Breach, Blame, Repeat

World renowned cyber security expert, Dick Clarke, advises on breaking the cycle of breach and blame by evolving the role of the CISO.

Abstract digital eye overlaid with DNS-like code, symbolizing DNS data as a cybersecurity visibility layer
Key Takeaways
  • The traditional cycle of “breach and blame” persists when security is treated as a reactive, siloed function rather than a core business discipline.
  • Dick Clarke advocates redefining the CISO role from technical operator to strategic executive with clear decision-making authority.
  • Effective CISOs must have direct access to the board and C-suite to align security priorities with overall business risk management.
  • Organizations should measure CISO performance on risk reduction and resilience outcomes instead of solely on the absence of incidents.
  • Breaking the breach-blame cycle requires shared accountability across IT, security, and business leaders, not concentrating fault on the CISO alone.
  • Evolving the CISO role includes empowering them with the budget, resources, and cross-functional support needed to implement proactive security controls.

Breach, Blame, Repeat

World renowned cyber security expert, Dick Clarke, advises on breaking the cycle of breach and blame by evolving the role of the CISO.

⏳ Cisco Live is almost here. Put BlueCat on your agenda for smarter, more secure networks.

Get the details