If everything is messaging, limited narrative offers options - both from imaginative possibilities uncovered within the audience, and the sharp defensive counters to misinterpretation. When looking to control ther story told, there is value in deniability. -scl
Finding everyone’s value
An effective cyber organisation requires multiple talents, some hidden, some obvious. Leaders in cyber should aim to uncover and conduct the cyber orchestra so as to make it all work together to pre-empt and to resolve cyber challenges.
Cyber Risk Client Considerations
Prioritisation of client reporting and focus needs to be based on the connection and likelihood of compromise, not based on the clients' relative tiered status. Clients with higher status would likely have better defense. The ones with lower tiered connections may have greater vulnerability.
SolarWinds of Change?
SolarWinds has been the talk of the cyber world for the last month, with many legitimate concerns taking a Zen role in security circles - very much looking at the present. As we move to 2021, and get closer to understanding what happened and its organisational impacts, it's time to look at other questions.
SITG’s Perfect Storm
Skin in the game (SITG) goes past personal investment in endeavors, to potential loss or harm shared when an effort goes south. In larger senses we need organisational SITG to adjust culture or sector behaviours - with potential harm implicit for collectively falling short.
Bending and Breaking
Many small adjustments and oversights in process, risk controls equate to the bending of material to fit it to the desired space. Only when there has been too much strain, or too many bends, will the bent piece be broken. A break leads us to find a proper piece, or decide if something else would be more suitable.
Mapping our Fragility
Measure based on past experience, mapping where our fragility lies.
Crisis as BAU
Can incidents like COVID result in long term shifts in how we do business? Or is it a longer term crisis-du-jour, with underlying issues remaining unresolved?
Cassandra’s Paradox
Cassandra's paradox is knowing something will be missed, but not knowing what something is. It's missing what could be without understanding what could be.
Cyber in Space
For space to be a viable part of human existence, we need to reframe how we implement technology - specifically cyber. Operations in space have no place for cyber risks to life and efficacy.
