A CEO and CSO Who Actually Communicate about Security
Former Sharper Image CEO Richard Thalheimer and his CSO talk about how a close reporting relationship helped them reduce fraud and prioritize risks during their years together.
By Katherine Walsh
December 10, 2007 — CSO — How does a CSO earn the trust of his CEO? Keep the security department operating within its budget, focus on the biggest problems and keep the lines of communication open. Those are the key lessons Richard Thalheimer, founder and former CEO of Sharper Image, and his former CSO Joe Williams learned during the years they worked together at the retailer known for pricey gadgets.
Thalheimer left Sharper Image in September 2006 amidst sagging profits, and Williams left shortly thereafter. During their time together, however, they enjoyed one of corporate America’s most successful CEO/CSO partnerships--one that helped them reduce fraud and shrinkage and led to such mutual trust that the two, both pilots, now share a small airplane. Recently they spoke with CSO about how they used that relationship to shape security strategy and prioritize risks, and why their friendship is still going strong.
CSO: Which came first, your business relationship or your friendship?
Joe Williams, former CSO, Sharper Image: We didn’t know each other prior to working together. I started working for Sharper Image in 1985, and we began working more closely together over the years. At some point fairly early on, we started our direct reporting relationship. We became very close in the business aspect because of that. I think we both realized early that clear communication, going all the way to the top, was the best way to have the organization set up. That way, Richard knew exactly what was going on at his company in all areas, rather than having some things shielded. After that relationship developed, we realized we had a lot of common interests outside of that, whether it was flying, motorcycles or cars.
CSO: The two of you share a small plane; tell me about that.
Richard Thalheimer: It was originally a business thing: We had certain store locations that were difficult to get to on commercial jets, like Fresno, Calif., or Scottsdale, Ariz.. We’ve had a couple different planes over the years, a Bonanza and a Cessna among them. It was easier to use our little plane to visit those stores. Those experiences made us closer too. When you fly around in a small plane that consists of four seats and a propeller, just by being in that space for hours at a time with someone, you become better acquaintances.
CSO: How did you prioritize the risks facing Sharper Image?
Williams: We evaluated risk based on where the biggest potential loss was. Credit card fraud was important to stay on top of daily. Shrinkage could also add up quickly. Retail loss prevention is much like Whack-a-mole. Problems pop up in one hole, and once you’ve solved that, it pops up somewhere else. That’s what you’re doing, especially when you have a lot of stores. One of the best things you can do is to prioritize what’s going on that day.
Thalheimer: In our business, we found that more losses occurred internally than from credit card fraud online. There is a temptation to embezzle products. A lot of our work was involved with managing and motivating our own people to not be tempted.
CSO: How did you make decisions about whether to report a crime or pursue a criminal? Richard, when did you expect Joe to call and tell you about a problem?
Thalheimer: It would depend on what it was or who it involved. If it involved customers or store personnel at a lower level, often I wouldn’t hear about it, particularly if the stock clerk was being arrested in Tennessee or something like that. But if it was some sort of fraud or embezzlement, I’d want to know that, because those are people that are either directly or indirectly reporting to me. In general, seeing that the CSO is able to maintain his loyalty to the CEO and bring things to that person’s attention without any attempt to cover it up builds a much stronger bond over time.
CSO: Richard, was it ever hard to understand the ROI of security? Did you ever have a hard time understanding the reasoning behind a request for security funding?
Thalheimer: I don’t doubt every CEO goes through the process of evaluating their top management. But one observation about the way Joe ran the department is that it was always seemingly on a budget that was less than one might expect, rather than more. His department did not waste money. Once I recognized that personality trait of Joe’s, it was easy to have confidence that whatever expenditures they wanted to make were well worth it. They were usually under budget rather than over.