Episode 3

Going Above and Beyond the Mandated Checklist

When top management proactively takes every possible precaution to protect sensitive data because it is the right thing to do and not because there is a legislative requirement, that’s when the organization would have taken a huge step forward in earning customer confidence and trust. Tushar Sachdev, Executive Vice President, and Chief Technology Officer, KORE Wireless, is emphatic about top management’s role in creating and sustaining a proactive information security culture. In a very reflective and pragmatic discussion with Dr. Chatterjee, Mr. Sachdev, also offers guidance on how to a) get started on a path to cybersecurity readiness; b) reach a high state of cybersecurity readiness; c) get senior executive commitment to cybersecurity training, and d) select and monitor suppliers. He also talks about the importance of including cybersecurity performance metrics in performance appraisals and buying cyber insurance.

Memorable Tushar Quotes/Statements

Security is an organization-wide responsibility -- it includes marketing, customer support, HR, operations, it includes the CEO, and it includes the Board of Directors.

Just like you practice meditation, you should practice information security with the same dedication and discipline.

Timestamps

2:23 – What role can top management play in creating and sustaining a proactive information security culture?

7:05 – What advice and recommendations do you have for your fellow C-level executives, where should they start, what should be the starting point (when it comes to cybersecurity governance)?

15:23 – What according to you are some challenges and hurdles that organizations encounter to get to a high state of cybersecurity readiness? Also, please share some best practices and success factors.

24:15 – How do you enhance cybersecurity education among senior-level executives?

27:28 – What steps can be taken to get buy-in (for maintaining a certain security standard) from suppliers, contractors, and other third-party service providers?

34:10 – How should the performance evaluation system be modified to include measures that track or capture commitment to cybersecurity governance? How do you achieve a higher level of commitment from suppliers and other third-party service providers?

39:55 – How useful or effective is cyber insurance?

Key Takeaways document (prepared by Dr. Dave Chatterjee)

Please subscribe to the podcast so you don't miss any new episodes! And please leave the show a rating if you like what you hear. New episodes release every two weeks.

Connect with Dr. Chatterjee on these platforms:

LinkedIn: https://www.linkedin.com/in/dchatte/

Website: https://dchatte.com/

Cybersecurity Readiness Book: https://www.amazon.com/Cybersecurity-Readiness-Holistic-High-Performance-Approach/dp/1071837338

Next Episode All Episodes Previous Episode

About the Podcast

Show artwork for The Cybersecurity Readiness Podcast Series
The Cybersecurity Readiness Podcast Series
with Dr. Dave Chatterjee

Listen for free

About your host

Profile picture for Dave Chatterjee

Dave Chatterjee

Dr. Debabroto 'Dave' Chatterjee is tenured professor in the Management Information Systems (MIS) department, at the Terry College of Business, The University of Georgia (UGA). He is also a Visiting Scholar at Duke University, affiliated with the Master of Engineering in Cybersecurity program in the Pratt School of Engineering. An accomplished scholar and technology thought leader, Dr. Chatterjee’s interest and expertise lie in the various facets of information technology management – from technology sense-making to implementation and change management, data governance, internal controls, information security, and performance measurement. His work has been accepted and published in prestigious outlets such as The Wall Street Journal, MIT Sloan Management Review, California Management Review, Business Horizons, MIS Quarterly, and Journal of Management Information Systems. Dr. Chatterjee’s research has been sponsored by industry and cited over two thousand times. His book Cybersecurity Readiness: A Holistic and High-Performance Approach was published by SAGE Publishing in March 2021.