“I like to learn from other leaders because there has been a lot of innovation recently ”
Michael Jenkins MBE, CISO of Brunel University talks to Sooraj Shah about how he has learned from the ideas and experiences of other security professionals and business leaders during the pandemic.
Michael Jenkins will be speaking at the teissR3 | Resilience, Response and Recovery summit taking place online, 15 – 24 September.
This year, the very popular teissR3 event focuses on how to improve your organisation’s cyber resiliency and adopt best-practice in incident response and crisis management in a post-COVID-19 world. Space is limited. Register your free place by clicking here.
So with everything that you’ve learned, what advice would you give to other infosec leaders?
Well, that’s an interesting question. I think I like to learn from other leaders as well and see what they’re doing in their businesses, because there’s been a lot of innovation, I would say, over the last four months, and by all sorts of business leaders, actually. And I’ve been in contact with a number of other CISOs in other sectors as well, and it’s been interesting to see what they’ve been doing.
And I’ve learned a lot. I’ve come up with some new ideas, as well, because I think it’s all about how do you reach the breadth and the depth of staff in the company. How do you actually get to them when you’ve got your different messaging sort of campaigns and platforms? But how can you truly get down to the very, very bottom and make sure every worker has got the communication they need and the awareness that they need?
And I think what we’ve tried to do– it goes back to the issue about getting people to care about their data, because what I’ve been finding is that there’s been peer challenge, for example. And the practise of data handling in particular departments is often raised in some of the online meetings and forums and committees. And I think that’s probably the best way to philtre through the business that, hey, we care. We want everybody to care with data handling. So I think the best advice I would give to infosec leaders is that messaging and communication is a top priority for any business in order to ensure that the community and the culture is right to provide collective defence.