Michael Santarcangelo

Michael Santarcangelo develops exceptional leaders and powerful communicators with the security mindset for success. The founder of Security Catalyst, he draws on nearly two decades of experience of success advancing security in variety of operational roles. He guides leaders and teams on the best next step of their journey.

Using threat modeling to prove security success

Do we really need higher education to solve our perceived and actual security needs?

Do we really need higher education to solve our perceived and actual security needs?

John Boling shares the path he took to security leadership and reflects on what we really need to attract and train the workforce to advance security

What the Florida ruling on passwords actually means for security leaders

What the Florida ruling on passwords actually means for security leaders

Shawn Tuma explains the rationale of the case and offers insights on potential implications to prepare security leaders for productive executive updates

Security leaders hindered by lack of automation to respond to incidents

Security leaders hindered by lack of automation to respond to incidents

Vincent Geffray shares insights gained from a new survey assessing the ability of leaders to respond to IT outages and security incidents with suggestions on where to focus for rapid improvement

When your threat intelligence just isn’t producing value you need to pivot

Josh Lefkowitz of Flashpoint shares his experience leading the pivot from threat intelligence to business risk intelligence and explains the enterprise benefit for security leaders

Why security leaders need to embrace the concept of reasonable security now

Why security leaders need to embrace the concept of reasonable security now

Vanessa Henri explains the legal definition of reasonable security and why now is the time to embrace the concept and prepare

The first question security leaders need to ask before a breach happens

The first question security leaders need to ask before a breach happens

Engage people in a dialogue that uncovers what actually matters to learn where and how to improve security before a breach happens

How security leaders need to fix the security industry skills shortage

How security leaders need to fix the security industry skills shortage

Shai Gabay offers some practical steps each security leader can follow to attract and hire the right people to help ease the security industry skills shortage

What security leaders need to do about privileged account blind spots

What security leaders need to do about privileged account blind spots

Jonathan Sander explains why privileged accounts creates a blind spot in traditional Identity and Access Management solutions and what to do about it

A better way for security leaders to handle third party risk

A better way for security leaders to handle third party risk

Patrick Gorman shares the change in mindset needed to improve how we handle and protect the digital supply chain, third-party risk, and security overall

Security leaders need to stop chasing “risk catnip”

Security leaders need to stop chasing “risk catnip”

While it feels good, risk catnip creates problems for security teams. Security leaders can stop chasing risk catnip by asking a simple question.

Who needs a bug bounty when you got this?

Who needs a bug bounty when you got this?

Questions and considerations on the recent shorting of a stock before disclosing the vulnerability

Load More