What do you think?
Rate this book
The Cyber-Elephant In The Boardroom: Cyber-Accountability With The Five Pillars Of Security Framework
We’ve all read the cybersecurity horror a prominent company exposes the private information of their customers only to scramble after the fact to apologize and safeguard the data. Cybersecurity is often an afterthought, a much lower priority than profit—until a data breach threatens the bottom line anyway. In The Cyber-Elephant in the Boardroom, data security expert and CEO Mathieu Gorge, along with a host of guests, shows why protecting a company’s data should be top of mind for C-suites and corporate boards. With the innovative 5 Pillars of Security Framework, any C-level executive can understand their organization’s cyber risk and the steps they need to take to protect their information. There’s a cyber-elephant in the boardroom and it needs to be addressed!
239 pages, Kindle Edition
Published November 20, 2020
11 people are currently reading
24 people want to read
Ratings & Reviews
Friends & Following
Create a free account to discover what your friends think of this book!
Community Reviews
Displaying 1 - 8 of 8 reviews
June 22, 2023
For those who attended the recent RSA Conference, they found that the expo floors had over 500 information security vendors. One might think that information security is simply a matter of buying hardware and software and letting those tools do their job. If only it were so easy.
In The Cyber-Elephant In The Boardroom: Cyber-Accountability With The Five Pillars Of Security Framework (Forbes Books), author Mathieu Gorge and his co-authors show that effective information security is much more than that.
Much of the book deals with the 5 Pillars of Security Framework. The framework is meant to help organizations understand their security risk environment and organize their security risk management roles and protocols. By doing that, organizations can better understand their information security risks and develop a strategy to mitigate them. This is critical given the increase in industry and government regulations that put security at the forefront.
Senior management that does not have a strategy to mitigate their risks places their entire organization at significant risk. In fact, a single data breach could have devastating effects due to predatory lawyers with their class-action lawsuits, even if they were not at fault.
The five pillars the book enumerates are physical security, people security, data security, infrastructure security, and crisis management. Putting these in place can assist a firm in mitigating its risks both from a technology and legal perspective.
The core of the book is understanding how the data works in your organization and placing controls around it. Since data is the lifeblood of an organization, a lack of control over your data is a significant risk. Control the data, and most of the risks can be accordingly controlled.
Mathieu Gorge is a veteran in the information security space and wrote the book's first half. The second half has contributions by numerous experts and leaders in the field on topics such as human resources risk, strategic questionnaires, cyber risk impact on the board, and more.
Security and risk are indeed the cyber-elephants in the boardroom. But it is far too late to pretend they are not there. The book provides the reader with a high-level methodology of what they need to do to secure their organization.
The role of a security leader is to ensure that their CEO is in the Wall Street Journal to announce good news, not that they have been the victim of a data breach. And this book is a great resource to help those leaders do just that.
In The Cyber-Elephant In The Boardroom: Cyber-Accountability With The Five Pillars Of Security Framework (Forbes Books), author Mathieu Gorge and his co-authors show that effective information security is much more than that.
Much of the book deals with the 5 Pillars of Security Framework. The framework is meant to help organizations understand their security risk environment and organize their security risk management roles and protocols. By doing that, organizations can better understand their information security risks and develop a strategy to mitigate them. This is critical given the increase in industry and government regulations that put security at the forefront.
Senior management that does not have a strategy to mitigate their risks places their entire organization at significant risk. In fact, a single data breach could have devastating effects due to predatory lawyers with their class-action lawsuits, even if they were not at fault.
The five pillars the book enumerates are physical security, people security, data security, infrastructure security, and crisis management. Putting these in place can assist a firm in mitigating its risks both from a technology and legal perspective.
The core of the book is understanding how the data works in your organization and placing controls around it. Since data is the lifeblood of an organization, a lack of control over your data is a significant risk. Control the data, and most of the risks can be accordingly controlled.
Mathieu Gorge is a veteran in the information security space and wrote the book's first half. The second half has contributions by numerous experts and leaders in the field on topics such as human resources risk, strategic questionnaires, cyber risk impact on the board, and more.
Security and risk are indeed the cyber-elephants in the boardroom. But it is far too late to pretend they are not there. The book provides the reader with a high-level methodology of what they need to do to secure their organization.
The role of a security leader is to ensure that their CEO is in the Wall Street Journal to announce good news, not that they have been the victim of a data breach. And this book is a great resource to help those leaders do just that.
February 11, 2021
A master plan for effective cyber security.
The author who has over twenty years of experience in the field of data security, information governance, and compliance security matters, is the CEO of Virgi Trust. This company provides services related to integrated risk management solutions to companies across the globe. In this detailed and comprehensive book he addresses the problem of internet data security for both companies and for individuals. After addressing the issues related to this threat, he gives an overview as to how they tackle this threat for clients of theirs within a comprehensive plan described as "Five Pillars of Security Framework. " This approach is discussed in detail under each of the five headings of the identified pillars. Apart from highlighting the vulnerabilities of companies related to this threat, he also provides a structured response to the worst situation where a company's data has been compromised. Packed with information and detailed references, this book should be included in SOP's and plans for all companies and organizations in today's operating environment.
The author who has over twenty years of experience in the field of data security, information governance, and compliance security matters, is the CEO of Virgi Trust. This company provides services related to integrated risk management solutions to companies across the globe. In this detailed and comprehensive book he addresses the problem of internet data security for both companies and for individuals. After addressing the issues related to this threat, he gives an overview as to how they tackle this threat for clients of theirs within a comprehensive plan described as "Five Pillars of Security Framework. " This approach is discussed in detail under each of the five headings of the identified pillars. Apart from highlighting the vulnerabilities of companies related to this threat, he also provides a structured response to the worst situation where a company's data has been compromised. Packed with information and detailed references, this book should be included in SOP's and plans for all companies and organizations in today's operating environment.
February 22, 2021
Author Mathieu Gorge takes readers on a fascinating journey into cybersecurity and various horror stories behind it.
Gorge describes how for many companies cybersecurity is usually an afterthought and not taken seriously until it’s too late. As a data scientist, Gorge goes into great detail about why cybersecurity is critical and how you can protect your business with his five pillars. These explain five unique steps you can take to boost cybersecurity while learning more about why it’s vital.
There is a lot of information to take in and some sections can be a little long. However, Gorge writes with a relatable style which can help you grasp technical ideas and terms better. At 239 pages, it could take some time to read, but that shouldn’t deter you.
Overall, this book is perfect for those who need to learn how to protect their information or for those who just are interested in this topic.
Gorge describes how for many companies cybersecurity is usually an afterthought and not taken seriously until it’s too late. As a data scientist, Gorge goes into great detail about why cybersecurity is critical and how you can protect your business with his five pillars. These explain five unique steps you can take to boost cybersecurity while learning more about why it’s vital.
There is a lot of information to take in and some sections can be a little long. However, Gorge writes with a relatable style which can help you grasp technical ideas and terms better. At 239 pages, it could take some time to read, but that shouldn’t deter you.
Overall, this book is perfect for those who need to learn how to protect their information or for those who just are interested in this topic.
January 29, 2021
As the foreword describes this book looks at the cyber and the enterprise risks at a macro level, using Mathieu George´s 5 pillars of security framework. Those five pillars are: physical security, people security, data security, infrastructure security and crisis management.
Without any hesitation, I would recommend this book to entrepreneurs. I think that it is not just for CEOs, because the subject that it is exposed is completely well described. It has the backboard knowledge of the author, Mathieu George, who is a data security expert. I am totally convinced that data issues usually go unnoticed on enterprise daily life. Many risks are perfectly described in this book. It contains graphics along that are quite helpful. And last, but not least, it provided me with many tools to manage every pillar of the security framework.
Without any hesitation, I would recommend this book to entrepreneurs. I think that it is not just for CEOs, because the subject that it is exposed is completely well described. It has the backboard knowledge of the author, Mathieu George, who is a data security expert. I am totally convinced that data issues usually go unnoticed on enterprise daily life. Many risks are perfectly described in this book. It contains graphics along that are quite helpful. And last, but not least, it provided me with many tools to manage every pillar of the security framework.
February 3, 2021
The Cyber-Elephant In The Boardroom: Cyber Accountability With The Five Pillars Of Security Framework by Mathieu Gorge is in-depth and quite informative. He explains the different security measures that should be in place where ever your personal information is given. But many of us are so used to giving out our information we don't even think about what price we could be paying if the business that receives it has a weak security system.
Looking back at my own thoughtlessness I feel vulnerable after reading The Cyber-Elephant In The Boardroom. Mathieu Gorge puts his wisdom and knowledge on a level most people can understand the importance of keeping your personal information secure and holding business to their part. For me, I will look at companies differently, especially doctors' offices. This is a book you will be glad you read.
Looking back at my own thoughtlessness I feel vulnerable after reading The Cyber-Elephant In The Boardroom. Mathieu Gorge puts his wisdom and knowledge on a level most people can understand the importance of keeping your personal information secure and holding business to their part. For me, I will look at companies differently, especially doctors' offices. This is a book you will be glad you read.
February 3, 2021
Some time ago a colleague recommended me this interesting book and I have to say that I enjoyed it so much.
The Cyber-Elephant in The Boardroom is clearly written and focused on the essential while it is permeated with professional integrity and humility. The author did a great job keeping the material concise and straight to the point which make it easy and very understandable.
I found this piece of work to be very informative for a wide range of audiences. While it doesn’t go too deep into each tool's use, there is a variety of examples that provides more context than mere tools suggestions.
This is such a good book and I was so trapped in the reading that I couldn’t put it down!
To conclude, I dare to say that it is very amusing and really detailed, a delightful read from Mathieu Gorge.
The Cyber-Elephant in The Boardroom is clearly written and focused on the essential while it is permeated with professional integrity and humility. The author did a great job keeping the material concise and straight to the point which make it easy and very understandable.
I found this piece of work to be very informative for a wide range of audiences. While it doesn’t go too deep into each tool's use, there is a variety of examples that provides more context than mere tools suggestions.
This is such a good book and I was so trapped in the reading that I couldn’t put it down!
To conclude, I dare to say that it is very amusing and really detailed, a delightful read from Mathieu Gorge.
February 4, 2021
A safe investment
Mathieu Gorge, author and expert on information technology, explains in this book the importance of investing in cyber security for companies or businesses. The priority when a firm is being built is frequently to spend the money on running and maintaining the business. Generally, this kind of security is not taken into account and this is a big mistake. According to the writer, the larger amount of money should be invested to develop a safe trade.
Nowadays, companies make available a massive amount of information on line. This may result in making big mistakes and risking sensitive and personal information. This is the reason why I find this book very interesting and I recognize the truth in what the author says about the need of maintaining and updating this expensive but essential professional service.
Mathieu Gorge, author and expert on information technology, explains in this book the importance of investing in cyber security for companies or businesses. The priority when a firm is being built is frequently to spend the money on running and maintaining the business. Generally, this kind of security is not taken into account and this is a big mistake. According to the writer, the larger amount of money should be invested to develop a safe trade.
Nowadays, companies make available a massive amount of information on line. This may result in making big mistakes and risking sensitive and personal information. This is the reason why I find this book very interesting and I recognize the truth in what the author says about the need of maintaining and updating this expensive but essential professional service.
January 29, 2021
A reader that put me on the alert
“The Cyber-Elephant in the Boardroom” is a book about the importance of cyber security.
Because of being a topic often neglected by small, medium and big companies, cyber insecurity issues often appear at an inappropriate time.
Mathieu Gorge, the author of this reader and a data security expert, convinced me that it is time to set cyber security as a priority. He develops his view in a clear way, using pictures that simplify the understanding of the topics.
Although the information is well explained, I believe that it is essential to have a background knowledge of data security to fully understand this book’s content.
I recommend this book to those business owners and managers that still need to open their eyes on such a vital issue as cyber threads.
“The Cyber-Elephant in the Boardroom” is a book about the importance of cyber security.
Because of being a topic often neglected by small, medium and big companies, cyber insecurity issues often appear at an inappropriate time.
Mathieu Gorge, the author of this reader and a data security expert, convinced me that it is time to set cyber security as a priority. He develops his view in a clear way, using pictures that simplify the understanding of the topics.
Although the information is well explained, I believe that it is essential to have a background knowledge of data security to fully understand this book’s content.
I recommend this book to those business owners and managers that still need to open their eyes on such a vital issue as cyber threads.
Displaying 1 - 8 of 8 reviews