--[ Selling Cyber: How to Engage Senior Leaders and Build a Village to Achieve Your Goals

Personal
$ getent passwd cweissenborn
.
├─── name: Chuck Weissenborn
├──── org: Critical Infrastructure Protection Battalion, WV ARNG
└─ social:
   ├─ linkedin: linkedin
   └── twitter: @cybrgngr
Experience

Chuck Weissenborn works at Dragos, an industrial (OT/ICS/IIoT) cybersecurity company on a mission to Safeguard Civilization. He leads the company’s efforts to support the Department of Defense and Intelligence Community and their efforts to secure control systems and associated operational technologies. Prior to joining Dragos, Chuck worked at Symantec (later a Broadcom Corporation) where he was responsible for all business operations supporting the US Army worldwide.

Chuck is also a member of the Army National Guard; in this role he supports the Critical Infrastructure Protection Battalion (CIPBN), West Virginia National Guard. The CIPBN provides mission assurance assessments and risk reduction recommendations across the DoD with teams aligned to HQDA G3-5-7, DISA, and others. Prior to joining West Virginia, Chuck was a member of the Texas National Guard for over 18 years, with assignments that included the S6 NCOIC for the 36th Combat Aviation Brigade and the Texas Defensive Cyber Operations Element. He recently returned from a deployment to the CENTCOM AOR where supported the Long-Range Precision Fires mission.

Chuck has deployed four times in support of military operations since 9/11.

Chuck lives in Annapolis, Maryland with his wife Caitlin, and children: Eleanor, Bruce, Wally, and Calleigh.

Abstract

To be effective in cybersecurity, one has to be able to communicate objectives, requirements, and risk to non-technical leaders and adjacent teams. This "soft skill" presents a challenge to many in the cybersecurity community - our natural tendency is to leverage verbiage that we use on a regular basis and focus on the things that are important to our sections and teams - which tends to lean toward the technical side of cybersecurity.

Many of our leaders are not cybersecurity experts, and in many cases, the things that are topmost on their minds are not directly cybersecurity related. To successfully achieve change/our objectives, we have to align with others priorities, and build a village with a semi-unified vision.

During this session, we'll discuss:

  • Identifying key stakeholders
  • Building a consensus amongst a broader community
  • Communicating with leadership and non-technical experts
  • Framing cybersecurity objectives in different perspectives: risk/business case/operational
  • Driving value to generate continued success