S2E23: Greg Touhill

In this episode of Resilient Cyber, Chris Hughes and Dr. Nikki Robinson talk with Greg Touhill, the first-ever Federal CISO and Director of CERT at Carnegie Mellon University, about the evolving role of security in the boardroom, the future of FISMA reform, and the critical importance of Zero Trust in today’s complex cybersecurity landscape. 🔐

🔑 Key Highlights:

• Greg’s extensive background in cybersecurity leadership, including his experience as the first Federal CISO

• The evolution of cybersecurity from a server room issue to a boardroom priority

• How Zero Trust strategies can transform federal and enterprise security architectures

• The importance of multi-factor authentication, encryption, and continuous verification in Zero Trust

• Greg’s thoughts on FISMA reform and the need to shift focus from compliance to risk management and resilience

• Insights into the future of cybersecurity leadership, including the expanding role of Chief Security Officers (CSOs)

• Practical advice for aspiring security leaders on communication skills, lifelong learning, and managing risk

Greg shares valuable lessons from his career in both public and private sectors, emphasizing the need for a resilient approach to cybersecurity in today’s dynamic threat environment.