Larry Clinton: "The Essence of Cybersecurity is that All the Incentives Favor the Bad Guys."

This podcast episode focuses on the evolving landscape of cybersecurity as a broad perspective, the importance of board involvement and understanding their legal exposure, the role of the CISO and the challenges they face, and the need for cybersecurity regulation to be forward-looking and risk-based, rather than the current check-the-box compliance model. Takeaways • Cybersecurity is not just a technical issue but involves human and economic factors as well, requires a broader perspective, and is an enterprise-wide risk management issue. • The NACD ISA cyber risk handbook provides guidance on creating a culture of security, having better cyber risk management, and aligning cybersecurity with business goals. • The CISO should not be solely responsible for cybersecurity as it is an enterprise-wide issue. • There is a shortage of cybersecurity personnel, which hinders the implementation of technology and standards, and creating a virtual Cybersecurity Academy and an economic cybersecurity model could address this issue. • Cybersecurity regulation should be forward-looking and risk-based, rather than the current check-the-box compliance model.

Outlines

Sign in to continue reading, translating and more.

Continue

Boardroom Governance with Evan Epstein

The Evolving Landscape of Cybersecurity: A Conversation with Larry Clinton, President and CEO of the Internet Security Alliance

The Importance of Board Involvement in Cybersecurity

The Evolution of the NACD Cybersecurity Handbook

The NACD ISA Cyber Risk Handbook: A Comprehensive Guide to Cybersecurity

Cybersecurity as an Enterprise-Wide Risk Management Issue

The Role of the Board in Cybersecurity

The Role of the CISO in Cybersecurity

Navigating Cyber Risks and Artificial Intelligence in the Boardroom

Addressing Cybersecurity Challenges: A Discussion on Personnel Shortage, Economic Models, and Regulation

Cybersecurity Regulation and Personal Reflections

Cybersecurity and Boardroom Governance: A Conversation with Larry Clinton

Larry Clinton: "The Essence of Cybersecurity is that All the Incentives Favor the Bad Guys."

Boardroom Governance with Evan Epstein

00:02The Evolving Landscape of Cybersecurity: A Conversation with Larry Clinton, President and CEO of the Internet Security Alliance

The Evolving Landscape of Cybersecurity: A Conversation with Larry Clinton, President and CEO of the Internet Security Alliance

08:20The Importance of Board Involvement in Cybersecurity

The Importance of Board Involvement in Cybersecurity

14:02The Evolution of the NACD Cybersecurity Handbook

The Evolution of the NACD Cybersecurity Handbook

19:16The NACD ISA Cyber Risk Handbook: A Comprehensive Guide to Cybersecurity

The NACD ISA Cyber Risk Handbook: A Comprehensive Guide to Cybersecurity

24:48Cybersecurity as an Enterprise-Wide Risk Management Issue

Cybersecurity as an Enterprise-Wide Risk Management Issue

28:41The Role of the Board in Cybersecurity

The Role of the Board in Cybersecurity

34:32The Role of the CISO in Cybersecurity

The Role of the CISO in Cybersecurity

41:14Navigating Cyber Risks and Artificial Intelligence in the Boardroom

Navigating Cyber Risks and Artificial Intelligence in the Boardroom

47:20Addressing Cybersecurity Challenges: A Discussion on Personnel Shortage, Economic Models, and Regulation

Addressing Cybersecurity Challenges: A Discussion on Personnel Shortage, Economic Models, and Regulation

51:34Cybersecurity Regulation and Personal Reflections

Cybersecurity Regulation and Personal Reflections

57:05Cybersecurity and Boardroom Governance: A Conversation with Larry Clinton

Cybersecurity and Boardroom Governance: A Conversation with Larry Clinton