Wayne Sadin explains why multiple updates to crew scheduling software SkySolver won’t fix Southwest Airlines technical debt issues.
Risk Management
Think your company is immune to a SWA-style meltdown? Not so fast. Wayne Sadin explains why CXOs must implement technology oversight in four key areas: capacity risk, project risk, disaster risk, and technical debt.
In episode 41, Wayne Sadin uses the airline’s recent flight cancellation crisis to demonstrate the need to look at all of your IT risks, not just one of them.
The capabilities of Snyk for automatic discovery & remediation have positioned it to shift security left. However, vendor solutions only go so far.
The public sector has a reputation for moving slowly and inefficiently, but when it comes to cybersecurity, it may be the place for private sector businesses to watch and learn.
Here is a tale of two former bosses and their differing styles toward the supplier community. There’s a lesson here in that the low-risk option on the surface may be hurtful in the long run.
Janet looks at this year’s Verizon Data Breach Investigations Report (DBIR) and singles out a few facts that can help organizations evaluate risk in partnership strategy.
Penetration testing is an inherently manual process and runs in contrast to the DevSecOps movement, so where does it fit in? Robert Wood delves into it.
It’s common for the C-suite to look at cybersecurity efforts with fear, uncertainty, and doubt (FUD). Here’s why that needs to stop, and how to do it.
Managing AI bias empowers organizations to unlock AI’s tremendous opportunity to drive positive outcomes, writes Robert Wood in this look at the new NIST AI playbook’s main takeaways on the topic.
Quantifying cyber risk helps board members and other business leaders see the importance of cybersecurity investment. As Chris Hughes explains, the FAIR model offers a framework to do this.
Janet Schijns looks at the impact a partner can have, both positive and negative, on your firm’s data project, and offers tips on vetting and choosing the right ones.
Driving down the IAM environment’s complexity should be a major priority for all organizations, especially given the common problem of attracting and retaining technical talent.
Automated risk management is growing in importance as global finance becomes more interconnected and mobile — and therefore more complex.
The high-level fundamentals are a good starting point for organizations to reduce their vulnerabilities, writes Chris Hughes.
As supply chain complexity has exploded, CISOs need to map out the risk management strategies for their organizations.
In this Cybersecurity Minute, Chris talks about NIST’s updated C-SCRM Guidance based on tasking from the Cyber Executive Order from the President.
This four-step framework can help guide your company through the process in actively implementing risk management.
There’s a tremendous opportunity for the CISO to collaborate with the CFO, as finance and security play a significant role for organizations.
In this Future Office of the CXO Minute, Wayne Sadin breaks down risk fundamentals and what Boards & C-Suite executives should be talking about.