Security leadership

Insights and strategies to secure the modern enterprise

Navigating the threat landscape

Effective security leaders recognize that security is a collective pursuit. While the CEO may be the proverbial captain guiding the ship to its destination, the CSO is the navigator responsible for helping the organization avoid dangerous waters and weather storms when necessary. Here, CISOs, CSOs and other security owners share their experience as navigators who have helped their companies manage risk, protect vital data, and securely onboard new technologies in the pursuit of digital transformation.

Why Security?

Securing Generative AI: What Matters Now

IBM and AWS recently partnered with Oxford Economics to survey 200 executives regarding their generative AI initiatives and enablement. The study revealed a concerning trend of executives prioritizing innovation over security (70%), despite also stating that secure and trustworthy AI is essential to business success (82%). Read the report to learn what it takes to implement generative AI data security.

Read the report

 

Securing Generative AI: What Matters Now

Security foundations

No business can survive without a strong security foundation. But what elements make some organizations more secure than others? Learn from executives why it’s essential to prioritize security culture, data strategy, and enabling innovation as key functions of your security organization.

Establishing security standards and educating your workforce on the importance of security is a crucial first step to reinforce your organization’s security posture. After all, many malicious actors still rely on basic phishing schemes. In this video, hear from Sara Duffer, Director of AWS Security Assurance and former Technical Advisor to the Amazon CEO about why security culture is so important and what role the CEO plays in building and reinforcing security standards.

Watch now

As generative AI continues to reshape industries, organizations must adapt by cultivating a robust and secure plan for data storage and management. In this podcast, AWS Enterprise Strategist Clarke Rodgers joins guests from IBM Security to discuss the importance of data strategy for AI use cases.

Listen now

Discover how to mitigate vulnerabilities earlier in the development process through the principles of Secure by Design. AWS recently partnered with SANS Institute to explore how security by design helps organizations prioritize foundational security that meaningfully improves technical and business outcomes. Read the whitepaper to learn how you can get started on the path to building secure products with a multi-layered strategy.

Read now

In this interview with AWS CISO Chris Betz, learn how the role of the CISO is evolving. Where security organizations were often seen as blockers to innovation, AWS advocates for a security org that enables greater innovation through trusted security mechanisms.

Watch now

Conversations with security leaders

Join Clarke Rodgers, Director of AWS Enterprise Strategy , as he interviews security leaders across the AWS organization and beyond, discussing everything from establishing a security department, to mitigating security risks, to achieving regulatory compliance, and building security culture into everything we do. Catch our latest episodes below or click here to browse the full series.

 

Find your community with AWS CISO Circles

CISOs and CSOs come together in locations all around the world to discuss the biggest security topics of the moment with their peers in our CISO Circle communities. With NDAs in place and Chatham House Rule in effect, security leaders can feel free to speak their minds, ask questions, and get feedback from peers through candid conversations facilitated by AWS Security leaders.

Learn more

Podcasts for security leaders

Security never sleeps, that’s why we’ve prepared a robust catalogue of audio content to inform and entertain security leaders on the move.

Two-minute security trainings

At AWS Security, we talk with CISOs daily, covering everything from common challenges they’re facing to their security aspirations for the future. We often hear a lot of the same questions around security culture, compliance, and threat mitigation. Start your conversation off right by watching these two-minute training videos on our most-requested topics. And catch our full Cloud for CISOs training series on YouTube.


Research and resources for security leaders

Refine your search:

Format
25-30 (100)
Showing results: 25-30
Total results: 100
  • Publication Date
  • Alphabetical (A-Z)
  • Alphabetical (Z-A)
  • Recently Added
 We could not find any results that match your search. Please try a different search.
  • Podcast

    Considering the CEO’s Role in Security Leadership with AWS CEO Adam Selipsky

    A conversation with Adam Selipsky, CEO of AWS, and Clarke Rodgers, Director of AWS Enterprise Strategy

    We say security is the first priority at AWS, but how does that play out in everyday practice? Join us today as Adam Selipsky, CEO of AWS offers his unique perspective on top-down security leadership at AWS. In this conversation with Clarke Rodgers, Director of AWS Enterprise Strategy, Adam discusses his thoughts on company-wide security culture, CEO/CISO communication strategies and mechanisms, and how the CEO can support security initiatives from the top.

    Learn more about Amazon Bedrock, the easiest way to build and scale gen AI applications, and Amazon Q, a gen AI-powered assistant that can be tailored to your business.

  • Podcast

    The Value (and Threat) of Generative AI for Security Teams

    AWS Director of Enterprise Strategy Phil LeBrun speaks with Nicole Eagan, Chief Strategy and AI Officer, and Michael Beck, Global CISO at Darktrace

    In this episode, AWS Director of Enterprise Strategy Phil LeBrun speaks with Nicole Eagan, Chief Strategy and AI Officer, and Michael Beck, Global CISO at Darktrace about how artificial intelligence is transforming cybersecurity. They discuss the evolution of cyber threats, the impact of generative AI on security, and best practices for implementing robust defenses including operationalizing AI as part of a holistic people, process, and technology approach.

    Learn more about Amazon Bedrock, the easiest way to build and scale gen AI applications, and Amazon Q, a gen AI-powered assistant that can be tailored to your business.

  • Video

    How Trellix is Staying at the Forefront of Security

    A conversation with Martin Holste, CTO for Cloud at Trellix

    As the CTO for Cloud at Trellix, Martin Holste has deep expertise in cloud security strategy. With his additional background in machine learning and managing a Security Operations Center (SOC), there’s no one better positioned to speak on trending security issues such as generative AI, Zero Trust, and Multi-cloud management. Hear about all these issues and more in this Security Leaders interview.

    Watch now

  • Video

    The Evolution of Security Leadership in the C-Suite

    A conversation with Chris Rothe, Co-Founder and CTO of Red Canary

    Security has become a strategic priority for nearly all organizations today, however, that wasn’t always the case. Watch this Security Leaders interview with Chris Rothe, Co-Founder and CTO of Red Canary, to get his perspective on how security leadership has evolved in recent years.

    Watch now

  • Podcast

    #155: Generative AI, Upskilling, and Mental Health: Leading in Cybersecurity with Marc van Zadelhoff, CEO of Devo

    A conversation with Marc van Zadelhoff, CEO of Devo, and Tanuja Randery, AWSvManaging Director of Europe, Middle East, and Africa

    In this episode, Tanuja Randery, Managing Director of Europe, Middle East, and Africa for AWS is joined by Marc van Zadelhoff, CEO of Devo, as they explore how Devo is leveraging data, generative AI, and technology to enhance security operations, address the digital skills gap, and build a high-performing global team. Marc also shares his personal insights into leadership, mental health in the security space, and the opportunties and challenges presented by generative AI.

  • Podcast

    #152: CISO or CSO? Which Role Defines Today’s Security Leaders Best?

    A conversation with Darren Kane, Chief Security Officer at Australia's National Broadband Network, and Clarke Rodgers, Director of AWS Enterprise Strategy

    In today’s episode, we welcome Darren Kane, Chief Security Officer at Australia's National Broadband Network to share his thoughts on the evolving role of security in the C-suite. Join us as Darren sits down with Clarke Rodgers, Director of AWS Enterprise Strategy to discuss the differences between the CISO and CSO roles and why “dropping the I” may be the next step in the evolution of security leadership.

    Listen now

1 17

Frequently Asked Questions

Security leadership embodies the proactive stewardship of an organization's safety and integrity. It signifies a commitment to safeguarding sensitive data and the trust and confidence of customers, partners, and stakeholders. Put simply, a security leader is responsible for creating and implementing robust security measures that mitigate risks, protect against immediate threats, and anticipate the evolving security needs of the business. And at AWS, every employee is a security leader, trained to prioritize security in every aspect of work, protect and use data responsibly, and report any perceived security threats or vulnerabilities to the business.

Security leadership is not merely a reactive posture but a strategic necessity—one that involves staying ahead of emerging threats, complying with regulatory requirements, and nurturing a culture of security awareness among employees. Effective security leadership fosters an environment where innovation can thrive securely, enabling adoption of technologies like generative AI and machine learning.

Overall, the concept of security leadership goes beyond just guarding against breaches; it entails shaping a resilient, forward-thinking organization that can navigate the complex and evolving landscape of cybersecurity while also embracing opportunities for growth and innovation.

Just as data security is fundamental to business success, a leader's commitment to cybersecurity is essential. Business leaders of every level, from the Board of Directors to the CEO, must champion a culture of security within their organizations. This entails instilling awareness and best practices among employees, emphasizing the importance of data protection and cybersecurity best practices.

Beyond fostering a security-conscious workforce, leaders are responsible for crafting and implementing robust cybersecurity strategies. They must allocate resources, invest in state-of-the-art technologies, and remain informed about emerging threats. Compliance with industry-specific regulations is also part of their purview, as non-compliance can lead to severe financial and reputational consequences.

Ensuring proactive risk management is another responsibility for business leaders. They must anticipate and mitigate potential threats, ensuring the organization is resilient in the face of evolving cyber challenges. Leaders should also encourage innovation in security practices, embracing technologies like generative AI to remain vigilant against emerging threats.

Having a modern security practice is pivotal in safeguarding the organization's data and reputation—its most precious resources. Data breaches not only put sensitive information at risk but also damage the confidence of customers, partners, and stakeholders, potentially resulting in severe financial setbacks and harm to the organization's overall image and standing.

Furthermore, regulatory compliance is a non-negotiable aspect of modern business. Security leaders ensure the organization adheres to industry-specific regulations, avoiding crippling fines and legal repercussions that could disrupt operations and create a devastating domino effect.

Apart from mitigating risks, cybersecurity maturity is the foundation for an atmosphere of trust and assurance throughout the organization. As data remains secure, businesses can boldly venture into advanced technologies, propelling innovation and securing a competitive advantage.

In summary, having a modern and mature cybersecurity program is essential to protect assets, ensure compliance, and enable innovation. Every organization should ensure security leaders have a seat at the table when planning strategic business objectives. Only when security dependencies and innovations are prioritized can the business ensure sustained success in an environment filled with constant threats and evolving challenges.