First Federal CISO Greg Touhill on Advanced Cybersecurity by Design

04/22/2022 | Written by: Bob Gourley

Greg Touhill is one of the nation’s premier cybersecurity, information technology and risk management leaders. As an Air Force officer he led technology efforts in some of our nation’s most demanding organizations including combatant commands during time of war. He is an accomplished speaker and author and business executive and also served as our nation’s first Chief Information Security Officer (CISO).

Touhill is currently the director of the Carnegie Mellon University Software Engineering Institute’s CERT Division. In this capacity he leads one of the most highly regarded organizations in the cybersecurity community. The CERT is a diverse group of researchers, software engineers, security analysts and digital intelligence specialists who work together to research vulnerabilities, contribute to long term changes and develop cutting-edge information and training to improve the practice of cybersecurity.

In this OODAcast we examine Greg’s approach to leadership and then get into:

Operational views of the cyber threat that can help drive collective action in mitigating risks.
Ways security leaders can continue to learn and grow
The CERT’s role in improving security through cybersecurity
Lessons learned in communicating security topics with non technical audiences (including a fantastic discussion of lessons from SciFi)

Podcast Version:

Related Reading:

Black Swans and Gray Rhinos

Now more than ever, organizations need to apply rigorous thought to business risks and opportunities. In doing so it is useful to understand the concepts embodied in the terms Black Swan and Gray Rhino. See: Potential Future Opportunities, Risks and Mitigation Strategies in the Age of Continuous Crisis

Explore OODA Research and Analysis

Use OODA Loop to improve your decision making in any competitive endeavor. Explore OODA Loop

Decision Intelligence

The greatest determinant of your success will be the quality of your decisions. We examine frameworks for understanding and reducing risk while enabling opportunities. Topics include Black Swans, Gray Rhinos, Foresight, Strategy, Stratigames, Business Intelligence and Intelligent Enterprises. Leadership in the modern age is also a key topic in this domain. Explore Decision Intelligence

Disruptive/Exponential Technology

We track the rapidly changing world of technology with a focus on what leaders need to know to improve decision-making. The future of tech is being created now and we provide insights that enable optimized action based on the future of tech. We provide deep insights into Artificial Intelligence, Machine Learning, Cloud Computing, Quantum Computing, Security Technology, Space Technology. Explore Disruptive/Exponential Tech

Security and Resiliency

Security and resiliency topics include geopolitical and cyber risk, cyber conflict, cyber diplomacy, cybersecurity, nation state conflict, non-nation state conflict, global health, international crime, supply chain and terrorism. Explore Security and Resiliency

Community

The OODA community includes a broad group of decision-makers, analysts, entrepreneurs, government leaders and tech creators. Interact with and learn from your peers via online monthly meetings, OODA Salons, the OODAcast, in-person conferences and an online forum. For the most sensitive discussions interact with executive leaders via a closed Wickr channel. The community also has access to a member only video library. Explore The OODA Community

Tagged: CISO cybersecurity

Subscribe Sign In