Businesses that are not cyber vendors have an opportunity to sell cyber as part of their offering, taking advantage of money and effort already spent, and an opportunity to show greater understanding of their clients' businesses in the digital space.
Tag: PnL
Continual Growth
Positive or negative, growth is constant provided effort, time and opportunity. Interpreting what/ how/ why for individuals/ groups/ functions requires a gardener's eye to flourish.
On Dangers of Standing Alone
We call on one another's accountability, often recognising the courage required to stand up for right despite challenges. Assuming a stakeholder or leader faces these alone miscasts notions of organisational dynamics and isolation. In some regards we are alone - understand it defies the definition of leadership.
Threat Versus Risk in Cyber
Looking at the distinctions between Cyber Threat Intelligence (CTI) and cyber risk - both with similar elements with supportive properties, but often misunderstood. Offering definition to aid practitioners, auditors, regulators and boards.
Building with Fire
Some things are bent to suit. Some are broken in process. Some things just have to burn. The following are considerations for metaphorical implications.
Need-to-Know Versus Need-to-Share
At opposite ends of the intelligence spectrum, need-to-know (limited audiences) and need-to-share (expansive audiences) vie for dominance. Here we define these practices, associated concerns, and circumstances where one approach is likely preferable.
Separating Actors and Actions in CTI
Using traditional intelligence models in private sector often doesn't account for the difference in audience and scope of responses available. By separating the focus between actors and actions, CTI practitioners can focus on delivering actionable intel to decision-makers thus also building the case for cyber as a value generating component of the P&L.
Cyber as part of P&L
Cyber is commonly seen by businesses as a cost center. Changes are afoot that suggest it is increasingly a revenue generator. There are great gains in client relationships to be made if organizations that are not vendors of these services think in a similar way about offering value from their cyber teams' work.