life, starting with a deep background in operational intelligence as a naval intelligence officer. She explores his strengths and weaknesses and how he makes decisions in domains of overwhelming information. Jen asks Bob for advice for others on ways to keep learning. A key point underscored by Bob was how organizations need to find balance between the use of technology for collection and analysis and humans for collection and analysis when it comes to understanding complex situations. Lessons on writing and how it can help a career are also examined. Jen pulls stories from Bob he has never publicly revealed, including insights into how operational intelligence drove decisions in many joint and naval operations, and how those related to the business world today. Bob's anecdotes make it clear, "Great leaders thrive on intelligence and they take action on it." For more see: OODA LLC: Providing due diligence and cybersecurity services An Executive’s Guide To Cognitive Bias in Decision Making: Important insights into how human bias can impact decisions A Practitioner’s View of Corporate Intelligence: An overview of what a comprehensive program entails Optimizing Corporate Intelligence: Ways to get the most out of your efforts to gain decision advantage through intelligence Useful Standards For Corporate Intelligence: There are so many ways standards can help but the wrong standards can degrade your intelligence efforts.

Like many others we have observed first hand the positive changes in the cybersecurity community being enabled by Mari Galloway. In this OODAcast we look beyond those changes to find out what makes her tick, revealing lessons applicable to professionals in any stage of their career. Mari is the CEO and a founding board member for the Women's Society of Cyberjutsu (WSC), one of the fastest growing 501c3 non-profit cybersecurity communities. WSC is dedicated to bringing more women and girls to cyber and does so by providing its members with the resources and support required to enter and advance as a cybersecurity professional. Mari is a practitioner herself with an academic background in technology, multiple certifications, and, more importantly, years of direct hands on experience in mitigating risk and enabling the smooth functioning of enterprise operations. She began her cyber career with Accenture where she excelled as a Network Engineer, and also worked at several government agencies, in the casino industry, and now in the cybersecurity platform community. Her experience spans network design and security architecture, risk assessments, vulnerability management, incident response and policy development. Mari is also the inaugural ISC2 Diversity Award winner for 2019. In this OODAcast we discuss: The Women's Society of Cyberjutsu and how businesses and individuals can get involved. We also discuss the niche of technical hands-on experiences that WSC focuses on. The Wicked6 Cybergames eSports event during Blackhat and Def Con, which turned cybersecurity into a spectator sport. Her background and how she seeks to find balance between academic training (which she continues), training/certifications (which she pursues with vigor). This discussion brings out a character trait that also applies across her work and leadership of WSC, persistence. The foundational story behind WSC. The society was started out of a need for more hands on training. The fist workshop was a fast track to linux mastery session. Other workshops followed, including sessions on reverse engineering. WSC has now expanded nationwide as a community and offers a wide range of courses including sessions that help young girls learn and grow and also help those who already have a career. As an example, she mentions Recorded Future was just brought on as a sponsor, which lets them support the cause and also gives them exposure to great upcoming talent. Mari's approach to leadership and decision-making (her approach at WSC and as a practitioner is a collegial one, but focused on results and benefits to others). Her view of the cyber threat today and in the near future (which includes more of the social engineering and phishing threats that play to our emotions). Ransomware and insider threats are also still growing.

Jerry Davis has spent decades succeeding in hard jobs supporting critically important missions. He is a decorated combat Veteran who served in he US Marines for 11 years including in Operation Desert Storm/Desert Shield. He also served in the Central Intelligence Agency in service to world wide missions including leveraging technology in denied areas against high profile targets.  Jerry would later become the first CISO at the US Department of Education, then the CISO for NASA and later the CISO for the Department of Veterans Affairs.  He returned to NASA as the CIO for the Ames Research Center, a position he held till 2018. Jerry currently provides strategic consulting and design assistance focused on mitigating risk to mission critical programs and activities, including some of the most interesting activities humans are planning on conducting in space. This OODAcast we ask Jerry about his approaches to leadership and management, what motivated him to pursue the hard jobs, and how his early times in the field with the CIA helped him throughout his career (he learned to be a really good critical thinker, and also credited the fact that he learned by being exposed to many different cultures, all of which translated well to the cyber world).  Jerry clearly has a fond place in his heart for intelligence and the community, and makes the point that even though the IC has huge technological components, but it is really a people centered business. The importance of training and practice and honing skills was also a key part of Jerry's background including how to think on your feet. He is a believer in planning and having backup plans and backups to the backup plans. No plan survives first contact, so learn to be agile. We also examined Jerry's leadership methods in organizations that are reluctant to change but need to. Jerry also has deep experience leading security in collegial environments (like leading security for the NASA mission centers). Jerry is a future focused person who is closely tracking the US space program and its many interesting programs (like Artemis, the return of humans to the moon). We ask his views on the future and the technology and risks we all need to mitigate to optimize the future.

Paul Kurtz is an internationally recognized expert on cybersecurity and the Co-Founder and Chairman of TruSTAR. Paul began working on cybersecurity at the White House in the late 1990s. He served in senior positions relating to critical infrastructure and counterterrorism on the White House's National Security and Homeland Security Councils under Presidents Clinton and Bush. After leaving government, Paul has held numerous private sector cybersecurity positions including founding the Cyber Security Industry Alliance (Acquired by Tech America), Executive Director of SAFECode, Managing Partner of Good Harbor Consulting in Abu Dhabi, and CISO of CyberPoint International. Paul’s work in intelligence analysis, counterterrorism, and critical infrastructure protection has influenced his approach to cybersecurity. Paul believes in intelligence-centric security integration and automation. Today he spends his time consulting security leaders about how to manage their intelligence across tools. Paul believes in using machine learning to help detect, triage, investigate, and respond to events with confidence. In this OODAcast we dive into Paul's views on the cybersecurity landscape today and learn more about his approach to decision-making. We discuss a new concept he has been shepherding in the community regarding how cyber intelligence can be optimized for the benefit of any organization. We also extract lessons relevant for any leader who wants to make better, more accurate and actionable decisions in competitive environments. Additional Resources: TruSTAR: An Intelligence Management platform which helps security teams accelerate automation. Paul Kurtz OODAloop Interview: Our introduction of Paul to other OODAloop members

Rear Admiral Paul Becker, USN (Retired), is an author, speaker and board member with extensive experience in intelligence operations. During his 30 year career as a naval intelligence officer he lead major operational intelligence efforts, rising to the position of Director of Intelligence (J2) for the Joint Chiefs of Staff. Upon retirement from the Navy he formed a consultancy delivering solutions and lessons learned around intelligence to corporate America. He is also a professor, teaching at the US Naval Academy and the University of Virginia.  Paul is renowned for his ability to translate military leadership principles into corporate pillars of performance, productivity and profit. In this OODAcast we ask Admiral Becker for his insights into what intelligence is and how to evaluate it, the difference in leadership and management, and the nature of the shifting threats in the modern geopolitical environment. We examine some of Paul's personal heroes and discuss the continuing legacy of Colonel John Boyd. We also ask Admiral Becker about his reading habits including the books he taps into for inspiration. Related Resources: The Intelligent Enterprise Series: Special reports from OODA focused on corporate intelligence Useful Standards For Corporate Intelligence: Based on lessons learned from the US intelligence community and corporate America Optimizing Corporate Intelligence: Tips and best practices and actionable recommendations to make intelligence programs better. A Practitioner's View of Corporate Intelligence: insights aimed at corporate strategists seeking competitive advantage through better and more accurate decision-making. An Executive's Guide To Cognitive Bias in Decision Making: Cognitive Bias and the errors in judgement they produce are seen in every aspect of human decision-making, including in the business world. Companies that have a better understanding of these cognitive biases can optimize decision making at all levels of the organization, leading to better performance in the market.

Dr. Melissa Flagg is a Senior Fellow at the Center for Security and Emerging Technology (CSET) at Georgetown University. Previously she served as the Deputy Assistant Secretary of Defense for Research, responsible for policy and oversight Defense Department science and technology programs including basic research through advanced technology development and the DoD laboratory enterprise. She has worked at the State Department, the Office of Naval Research, the Office of the Secretary of Defense for Research and Engineering, the John D. and Catherine T. MacArthur Foundation, and the Army Research Laboratory. Melissa also ran her own consulting business and was the Chief Technology Officer of a small consumer start-up. She has served on numerous boards including the National Academy of Sciences Air Force Studies Board and the Department of Commerce Emerging Technology Research Advisory Committee; she is on the Board of Humanity 2050 and a full trustee with the DC Chapter of the Awesome Foundation. She holds a Ph.D. in Pharmaceutical Chemistry and a B.S. in Pharmacy. In this OODAcast we ask Dr. Flagg about her approach to decision-making, her views on technology trends, and discuss the potential impact of a wide range of critically important subjects including: Artificial Intelligence Quantum Computing Biological Sciences We also ask for her lessons learned on mental models relevant for decision making and explore her eclectic reading habits. Additional Reading: The Five Modes of HACKthink

Mark Weatherford is an icon in the cybersecurity field. He is widely known as a mission focused leader who builds teams and gets hard things done. His career included success in the US Navy as a cryptologist, leadership and management in a major defense integrator, CISO for two states (Colorado and California), CISO of the nation's regulatory organization for our power grid (the NERC), head of security efforts for the newly formed DHS, and operational CISO roles and advisory board positions for several US corporations. Our OODAcast with Mark focused on his insights for the cybersecurity community, including views on how to stay informed in dynamic environments, how to approach the position of CISO, how to optimize your career planning, and how to work with corporate boards as a CISO. He also provides advice for board members and CEOs on interacting with their CISO and security team.   Mark has written on CISO leadership, including two posts for OODA members at: 10 Rules For Cybersecurity Salespeople Embracing a Future of Technical and Political Churn Other Resources: Mark Weatherford on LinkedIn Covid-19 Sensemaking Mitigating Risks To America’s Cognitive Infrastructure 10 Red Teaming Lessons Learned Over 20 Years The Five Modes of HACKthink

In this OODAcast, the tables are turned as OODA Network Expert Jen Hoar interviews CEO Matt Devost and they discuss how Matt consistently identified new threats and opportunities by blending eccentric interests into a career as a serial entrepreneur and become an established expert on cybersecurity, counterterrorism, and technology issues. Having been educated in a one-room schoolhouse in the rural Northeast Kingdom of Vermont, Matt identified a way to blend his interests in emerging national security threats and computer science into a bespoke career path and took persistent risks to realize non-obvious opportunities. Matt's Bio: Matt began his professional career in 1995 hacking into systems for the US Department of Defense and Intelligence Community and over the past twenty-five years has emerged as an established thought leader in the cyber and security domains. A successful entrepreneur, he has founded several companies including FusionX & the Terrorism Research Center and played a key leadership role in a handful of successful companies including Accenture, iSIGHT Partners, iDefense, and Tulco Holdings. He has served as a senior advisor to DoD, a professor at Georgetown University for fourteen years , and is a founding member of the Black Hat review board. Matt’s unique approach to technology, business, and security issues is driven by a technique he calls “HACKthink” – applying a hacker mindset to analyze and dissect complex problems and develop innovative solutions. Matt has appeared on CNN, MSNBC, Fox News, NPR, CBC, CBS News, BBC television, NWCN, Australian television and dozens other domestic and international radio and television programs as an expert on terrorism and cybersecurity and has lectured or published for the National Defense University, the United States Intelligence and Law Enforcement Communities, the Swedish, Australian, Japanese, and New Zealand governments, American University, George Washington University, and a number of popular press books – magazines, academic journals and over 200 international conferences. Matt has co-written or authored chapters for several books including Cyberadversary Characterization, Threats in the Age of Obama, Information Warfare Vol. 2, Sun Tzu Art of War in Information Warfare, Counterterrorism, and Addressing Cyber Instability. He was the technical editor for Hacking a Terror Network and best-selling author David Ignatius’ book The Director, and advised on the Chris Hemsworth movie Black Hat. Additional Resources: Matt's 1995 Thesis - National Security in the Information Age Matt's Writing at OODALoop Recommended Book:  If Then: How the Simulmatics Corporation Invented the Future Connect with Matt on LinkedIn Follow Matt on Twitter

Kevin Roberts has had an illustrious career spanning many industries over numerous continents including serving as Chairman and CEO of Saatchi & Saatchi, one of the world’s leading creative organizations, where he had responsibility for the effectiveness of several of the world’s leading advertising budgets including for clients Toyota and Procter & Gamble. Today, his company Red Rose Consulting counsels business leaders and employees on creative thinking, marketing, and leadership. Kevin is the author of several best-selling books, including an OODA Top 10 Book of the Year for 2017; 64 Shots: Leadership in a Crazy World. OODA CEO, Matt Devost has given away dozens of copies of 64 Shots and it remains a personal favorite of his for the insight and inspiration it provides. In this OODAcast, Kevin provides his perspective on leadership, creativity, decision-making, and driving focus and action to be successful in business and life. Are we living in a super-VUCA world (Volatile, Uncertain, Complex, Ambiguous)? How no plan survives the first 24 hours and how to engage in adaptive decision-making. The role data plays in decision-making and where data falls short. How leadership is about creating leaders, not great teams. The role focus plays in successful entrepreneurship. How to expand your frame of reference by studying other fields. How insights are not insightful. The link between storytelling and leadership. Hacking your way into the future. Managing through a crisis. Who inspires Kevin today and what is he reading. Additional Resources: Red Rose Consulting 64 Shots Book Quant by Quant You Need to Tighten Your OODA Loop Around Covid-19

Gary Harrington had a distinguished career of national service that included over three decades in top tier special operations groups including Delta Force and then transitioning into the CIA. Gary was one of the first to deploy into Afghanistan after 9/11 and was at the tip of the spear in many locations including as a solo operator in high risk venues like Yemen. Today Gary advises private clients on approaches to maintaining security and safety in a volatile and unpredictable world. In this OODAcast, we dive into Gary's career trajectory, and lessons learned from special operations that can be applied to any business operation or to build high-value teams. Gary shares some interesting stories as well, demonstrating where timely decisions and a tight OODA Loop saved his life and how he learned to trust his gut, operate with humility and integrity, how to work with specialized teams, and how to adapt in those instances where he found himself operating alone. Additional Sources: Gary Harrington's OODA Network Interview Gary's Website What Gary is currently reading