The challenges that security leaders have faced as it relates to communication date back to the early days of the profession. But as high-profile data breaches have become too well-known throughout the world, they’ve naturally caught the attention of board members that insist on being updated on what is being done about measurably reducing cyber risk within the business.
While security practitioners are far too familiar with the buzzword bingo that creeps into conferences on an annual basis, these same terms are also making their way into the boardroom.
As organizations continue to maneuver the threat intelligence waters, security leaders are now tasked with interpreting, succinctly, what their department has gathered on the threat intelligence front. To do this effectively, it’s all about putting it into business terms and not getting into the minutia of the technical details, says Tim Callahan, senior vice president, and global security officer at Aflac.
“It’s neat to be able to some degree predict what’s going to come at you, to be able to have sufficient knowledge to be able to prepare,” Callahan told InfoSec Insider during a recent video interview. “But you want to tune it so that it’s understandable at [their] level.”
Cyber threats are top of mind for board members, but communicating cyber threat intelligence may not be the most straightforward task for security leaders. In this recent interview with Callahan, he provides some helpful tips that could go a long way.