Sometimes, a CISO needs to be an instant expert on a some concept – perhaps to explain it more deeply to peers, or more likely to need to define a strategy to apply security or leadership principles to it. Each of these concepts has a handbook – a quick summary of the concept – as well as relevant tagged posts and podcasts that might provide more color on the concept.
SaaS
-
How to CISO Volume 1: The First 91 Days
Ninety days is generally the grace period (or “honeymoon,” if you’d like) that a new executive has to get…
-
The Death of the CIO
CISOs grew up in the CIO’s blindspot. As cloud and SaaS bring IT and security back together, which will…
-
Handbook: Environments
One challenge of being a CISO is understanding scope: when a colleague tells you a truth (hypothetically “We patch…
-
Handbook: Applying Zero Trust Principles in a Cloud-Centric World
Zero Trust … but to Which Cloud? In the cloud-centric world enterprises increasingly operate in, there are different interesting…
Zero Trust
-
Zero Trust in Administration
CrowdStrike, Windows domain administration, SolarWinds — our implicit trust in admin software is a recipe for repeated disasters. The…
-
Handbook: Zero Trust Principles
In the 2010s, the cybersecurity community was introduced to the concept of zero trust, the idea that implicitly trusting…
-
Handbook: Applying Zero Trust Principles in a Cloud-Centric World
Zero Trust … but to Which Cloud? In the cloud-centric world enterprises increasingly operate in, there are different interesting…
-
RSAC 2025: Zero Trust To Give
Welcome to the Talk Page for Having Zero Trust to Give: What should have been next? You can find additional…
Professional Development
-
How to CISO Volume 0: The Idealized CISO Job Description
Many companies are not in dire need of a CISO right now, but need to define a role for…
-
RSAC 2025 CISO BootCamp: The Idealized CISO
Welcome to the talk page for A Unicorn Designed by a Committee: The Idealized CISO. You can find additional…
-
RSAC 2025: The CISO to VC Transition
Welcome to the talk page for My Journey – CISO to Partner at a VC Firm, as given at…