Andrew Long’s Post

Why does it seem like leaders don’t do any actual work but ride on the backs of people in the trenches? In one of my recent speaking engagements I had the opportunity to talk about how critical emotional intelligence is in leadership. This might be controversial. I would say in cybersecurity, emotional intelligence is even more important than technical skills. Over the past 16 years of my career, I’ve witnessed multiple times where lack of emotional intelligence from a CISO or CTO resulted in a deadlock with no action. The result is often delays in products and stifled innovation that harms the company. Or sometimes it means communication breaks down out of frustration and systems go unpatched, resulting in a breach. Now the reason I say Emotional intelligence is more important is because: 1. it’s a rarer skillset, 2. It directly relates to a leaders role A leaders responsibility is to steer the car. Their team is the one doing the hard work of turning the wheels, absorbing shock from bumps, keeping the engine cool, etc. The car parts might look at the driver and think, that guy has it easy. But the driver is making both strategic decisions about the route to go and also tactical decisions about how to get there. It takes all of their knowledge and experience to anticipate when a car might swerve into their lane or a road is heading slightly in the wrong direction. And in the end, if they wreck the car, or they dont maintain the car and it breaks down, the driver is accountable. The leader can hire technical talent to advise them, but it’s hard to hire someone to be emotionally intelligent for them. Because they’re making decisions in real time that impact the future of the team. Now that doesn’t mean it doesn’t help if the driver is also a technical mechanic. But the most important quality in a leader is that they know where to go and how to safely get there. Senior cybersecurity leadership at this level is tough. I’m still learning and growing all the time. People doing the technical work, if you’re not happy with the person driving the car then that’s a hard situation. If we want to actually make an impact in the seemingly losing battle of cybersecurity vs hackers, we need to invest in developing better leaders (drivers).

I have learned that to become a better CISO, it’s about constantly evaluating and improving my performance. This means my personal effectiveness.  As a leader– you have to make sure you are being effective as a leader not an individual contributor. It’s Sunday in my part of the world. Here are four personal metrics I track weekly to ensure I’m at the top of my game. What are yours? How do you prepare for your week? Metric 1: Decision-Making Efficiency Time is our most important asset –  How quickly am I making crucial decisions, and how effective are they? Tracking the speed and impact of my decisions moves me and the team forward. Being fast is not just about being fast; it’s about being right when it matters most. Metric 2: Leadership and Team Engagement I believe that a motivated team led by effective leadership is the heart of strong cybersecurity. I monitor my team's engagement and satisfaction. Are we having meaningful interactions? These moments build the trust and momentum we need to tackle any security challenge. Metric 3: Learning and Development Lots of changes as an executive and cyber leader-I track the hours I spend learning new skills reading books or taking classes. This ensures I’m actually learning something that is applicable. Staying updated is non-negotiable in our field, and this metric keeps me accountable for continual growth and relevance. Metric 4: Personal Satisfaction  Lastly, but most importantly, I track my personal satisfaction. It’s about reflecting on whether I’m finding joy and fulfillment in my role.  Am I maintaining a healthy work-life balance? What are you willing to put up with —or not put up with? This metric is crucial because a satisfied CISO leads to a more positive, productive, and innovative cybersecurity environment. I believe this is the most important metric of anyone.  Are you satisfied in where you are and what your doing?  Are you contributing?  Are you being treated with DRC? Things to think thru before your week starts. What else would you add to this list? #CISO #Cybersecurity #Leadership #CIO #CEO #Personalleadership #Excellence

8 years ago, I stepped into a leadership role with a fancy title. “You’ll make impact” they said.  “We need you” they said.  “It’ll be fine” they said. I found out, indeed, YOU CAN - Make an impact. - Provide value. - Do great. GIVEN, you understand what (security) leadership is about. What most people think security leadership is: - Getting great title and pay (70%) - Telling the board what to do (10%) - Telling employees what not to do (10%) - Working with cool technology and architecture (10%) What security leadership is truly about: - Wearing a heavy crown of ethics and integrity (30%) - Negotiating with everyone on a day to day basis (30%) - Leading people effectively and managing expectation (20%) - Openly embracing the uncomfortable and the unknown (5%) - Creating presentations after presentation for stakeholders (5%) - Convincing the top management why you need that budget (5%) - Communication, communicating and way more communicating (5%) After being in this industry for ca. 20 years, here's my advice to you: You want to break into security leadership? Do NOT get in for the title. Do NOT join just for the pay. Do NOT take the role for authority. Here's what you need to succeed in a security leadership role: 1. Drive and willingness to put in the hard work 2. Ability to have a vision and tell a story 3. Dedication to make an impact 4. Grit and perseverance to try 5. Strength to keep going 6. Ability to lead people 7. Means to execute 8. Openness to fail 9. Grit to try again 10. Humility 🚀 I'm launching my GUIDE TO BREAK INTO SECURITY LEADERSHIP in April. Interested? Add your email address to waiting list at monicatalkscyber (dot) com. 🚨 P.S. This SUMMER, I am LAUNCHING MY FIRST EVER MASTERCLASS on Effective Security Leadership. You won't be hearing just from me but also 10+ GLOBAL SECURITY LEADERS from all over the world. You do not want to miss it. Add your email to monicatalkscyber (dot) com to be the first one to hear about it. #cybersecurity #leadership #artificialintelligence #hiring #career #breakintoleadership #10x

Have you ever thought about what makes hackers so effective? It's their mindset. They don't see boundaries; they see possibilities. Now, imagine applying that mindset to leadership. Here's why thinking like a hacker could be your secret weapon as a leader: Innovation through Curiosity Hackers question everything. They don't accept the status quo. As a leader, this means pushing beyond conventional wisdom. Adaptability and Agility Hackers pivot quickly. When a door closes, they find a window. Leaders need this agility to navigate ever-changing business landscapes. ProblemSolving Under Pressure Hackers thrive under constraints. They turn obstacles into opportunities. Leaders who can do the same will always find a way forward. Understanding the System Hackers know the ins and outs of systems. Leaders who understand their organization's intricacies can better strategize and innovate. Risk Management Hackers take calculated risks. They weigh potential rewards against possible setbacks. Effective leaders do the same. They make informed decisions that drive growth while minimizing risks. Fostering a Culture of Learning Hackers are lifelong learners. They stay ahead by continually updating their knowledge. Leaders who foster a learning culture inspire their teams to innovate and excel. So, how can you start thinking like a hacker? → Question assumptions. ↳ Challenge norms. → Embrace change. ↳ Adapt quickly. → Learn continuously. ↳ Stay curious. Lead like a hacker and watch your team thrive. What other hacker traits do you think are valuable for leadership? Share your thoughts below. Join our community of forward-thinking cybersecurity leaders! Subscribe to my mailing list at https://lnkd.in/e9weTvkn or join the Next Generation CISO Leadership community at https://lnkd.in/eqZK4GGU for exclusive insights and updates. We look forward to connecting with you! #NextGenCISO #HULectoraatCyberSecurity #DigitaleVeiligheid #CyberSecurity #DigitalSecurity #HogeschoolUtrecht

Cultivating Leadership: The 7 Habits of Highly Effective Cyber Leaders As cybersecurity professionals, technical expertise is often the cornerstone of your career. Yet, as you look to move into leadership, an overemphasis on technical skills alone can lead to a critical blind spot — neglecting the development of human skills essential for effective leadership.   You know how to configure a secure(ish) server and mitigate vulnerabilities, but can you inspire a team, communicate a vision, or navigate the complex human dynamics of an organization?   ⛔ Without incorporating key human skills into your professional arsenal, you might find yourself confined to the technical depth of your role, unable to leverage your full potential as a leader.   🔥 Enhance your leadership journey by adopting these 7 habits of highly effective cyber leaders:   1️⃣ Continuous Human Skills Development   Commit to regular training in areas such as communication, emotional intelligence, and negotiation to complement your technical expertise.   2️⃣ Decisive Action Taking   Cultivate the habit of making timely decisions with the information available, demonstrating confidence and clarity of purpose.   3️⃣ Strategic Vision Communication   Develop the ability to articulate your strategic vision for cybersecurity in a way that aligns with and motivates your team.   4️⃣ Adaptive Problem Solving   Build a mindset that thrives on change and adapts quickly to new threats and scenarios.   5️⃣ Inclusive Team Building   Build diverse teams that offer a range of perspectives and strengths, creating a resilient and agile unit.   6️⃣ Ethical Leadership   Uphold the highest standards of integrity, setting a moral compass for your team to follow in all cyber operations.   7️⃣ Lifelong Technical Learning   Stay ahead of the curve by continually updating your technical skills to lead effectively in an ever-evolving threat landscape.   ⏩ Are you ready to elevate your role from a cybersecurity professional to a cybersecurity leader? It's time to integrate these seven habits into your daily practice and transform your leadership potential.   🔔 Take the lead, and subscribe for exclusive insights and strategies on building your leadership skills from the inside out. Decide to become a leader who doesn't just know the ropes but ties them together.

Today's cybersecurity leaders must possess a distinct set of talents and principles. Developing a resilient and dynamic team is critical to securing our digital future. Here are nine elements for creating a strong cybersecurity leadership culture: 1. Lead with Integrity. Cybersecurity professionals value leaders who practice what they preach. Be consistent in your behaviours and words. Authenticity fosters long-term trust. 🔰 Integrity cannot be negotiated. 🔰 Model the values that you want to see. 2. Your behaviour establishes the standard. Show respect, accountability, and commitment. 🔰 Lead by example in all relationships. 🔰 Your teammates will follow your lead. 3. Appoint a strong chief of staff. A trustworthy second in command is vital. 🔰 Cybersecurity teams thrive under clear leadership and structure. 🔰 Make sure they understand their duties and responsibilities.  🔰 Offer constant direction and support. 4. Foster a culture of vigilance and support. Cyber risks are constantly growing, and a supportive culture is essential. 🔰 As a leader, you should address obstacles constructively, celebrate accomplishments collectively, and encourage open and honest communication. 🔰 A watchful and supportive staff is our first line of defence. 5. Respect your team's time. Efficiency and attention are key in cybersecurity. 🔰 Schedule meetings during regular working hours.  🔰 Respect personal time, including lunch breaks. 🔰 Clear agendas result in fruitful sessions. 6. Prioritise Health and Well-being A healthy team is a productive one. 🔰 Encourage acceptable working hours  🔰 Establish strong performance standards  🔰 Promote physical and mental health programs 🔰 Well-being has a direct impact on performance. 7. Encourage open communication and feedback. Your team's insights are invaluable. 🔰 Provide opportunity for them to share their ideas.  🔰 Address bottlenecks swiftly. 🔰 An open door policy enhances the team. 8. Model the values you want to see. Your actions create the norm. Show respect, accountability, and commitment. 🔰 Lead by example in all relationships. 🔰 Your teammates will follow your lead. 9. Regularly Review Your Leadership Feedback is necessary for growth. 🔰 Review your leadership style. ______________ Enjoy this post? Re-post it to your network and follow Prof. Neil Curtis for more. Want a career transition from military or police to cybersecurity then book a call or reach out here? Join our community of 10,000+ connections, followers and subscribers today. Kelly Hopkins Hayley Ann Boswell ⭐️ Matt C. Alex Mortimer (MSc, MBA) Edward Farrell #Veterans #CyberSecurity #Leadership

Leadership is core to a CISO's and CEO's success --A leader must strike a delicate balance in their relationships with subordinates, treating everyone with the same amount of Dignity, Respect, and Civility. As a leader, you need to be close enough to build trust, understand the personal and professional motivations of each team member, and maintain a pulse on the dynamics within the group. To achieve this, leaders should regularly engage with their team, showing genuine interest in their lives, listening actively to their concerns, and recognizing their contributions. They should also foster an environment where open communication is encouraged, which will help them gain deeper insights into what drives each individual. This requires the utmost professional behavior. High EQ High self-awareness Authenticity Confidence High listening skills Where you need to exercise caution. It's simple- **develop no alliances (play favorites) **develop no bias **play no politics Do not let any of this cloud your judgment on how you work with your team. Having a clear understanding that your role is to help your team succeed with executing tasks and aligning actions with the overall strategy. This requires consistent treatment of all team members (DRC), making decisions based on the best interests of the team as a whole and the overarching mission. By maintaining apparent professional behavior, you can ensure that relationships remain honest and transparent and that the focus stays on the team's collective success rather than individuals' preferences. This balance preserves the leader’s objectivity, ensures fairness, and reinforces that the mission is the ultimate priority, above any single relationship within the team. What other leadership skills do you use? #CISO #CIO #CEO #Cybersecurity #ExecutiveCoaching #Leadership Access Point Consulting Rick Leib, CCISO, CISSP, CHSE, Veteran, Speaker Sean Kern, CISSP, GCIH { John Felker } Matthew Vassallo

Can you stay technical, and lead a technical team at the same time? Maybe. If you’re more used to “doing” than delegating, it’s easy to slip into micromanaging and over-involvement. If you’re detail-oriented you might miss the bigger picture, and overlook strategic opportunities in favour of personally satisfying, technical tasks. If you prefer long periods of uninterrupted technical focus, you might find countless people-focused tasks to be distracting and stressful. In short, leading might make you unhappy. I’m here to help. Get in touch to discuss how I can: 💡Coach offensive security leaders 💡Free up existing management time 💡Help you lead, retain and develop your pentest team

Leadership isn't just a title; it's a journey of continuous growth and humility. Imagine a CISO who believed technical expertise was the pinnacle of their career. They excelled in cybersecurity, knew every threat landscape inside out, and could architect security systems in their sleep. But something was missing. Their team was disengaged, initiatives were met with resistance, and innovation stagnated. The CISO was puzzled. They had all the technical chops, so why weren't they succeeding? The answer lay in something they had overlooked: personal and soft-skill leadership. Realizing this, they embarked on a transformational journey. They listened more than they spoke, asked for feedback, and showed genuine appreciation for their team's efforts. They embraced vulnerability, admitting they didn't have all the answers and opening up space for others to shine. The transformation was night and day. Engagement soared, ideas flowed freely, and the team felt valued and motivated. Security wasn't just a department; it was a collective mission everyone was invested in. This story isn't unique. It's a powerful reminder that leadership extends far beyond technical knowledge. It's about inspiring, motivating, and bringing out the best in those around us. If you're a CISO or aspiring to be one, remember: invest in your soft skills as much as your technical ones. Your team, your organization, and the cybersecurity community will be better for it. Ready to lead with empathy and drive? Let's champion soft-skill leadership together. #nextgenciso #nextgencisonetwork

Are leadership and technical focus mutually exclusive?