Data Overload: A Collaborative Deep Dive with Tony Gonzalez
Prof. Dan Haagman
Pen Testing Expert | CEO - Chaleit | Hon. Professor of Practice | International Conference Chair | Aus CISO Advisory Board | Co-founder of Cyber firms NotSoSecure & 7Safe (both acquired) | Commercial Heli & Plane Pilot
I recently had a fascinating discussion with @Tony Gonzalez, Fortune 50/500 Cyber Security Executive and Advisor, about a challenge that's been nagging at me for years: our industry's complicated relationship with data. The conversation turned into an in-depth article that I'd love to share some thoughts from.
Here's the thing: we're drowning in data yet somehow struggling to stay secure. It's a bit like trying to find a needle in a haystack, except someone keeps adding more hay every few seconds.?
What really struck me during my discussion with Tony was how we've created this perfect storm in cyber security.??
First, there's what Tony brilliantly calls the "shiny bubble syndrome" — our tendency to chase after the latest tools and technologies, generating vast amounts of data without really thinking through how we'll make sense of it all.?
Then, there's our obsession with metrics. We measure everything possible, often without asking the crucial question: "What actually matters for our specific context?" Every organisation is different, yet we often fall into this one-size-fits-all approach to measurement.
Third: the human factor. We hire brilliant, creative minds to drive innovation and tackle complex security challenges. Then what do we do? We bog them down with mundane log reviews and routine vulnerability assessments. It's like having a neurosurgeon working in the ER — technically capable, but not the best use of their specialised skills.?
Where does AI fit into all this? Well, it's promising but not the panacea many are hoping for. Yes, it could help reduce analyst burnout by automating mundane tasks. But there's a catch: if we're not careful, we might just end up with AI systems demanding even more data, more tools, more everything. As Tony put it perfectly, "It's not going to be a one-and-done; you just deploy it in and walk away."
The path forward isn't about collecting more data but about being smarter with the data we have. This means:
领英推荐
I've seen too many organisations struggling with this data overload, missing critical security events because they're buried under mountains of irrelevant information.
If you agree that it’s time we rethink our approach, check out the full collaborative essay on data overload, where Tony and I explore these challenges in detail and offer practical strategies for turning the tide.
I'd love to hear your thoughts on this.
Have you experienced similar challenges in your organisation? How are you dealing with the balance between data collection and actual security insights?
Disclaimer
The views expressed in this article represent the personal insights and opinions of Dan Haagman and Tony Gonzalez. Dan Haagman’s views also reflect the official stance of Chaleit , while Tony Gonzalez’s views are his own and do not necessarily represent the official position of his organisations. Both authors share their perspectives to foster learning and promote open dialogue.
Cybersecurity Influencer | Advisor | Author | Speaker | LinkedIn Top Voice | Award-Winning Security Leader | Awards Judge | UN Women UK Delegate to the UN CSW | Recognised by Wiki & UNESCO
5 个月I’ve just accessed this blog Dan Haagman and it’s superb. You and Tony Gonzalez, CRISC, CDPSE, QTE bring up excellent points. I’m also looking forward to collaborating with you. It’s rare I come across deep thinkers even amongst leadership. I think many people are switched off and are used to being told what to do or to blindly follow a process they’re used to. It’s refreshing to think expansively and of course to have your thinking challenged.
I solve problems by creating Talent Solutions | Podcast host @Tales from Tech Titans | Collaborating with companies to attract, hire and retain the best talent across Technology | Diversity, Equality & Inclusion champion
5 个月Looking for these fortnightly updates! Fascinating first article Dan Haagman
I save companies from evil cyber villains | Advocate for kindness in tech | The hype person YOU need in your life | High ENERGY speaker!!! | Avid beard grower
5 个月Like a endless bottle of ketchup you ALWAYS provide a super boost to the day!!!!!!!!!!! ????????? Cannot wait to be part of this!!!
Global CIO/CISO | Executive Advisor | Board Ready | Podcaster | Author | Passionate to create a safer world, using my expertise in cybersecurity/technology to develop innovative solutions for growth oriented companies.
5 个月Dan Haagman - congratulations on the newsletter, I'm sure it will continue to be thought provoking for your readers. As stated within, sadly many organizations don't approach data security the right way and it's not that hard to do. The CISO needs to be at the forefront here, working with data engineers to protect and catalog information. Also, it's important to make sure that the appropriate mechanisms are used upfront, as a virtual wall to ensure that only those that need access to the data have it and of course, let's not forgot to protect the network to keep out those that are ill intentioned.
Architect | I design , build and eco-friendly buildings | 2 projects in BIM |
5 个月Love to collaborate and work as a internship dan in your mentorship .thank u