Why I joined CISO Society as "Chief Advisory Officer"

I’ve been on the roller coaster of information security, cybersecurity, and risk management for 30 years. Throughout this journey, I’ve experienced both highs and lows in various aspects of the field. Through it all, my faith has been the one constant, keeping me grounded regardless of the challenges I faced. Over time, I’ve realized that my ultimate goal is to make a positive impact, no matter where I am or what role I hold.

As I stepped away from my last role, I found myself at a pivotal crossroads. Should I continue my path as a CISO, or seek a new way to make a greater impact on the cybersecurity community? The decision wasn’t easy. I spent many sleepless nights weighing the pros and cons of staying in the CISO role versus exploring new opportunities. The role of CISO is something I know and a role where I am extremely comfortable. However, role of CISO has become less appealing for many of us who’ve held it for years. Whether it’s the legal risks for factors beyond our control, the responsibility without corresponding authority, the ever-expanding regulatory and threat landscapes, or challenges with resource constraints and data sprawl—the list of mounting pressures is enormous. Yet, despite these difficulties, I truly love the role. Leading, mentoring, and growing a team is incredibly fulfilling. Engaging with a Board of Directors and executive teams to discuss business risks is something I genuinely enjoy.

On the flip side, I wasn’t sure what stepping away from the CISO role would look like. Should I become a fractional or virtual CISO (vCISO)? What would running my own business mean for my family and financial stability? How much impact could I make on the community I care so deeply about? As I considered my potential to make an impact, I turned to the peers and friends I’ve gained over the last 30 years—current CISOs and the aspiring leaders of tomorrow. How could I help them become better in their roles? While I seriously considered becoming a fractional or vCISO for small and medium-sized businesses in need of guidance, I realized that my true impact could be in helping current CISOs in a variety of ways.

That’s when I turned to the CISO Society. Having served as its first CISO in Residence, I already felt a strong connection to this community. Looking back at the original purpose of bringing this group together, I realized it was the perfect opportunity to fulfill what I believe is my calling. Anyone who knows me knows I love sharing my thoughts and experiences in cybersecurity. When Jason Cenamor and I began discussing how I could use my God-given talents to give back to the community and make a positive impact, we developed the role of Chief Advisory Officer. In this role, my goal is to help CISOs be better tomorrow than they are today. I want to help them solve problems and think beyond the limitations they may currently face.

The beauty of this role is that it will lead to many other opportunities for the CISO Society to provide even more value to it CISO members. As we continue on this journey together, we have a chance to strengthen our community and create a better, safer, and more productive space for future generations.

I’m excited for the engagements ahead in the coming days, weeks, and months. I look forward to growing personally, sharing openly, mentoring, advising, and simply helping others as we build a bigger and stronger CISO Society together!!