CTOvision Subject Matter Experts Know The Needs of the C-Suite

Technology Context For The Board and C-Suite

Whether you are a board member seeking tech context of use to your business or a techie seeking context in expressing things to the board this section is for you.

We provide insights from leading executives and expert technologists in succinct reports below. We also provide insights into our processes, and would love to talk to you about how we can serve your needs for due diligence in M&A. For insights into our processes see: Our Technology Due Diligence Processes.

Stay In The Loop: Sign Up To Receive Daily, Weekly or Monthly Newsletters

Some of our most popular reporting for the c-suite includes:

Cybersecurity Due Diligence: Now a best practice in Merger & Acquisition (M&A)

CTO as a Service: Leverage proven enterprise technologists to further your business objectives

DoD Contractors: Complying with new DFARS regulations is easier with external help

What Is The FFIEC Cybersecurity Assessment Tool?

What Cybersecurity Companies should I research?

How do I kick off market research?

How do I engage a CTO for Technology Due Diligence?

What should I tell the board about cybersecurity?

What Executives Should Know About Ethereum

What Should Executives Know About How Blockchain, Smart Contracts and Cryptocurrencies Are Disrupting Business?

All Companies Who Interact With European Citizens Must Check Architecture For Compliance With New GDPR Data Rules

Enterprise Security and Functionality Benefits of the new Software Defined Perimeter (SDP) Approach

2018 Goal: Re-position Cybersecurity As An Enabler

What should board members know about cybersecurity?

How do I start or scale my federal business?

More questions or comments? Ask about Crucial Point's corporate CTO services including Technology Due Diligence

Reference to Cyber Security “Wake-Up Calls”

Bob Gourley November 30, 2013

We have previously discussed research and analysis we did for the Cyber Conflict Studies Association on the many “Wake-Up Calls” the nation’s policy makers have declared themselves to have had regarding cyber security. If history is any predictor of the past, we will still be getting these wake-up calls long into the future.

We want to change the future, of course. Doing that will require that we address the problems with Cyber Threat Amnesia our institutions suffer from.

As an aid to changing the future, please review this list of cyber security “wake-up calls” and consider ways we can collectively learn to stop repeating the same mistakes. I would love to get your feedback on this list.

This is not all major events, just those widely reported to be “wake up calls” for the nation.

1970 and 1971 – The Defense Science Board publishes what will be known as the “Ware Report” highlighting the potential dangers to department information in the coming age of connected computing. This report was widely seen as a “wake up call” for computer security and caused changes at institutions like the National Security Agency to enhance the departments security posture.
Nov 1988 – The Morris Worm was released and propagated throughout internetworked systems including those of the federal government. This “wake up call” resulted in establishment of computer response organizations throughout DoD and also resulted in increased funding for computer security research being provided to academic organizations and institutions. The CERT/CC at Carnegie Mellon University was funded.
1995 – The President’s Commission on Critical Infrastructure Protection (PCCIP) was widely regarded as a “wake up call” for the entire federal government and since it was extensively coordinated with industry and academia was also seen as a way forward in cybersecurity for the entire nation.
1997 – Deputy Secretary of Defense John Hamre was quoted as saying “Solar Sunrise was a wake up call for DoD.” This activity resulted in increased funding to cyber defense organizations and the creation of a new joint activity called DoD’s “Joint Task Force Computer Network Defense” or JTF-CND (Gourley was first Director of Intelligence (J2) there).
1998 Assistant Secretary of Defense Art Money was quoted as saying “Moonlight Maze was a wake up call for DoD.” This activity resulted in enhanced counterintelligence resources and more information sharing across the DoD law enforcement and counterintelligence.
2009 Director of National Intelligence Admiral Blair testified that “Buckshot Yankee was a wake up call” for the government. This activity resulted in more awareness and more funding for cyber security throughout the federal government.
2010 Deputy Secretary of Defense Lynn writes that “Google’s Aurora attacks were a wake up call for us all.” This wake up call resulted in stronger, deeper coordination across the federal space and underscored need for a DoD strategy.
2011 Deputy Assistant Secretary of Defense Bob Butler says “Wikileaks was a wake up call for DoD.” This wake up call resulted in significant activities and planning across the federal space aimed at enhancing security of information from disclosure.
2012 Sep, In one of the most destructive attacks against computers noted against any company to date, Saudi state-owned ole company ARAMCO had data destroyed on over 3/4 of their companies computers. The NY Times reports this as a “wake up call” and attributes intelligence officials with that assessment.
2012 Sep, Department of Energy issues a report on internal cybersecurity practices. This report by their internal inspector general was reportedly seen as a “wake up call” for the agency’s cyber security group.
2012 Oct, South Carolina Gov Nikki Haley announced a massive hack into state websites. The Gov offered the excuse that these attacks are increasingly common. Reporters suggested this be her “wake up call”. (Nov 2013 update, her political opponents are now using this against her, saying it was a wake up call for them all).
2012 Oct, Secretary of Defense Pannetta issues what he said is a “clarion call” for American’s to “wake up” to the growing cyber threat.
2012 Nov, Former Director of National Intelligence provides “wake up call” warning of a potential 9/11 type attack via cyber.
2013 Jan, New York Times acknowledges hacks into its papers by Chinese sources. This was widely reported as a “wake up call” for security experts in media.
2013 Jan, Twitter was hit by a major hack in what security experts called a “wake up call” for the ecommerce and social media community.
2013 Jan, Attacks on US banks called a “wake up call” for the industry by cyber security professionals.
2013 Feb, Anonymous attacks against Federal Reserve investigated by FBI. Compromise, called a “wake up call” compromised data from the Fed’s Emergency Communications System.
2013 Feb, Chairman of the House Intelligence Committee expressed confidence that the hackers recently targeting newspapers and other companies would soon “wake up” Washington on cybersecurity.
2013 Feb, Mandiant releases a report exposing one of China’s Cyber Espionage Groups. This report, widely considered one of the best articulations of the threat, resulted in significant positive awareness on the seriousness of the threat and was widely called a wake up call. We believe this is one of the best pieces of cybersecurity research ever produced by an independent company, and we know it is making positive, virtuous change. We hope this goes a long way to really being the wake up call we all need.
2013 July, Sowden insider attacks declared a “wake-up call” in Bloomberg report.
2013 Nov, Australian newspaper cites Melissa Hathaway stating “We haven’t had our big wake-up call yet and I’m hoping that we’ll address the problems before we have a wake-up call.”

Of course the reason to publish this list is not to make fun of people for using the term “wake up call.” The reason to publish the list is to get your brain deeper into the game. Maybe there is something you can do to prevent Cyber Threat Amnesia. Maybe you can suggest action to current community or government or business leaders? Or maybe you can find ways to educate policy makers or Congress or the American public? Or maybe you have other ideas for stopping this madness of forgetting about the threat.

Mission Link: A collective of mission-focused providers of virtuous solutions

Bob Gourley February 13, 2012

Mission Link is a Washington DC based collective of business executives and former national security leaders who come together to collaborate and innovate on better ways to serve important national missions.

A 2019 Update: Missionlink has transformed since the post below. If you are interested in networking with the group read below and contact us at OODA and we will get you an update.

From the MissionLinkDC site:

Connecting Decision Makers & Building a Community of Interest for National Security Focused Companies
Founded by a local group of prominent business executives and former national security leaders, MissionLink is an executive level forum designed to foster collaboration and innovation among CEOs, decision makers, critical thinkers and pacesetters from the most promising companies dedicated to the mission of defense, intelligence and national security.
MissionLink provides an opportunity for peer to peer networking, mentorship, and knowledge sharing in an intimate and private setting. Each month member CEOs engage with a panel of experts to discuss current issues facing their companies, exchange ideas, and meet other successful leaders in the field who can help guide them through the process of building great companies. Upon completion of each year’s class, the participants are invited to a formal graduation ceremony, in which participants of MissionLink will explore ways to give back to community and those that support the mission of national security.

For more information see: http://missionlinkdc.org

Is Your CTO Making You Stupid?

Bob Gourley September 17, 2008

Nicholas Carr writes in ways that makes people think. I really enjoyed reading his latest in the Atlantic titled “Is Google Making Us Stupid?” This article covers some rather significant trends that IT is pushing into the global social fabric. The changes he talks about are disturbing. They are infecting people like a fast spreading disease.

There is a chance you are suffering some of these symptoms yourself, so by all means read the article.

Or if your attention span is going, here is how Nicholas Carr describes the symptoms :

” Over the past few years I’ve had an uncomfortable sense that someone, or something, has been tinkering with my brain, remapping the neural circuitry, reprogramming the memory. My mind isn’t going—so far as I can tell—but it’s changing. I’m not thinking the way I used to think. I can feel it most strongly when I’m reading. Immersing myself in a book or a lengthy article used to be easy. My mind would get caught up in the narrative or the turns of the argument, and I’d spend hours strolling through long stretches of prose. That’s rarely the case anymore. Now my concentration often starts to drift after two or three pages. I get fidgety, lose the thread, begin looking for something else to do. I feel as if I’m always dragging my wayward brain back to the text. The deep reading that used to come naturally has become a struggle. ”

I hope you dive deep into the Carr article for more details, but if you have the disease yourself you might not. So here is a gist of key points:

Google and others have made research simple and fast and easy.
Almost all data can come into your head via your browser.
People read fewer (or no) books.
People are loosing the ability to read and retain info from long articles.
The Internet, through your browser, is the medium of choice. Newspapers and print are on the out. TV is heading out fast.
We also write through the web, and that is changing the way we think.
We too frequently are relying on computers to mediate our understanding of the world.

What do we do with this cautionary info? One immediate think all of us should do is remember to carve out time in the day, every day, to read, write and think.

But if you are an enterprise technologist you should also consider what this means for you and your organization. Some ideas:

The systems you are designing, developing and fielding to your workforce may serve your workforce better if their interfaces are more intuitive and less textual. People will want to interface with enterprise systems they way they interface with the Internet (present your applications through browsers and summarize results and seek rapid human feedback on what they like or don’t like about the results).
To the greatest extent possible, build systems that present fast results.
And present information in ways that let humans interact with it.
And present information in ways that ensure the humans are in charge of the process and in charge of assessing the relevance of results.
Don’t stop innovating.
Stay on the net yourself so you can track where it is going.
Get engaged in social media (if you are not already). That means Facebook, Plaxo, LinkedIn, and Twitter (especially Twitter– it really changes your mind).
Translate those many lessons into the enterprise technology you field.

If you can do that and if you can stay focused on the mission all your users will thank you, and in many ways I think you will be helping make your organization smarter. If you don’t do that then the odds are great that you will just be part of the noise. You may even be contributing to making your organization stupid.

Any thoughts/comments/suggestions on that topic?

More items of interest from CTOvision

This One Little Configuration Change Will Make It Harder For People To Steal Your Information

Editor’s note: We are aiming this tutorial at the non-technical person. Please share with anyone in your life who could benefit from this. -bg Cyberspace is a complex domain and our adversaries are always seeking new ways to steal information or spread their malicious code or hold our data for ransom. This is the big reason […]

Think Twice Before Deciding To Use A Personal VPN: You could be getting some really bad advice

From the 1930s to 1950s (far too long) the medical community just would not wake up to the fact that cigarettes could cause harm (see More Doctors Smoke Camels). Why did they stick with this misperception for so long? When so many good people come to the wrong conclusion it probably means some deeply human […]

Please help spread the word: USNI and NIP Essay Contest: This year’s challenge area a key one for the nation

Please help share the content at this link to any thinker/writer you know: 2020 Information Warfare Essay Contest This contest is open to all contributors, active-duty, military, reservists, veterans, and civilians. Generally the winners have had a solid understanding of the nature of modern conflict, but really any thinkers/writers should look over the contest and […]

Super Bowl Ads Indicate Big Businesses Think You Are Afraid of AI

Tom Loftus provided an insightful review of some of Super Bowl ads in the 4 Feb 2019 Wall Street Journal. Like AI parody in SNL, these ads really poked fun at computers: Seriously, did anyone catch the commercials? If the Super Bowl is the zeitgeist, then it is safe to say that America is not […]

HBO’s Westworld: The Man In Black is a special kind of Twitter user

HBO’s Westworld is a modern take on the Michael Crichton SciFi tale of a robotic amusement park. The HBO version has a new twist. The creators/writers were all exposed to years of Twitter, which has influenced every episode and the entire arch of two seasons of the show. Now that season two is wrapping up, […]

All Enterprise Techies Should Watch HBO’s SciFi Epic Westworld: It will help us dialog over shared experiences on what we will not be creating

Westworld season one was a great mix of science fiction and drama and action and it was done in a way that should help people think through many tech ethics questions, like how do we want to treat our robots? Does treating robots with violence change our nature? Can robots become sentient? HBO has a […]

CTOvision Subject Matter Experts Know The Needs of the C-Suite

Technology Context For The Board and C-Suite

Connecting Decision Makers & Building a Community of Interest for National Security Focused Companies

More Content

Cyber War

SciFi