CISO Trainings , Governance & Risk Management , Leadership & Executive Communication
Cybersecurity: Think Critically and See the Whole System
John Remo of Warner Music on Moving Away From the Check-Box Approach to SecurityMany security practitioners take a check-box approach to cybersecurity, which prevents them from seeing the whole system. John Remo, the senior vice president of global infrastructure and cybersecurity at Warner Music Group, discusses how to break out of this pattern and use critical and abstract thinking to examine the deeper workings of the system.
See Also: The CISO Playbook for Cloud Security
"You need to look at: What is the outcome that you want? What are your crown jewels, your most valuable assets that you want to protect? … And then you have to build layers of permission, that semantic layer of understanding relationships. Understanding the entire ecosystem is very important."
In this interview with Brian Barnier, the founder of Think.Design.Cyber. and an expert in critical thinking and design thinking for cybersecurity who is developing a course for CyberEd.io, Remo also discusses:
- Complexity, fluidity and switching to a systems mindset;
- Learning leadership skills and breaking down siloes to increase transparency, communication and collaboration;
- Implementing industrial-strength design thinking.
Remo is a strong proponent of zero trust principles. He has led his team through moving all applications to the cloud, consolidating legacy applications and implementing single sign-on and multifactor authentication. Prior to joining Warner Music Group, Remo was vice president of cloud infrastructure engineering and operations at Openlink Financial, where he defined and executed the global strategy for building and supporting both public and private clouds for global, Tier one banking, energy and trading institutions, with a heavy emphasis on automation, security and compliance. Remo’s strategy and vision have consistently focused on cloud and cybersecurity excellence to reduce cyber and compliance risks and increase operating efficiencies to enable revenue growth.