Episode #126. Beyond the Warning Signs: A Practical Approach to Cyber Risk Management, with Jeffrey Wheatman, Cyber Risk Strategist at Black Kite
How can organizations manage third-party cybersecurity risks, secure executive buy-in, and improve security communication?
In this episode, Jeffrey Wheatman discusses how Black Kite helps organizations identify cybersecurity threats in their supply chain and emphasizes the need for clearer ownership of third-party risk, a shift toward collaborative security approaches, and improved communication between security leaders and executives. He also highlights challenges such as securing funding for cybersecurity, the growing over-reliance on technology, and the ongoing struggle for security professionals to effectively engage decision-makers rather than repeating the same conversations within their circles.
Tune in for eye-opening insights on tackling one of the toughest security challenges, shifting industry mindsets, and making cybersecurity a business priority!
For more information and ways to increase risk awareness and safety, visit us at www.censinet.com.
About Jeffrey Wheatman:
Jeffrey Wheatman, SVP, Cyber Risk Strategist, is a strategic thought leader with extensive expertise in cybersecurity. He is regarded foremost as an expert in guiding public sector clients and Fortune 500 companies in connection with their cyber risk management programs. In his current role as Cyber Risk Strategist at Black Kite, Jeffrey works to spread the message about the business impact of third-party risk and solutions to treat those risks.
Before joining Black Kite, Jeffrey was a Vice President in Gartner’s Research and Advisory Group for 15 years, where he worked with clients to build and improve their security programs, assessing risk, focusing on reporting on program status, stakeholder engagement, and bridging the connection between technology and cybersecurity risk. Jeffrey has authored approximately 150 research notes that more than 6,000 clients have read. Jeffrey also served as the Chair of the North America Security and Risk Management Summit for four years, Gartner’s 2nd largest conference with 4000 attendees annually.
Earlier in his career, Jeffrey contributed as the Practice Manager of Information Security for Gotham Technology Group and as a Principal Consultant of Information Security with ThruPoint, Inc.
Things You’ll Learn:
- Organizations face significant challenges in managing third-party cyber risk due to unclear ownership across departments.
- Effective risk communication requires tailored storytelling that resonates with different stakeholders rather than overwhelming them with technical details.
- Cybersecurity budgets often lose to more tangible business needs because security investments are not linked to ROI.
- Increasing reliance on technology leads to a decline in fundamental problem-solving skills, making organizations more vulnerable when systems fail.
- Cybersecurity professionals must improve communication with business leaders and boards to drive meaningful change and secure necessary resources.