David Kiklis

David Kiklis has over 25 years of experience spanning cybersecurity, infrastructure, and enterprise architecture. He specializes in building defensible cybersecurity programs, utilizing essential tools effectively, and framing cybersecurity as an executive business discussion. David has helped numerous companies improve security strategies and avoid common IT pitfalls. His passion is helping organizations build pragmatic cybersecurity strategies focused on risk and aligned with business objectives

Securing the Enterprise: David Kiklis on the Evolution of Cybersecurity and Keys to Success

What does it take to build an effective cybersecurity program? How has the landscape evolved over the past 20 years? In this podcast, we tackle these questions and more in an insightful chat with cybersecurity pro David Kiklis. Drawing on decades of experience, David shares perspectives on managing cyber risk, working with auditors, getting leadership buy-in, and using the right tools. Expect a view on where cybersecurity has been, the challenges we face today, and advice for the future as we cover security frameworks, data governance, and shifting conversations. No matter where you are in your cybersecurity career, you will take away valuable lessons on maturing programs and influencing executives.

 

Build a program that is defensible and not negligent – be at industry standard or better for policies, procedures, operations, tools.

3 Key Takeaways

Listen To The Full Episode Below

Dissecting Popular IT Nerds
Dissecting Popular IT Nerds
251- Securing the Enterprise: David Kiklis on the Evolution of Cybersecurity and Keys to Success
Loading
/

Episode Show Notes

Shifting Perspective: Investing in Cybersecurity ROI [00:03:44]

The Importance of Cybersecurity in the Modern Workplace [00:05:01] 

Safeguarding Data and Obligations as an Employer [00:07:11]

The Growing Regulatory Mandates for Privacy and Cybersecurity [00:09:36]

Auditing and Proving Control in Cybersecurity Policies [00:12:38]

Balancing Document Classification and Cybersecurity Controls [00:14:27]

Shifting IT discussions to business language and outcomes [00:20:38] 

Government vs. Private Sector: Key Differences Explored [00:31:31]

The Variations in Cybersecurity Programs [00:33:00]

Understanding Cybersecurity Program vs. Cybersecurity Tools [00:35:09]

Annual Penetration Testing vs. Real-Time Dynamic Testing [00:38:01]

Patching Systems and Building Defensible Cyber Programs [00:42:23]



Resources

QR Code