Bringing human-centered cyber security skills to every role
The Soft Side of Cyber
Robert Wood
Members Public

Five hard truths about soft skills in cybersecurity

We train. We research. We pontificate. We read. We do so much to cultivate the technical skills that go into cybersecurity. You see it at every level, penetration testers sharing tools and WAF bypass tips. CISOs share experiences implementing certain strategic initiatives or tools they've found work well. This kind

Frank Domizio
Members Public

Navigating the Cyberstorm: Crisis Management in Cybersecurity

Today, we're delving into the tumultuous waters of crisis management in cybersecurity. Cyberstorms can hit hard, but with a well-defined plan, we can weather any digital tempest that comes our way. The Cybersecurity Paradox Cybersecurity is all about prevention, right? Indeed, a robust security posture helps keep the wolves at

Robert Wood
Members Public

Goal setting vs. metrics: a guide for CISOs and security leaders

If you've read anything about goal setting over the last few years, you've undoubtedly heard about OKRs. This acronym stands for objectives and key results. A lot has been written about OKRs, how to set them up, how to measure them, and so on. In this article, I want to

Frank Domizio
Members Public

The CISO Role: Beyond Technology

Sure, being a CISO means you're the defender of your organization's digital realm. But it's not all about firewalls, encryption, and malware scans. There's a softer side to it – one that revolves around people, relationships, and communication. 1. Establishing Trust as Your Cornerstone Picture yourself as the captain of a

Frank Domizio
Members Public

Building Trust and Security: The CISO's Guide to Relationship Building

As many of you know, I recently started a new role as Chief Information Security Officer for a private company. I firmly believe that taking on the role of CISO isn't just about securing data; it's also about building relationships. In today's digital age, where security threats are fast-moving and

Robert Wood
Members Public

The top 10 lies we tell ourselves as security teams

Try as we might, security teams are often subject to the same sort of echo chamber groupthink dynamics that any other function might experience. There are subtle messages or biases that can creep into our collective consciousness and cause significant harm. This article will break down what I see as

Robert Wood
Members Public

Top 3 things that cybersecurity leaders can do to support team mental health

Last week's article focused on how individuals working in cybersecurity can better care for their mental health. The silent adversary in cybersecurity. This week, we will build on this and talk about things leaders can do to create and cultivate a team culture that supports mental health. This applies to

Frank Domizio
Members Public

The Intersection of Cybersecurity and Mental Health

Explore the unspoken impact of cybersecurity on mental health in our article. Discover the hidden challenges and the path to a healthier cyber-work balance.

Robert Wood
Members Public

5 Ways to Lead in Cybersecurity Without a Title

How do you step into a leadership role without a leadership or manager title? Should you be leading without the title? Should you be getting recognition with a title or other compensation if you're leading but don't yet have the title? All these questions and more are at the center

Frank Domizio
Members Public

The Role of Empathy in Cybersecurity: Understanding the Attacker's Mindset

Hey everyone! Today, we're diving deep into the world of empathy in cybersecurity. You might be wondering, "Frank, why on earth would we need empathy for hackers and attackers?" Well, my friends, it's time to put ourselves in their shoes (or keyboards) for a moment and understand what makes them

Robert Wood
Members Public

Nobody wants to read your s%!t

I'm hijacking the title of a fun little book I read recently by the same title. The point of this post (and the book) is that people have a lot going on. They probably don't want to seek out your writing or your work and read it. Therefore, if you

Frank Domizio
Members Public

The Crucial Role of Taking Time Off: A Guide for Cybersecurity Professionals

In the fast-paced and high-pressure world of cybersecurity, it's easy for us to become immersed in our work, often sacrificing personal time and relaxation. However, taking time off and disconnecting from work is not just a luxury; it's a crucial practice for maintaining peak performance, preventing burnout, and fostering mental