Black Hat , CISO Trainings , Events

Joe Sullivan on CISO Imperatives: Responsibility, Authority

Ex-Uber CSO Joe Sullivan on Navigating Cybersecurity and Corporate Transparency
Joe Sullivan, CEO of Ukraine Friends and former CSO of Uber

CISOs have more responsibility than ever before, and the consequences of a security failure can be devastating. The question many CISOs are asking is: Do I have the authority to fulfill my responsibilities effectively? Drawing from his experience as the former CSO of Uber, Joe Sullivan, CEO of Ukraine Friends, delved into the growing expectations for CISOs to take ownership of cybersecurity decisions.

See Also: New Approaches to Solving the Cybersecurity Talent Shortage

From disclosure questions to the shifting responsibilities of security leaders, Sullivan shared his insights on the intricacies of leading a fast-paced corporate cybersecurity organization and efforts to bolster transparency and collaboration in the face of evolving threats. "Security is a collective investment, and everybody's on the hook for protecting our customers," he said.

"What we all want is as much transparency as possible," he said. "One of the things that's a fundamental challenge that most security leaders are worried about is the internal dynamic - because there's more expectation of transparency, but not everybody inside the company wants to be transparent."

In this video interview with Information Security Media Group at Black Hat Europe 2023, Sullivan also discussed:

  • Why collaboration between the public and private sectors is needed to combat cyberthreats;
  • Lessons from the Uber case and advice to CISOs on crisis management;
  • How Ukraine Friends is helping businesses in the conflict zone enhance their cyber defenses.

Sullivan is a lawyer, CISO and former federal prosecutor with the U.S. Department of Justice. He served as a CSO at Facebook, Uber and Cloudflare and as an associate general counsel at PayPal. Sullivan co-founded the Computer Hacking and Intellectual Property Unit at the Department of Justice and worked there for eight years.

About the Author

Tony Morbin

Tony Morbin

Executive News Editor, EU

Morbin is a veteran cybersecurity and tech journalist, editor, publisher and presenter working exclusively in cybersecurity for the past decade – at ISMG, SC Magazine and IT Sec Guru. He previously covered computing, finance, risk, electronic payments, telecoms, broadband and computing, including at the Financial Times. Morbin spent seven years as an editor in the Middle East and worked on ventures covering Hong Kong and Ukraine.

Around the Network

Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing, you agree to our use of cookies.