Subtle gaps can form between leader and staff members. Here's to the bridge-builders. Some of your employees don’t understand what you do all day. Some of your vendors don’t either. It’s human nature--everyone tends to look at the world through the periscope of his or her own duties and challenges. An offhand comment at lunch from an attendee at the CSO Perspectives conference brought this home to me again. At the conference, we hit a wide variety of topics. Some “soft” stuff: how to communicate with the board, how to write a strategic plan, how to build employee awareness. Some “hard” stuff: botnets, data loss prevention, virtualization. The lunchtime comment was somewhat dismissive of the soft stuff--the “fluff” that executives seem to talk about so much. People with less seniority in an organization tend to have very concrete responsibilities, for lack of a better word. Vendors tend to look at you as “the guys who buy our stuff,” without a great deal of regard for what your other issues might be. Metrics, strategic planning and particularly communication issues are off their radar. These differences in duties lead to disconnects. A guy in the trenches dismisses your interest in fluff and wonders why you waste so much time in meetings. Conversely, a woman on mahogany row refers to “the rank and file” and sometimes even uses the unfortunate and unprofessional phrase “dumb it down” in reference to communicating with the general populace. All of these disconnects war against enterprise security. In a large organization, you can’t solve the hard problems without applying the soft skills. You can’t have great security without executive and employee buy-in. The person who watches the BugTraq list and the one who builds a strategic plan are both necessary. Throughout CSO’s history, we’ve emphasized the need to solder connections between physical security and cybersecurity; that’s one gap that, happily, continues to shrink. The two groups no longer sit at different tables during our conferences. As always, I was impressed with the new folks (and familiar faces) I met at CSO Perspectives. Great networkers with lots of ideas on how to connect the dots, mesh audiences, and share best practices without jeopardizing confidentiality. Here’s to the bridge builders. Related content news UK government plans 2,500 new tech recruits by 2025 with focus on cybersecurity New apprenticeships and talent programmes will support recruitment for in-demand roles such as cybersecurity technologists and software developers By Michael Hill Sep 29, 2023 4 mins Education Industry Education Industry Education Industry news UK data regulator orders end to spreadsheet FOI requests after serious data breaches The Information Commissioner’s Office says alternative approaches should be used to publish freedom of information data to mitigate risks to personal information By Michael Hill Sep 29, 2023 3 mins Government Cybercrime Data and Information Security feature Cybersecurity startups to watch for in 2023 These startups are jumping in where most established security vendors have yet to go. By CSO Staff Sep 29, 2023 19 mins CSO and CISO Security news analysis Companies are already feeling the pressure from upcoming US SEC cyber rules New Securities and Exchange Commission cyber incident reporting rules don't kick in until December, but experts say they highlight the need for greater collaboration between CISOs and the C-suite By Cynthia Brumfield Sep 28, 2023 6 mins Regulation Data Breach Financial Services Industry Podcasts Videos Resources Events SUBSCRIBE TO OUR NEWSLETTER From our editors straight to your inbox Get started by entering your email address below. Please enter a valid email address Subscribe