Global CISO – Strategy, Tactics & Leadership: How to Succeed in InfoSec and CyberSecurity
This book is written by a C(I)SO for C(I)SOs – and also addresses CEOs, CROs, CLOs, CIOs, CTOs, Security Managers, Privacy Leaders, Lawyers, and even Marketing and Sales executives. It is written by a seven-time career CISO for other visionaries, leaders, strategists, architects, compliance and audit experts, those politically interested, as well as, revolutionaries, and students of IS, IT, and STEM subjects that want to step up their game in InfoSec and Cybersecurity.
The book connects the dots about past data breaches and their misconceptions; provides an international perspective on privacy laws like GDPR and several others, about threat actors and threat vectors; introduces strategy and tactics for securing your organisation; presents a first glimpse on leadership; explains security program planning and backup plans; examines team building; conceptualises the governance board; explores budgets; cooperates with the PMO; divulges into tactics; further elaborates on leadership; establishes the reporting structure; illustrates risk assessments; elucidates security processes, principals, and architectural designs; enumerates security metrics; skims compliance; demonstrates attack surface reduction; explicates security intelligence; conceptualises S-SDLC (SecDevOps); depicts security management; epitomizes global leadership; illustrates the cloud’s weaknesses; and finishes with an outlook on IoT.
If you are in need of strong, proven, battle-tested security advice for a progressing security career, if you’re looking for the security wisdom of a global, experienced leader to make smart decisions, if you are an architect and want to know how to securely architect and design using guiding principles, design patterns, and controls, or even if you work in sales and want to understand how (not) to sell to the CISO – this is your almanac – and you will read and reference it many times.
Michael S. Oberlaender is one of the best globally renowned security leaders; he has worked for over two and a half decades in global executive security roles for several global market-leading companies. Mr. Oberlaender is a sought-after conference speaker, panelist, and moderator; he has published numerous thought-leadership articles in the leading security journals, and is the author of the famous book C(I)SO – And Now What – How to Successfully Build Security by Design.Mr. Oberlaender sits on the Advisory Board for the companies TriagingX and SentinelOne, previously sat on that of NetSkope, and is an active and supportive member of ISACA, (ISC)², ISSA, InfraGard, and several industry associations. He is certified as CGEIT, CISM, CISSP, CRISC, CISA, ACSE, GSNA, TOGAF-9, and CNSS-4016. He holds a Master of Science (Physics) from the Ivy League ranking university, University of Heidelberg, in Germany.