Mark Simos

This is based on the workshops we deliver to Microsoft Unified customers (SecOps/SOC, Data Security, Infrastructure and Development, Access and Identity, and more). end 🧵

I started off with an episode describing free resources from Microsoft, The Open Group, and The Zero Trust Playbook that you can use to improve your cyber security program, metrics, risk management, architecture, technology, SOC, and more.

There is a big difference between using an engineered/supported agent like in Microsoft Defender focused on a single task vs. flexible interactive security interfaces like Security Copilot vs. asking any old random frontier model to do security. End 🧵

While we are being pedantic, it's also important to remember that AI is also not just one monolithic thing.

This was a main theme of my recent Tampa BSides talk "Security is a Team Sport (and we are NOT playing like a team) - slides downloadable here - https://t.co/XK0MyOZTix

The organization can’t succeed without a good offense or without a good defense. At the end of the day, security is a team sport where we have to work together!

Navigating this journey and earning this credibility requires communication and empathy to build relationships, trust, and partnership as well as political savvy and careful positioning. end 🧵

Almost every CISO starts in a default starting position of being blamed. They must grow influence over business decisions with a goal of becoming “integral“ to decisions where business leaders wouldn't feel comfortable making a big decision without their counsel and thoughts.