How the Duke CISO Certificate Enhances Strategic Thinking and Leadership in Cybersecurity
By Emilia Chiscop-Head
Interview with Selassie Susuawu, CTO of Renovatio Kratos Group in Canada, discussing his experience and insights as a learner in the Duke CISO Certificate program.
What cybersecurity issues do you manage in your current role?
In my current role, I provide technological consultancy services to small, medium, and large businesses in Ghana, Africa, making available to them a wide range of Cybersecurity, Information Security & Risk, threat detection, response, risk assessments, and compliance with industry regulations. I also provide my clients with IT governance policy designs and implement security policies to protect sensitive data and ensure that all security measures align with the latest industry standards and best practices.
How have you decided to become a Cyber professional and why?
My decision stemmed from a real-life experience on June 27, 2017, a cyber attack during my days with my previous employer, the world’s largest shipping and logistics company. This situation birthed in me a long-standing passion for cyber and security. Throughout my career in IT, I have witnessed the growing importance of cybersecurity in protecting organizational assets and data. The increasing sophistication of threats and their actors and the critical need for robust security measures inspired me to specialize in this field. I am driven mainly by the challenge of being one step ahead of cybercriminals and the satisfaction of creating secure digital environments and platforms.
Is cybersecurity the only area of responsibility in your professional role? If not, what other areas are you responsible for?
While cybersecurity is a major focus of my role, it is not my only responsibility. I am also involved in IT project implementations and management, overseeing the construction of IT infrastructure for Medium & Large organizations. Additionally, I develop and implement IT governance frameworks and manage IT cost efficiency and budget for IT projects.
What are some of the most important lessons you learned during the Duke CISO Executive Certificate Program?
The Duke CISO program provided me with invaluable insights into the strategic aspects of cybersecurity. Key lessons and takeaways include the importance of aligning cybersecurity strategies with business objectives, effective risk management techniques, and the necessity of building a strong security culture within an organization and, most importantly, always having the buy-in and how to align all key stakeholders, especially the Board of directors in all security projects. I also learned about advanced threat detection and response methods, the significance of regulatory compliance, and the evolving landscape of cybersecurity threats.
What is one important goal you hoped to achieve by completing this certificate program?
One important goal I hoped to achieve by completing the Duke CISO program was to enhance my strategic thinking and leadership skills in cybersecurity. I aimed to gain a deeper understanding of how to integrate cybersecurity into overall business strategy and to develop the ability to effectively communicate the importance of cybersecurity measures to executive leadership and stakeholders.
Can you name 1-2 significant challenges in cybersecurity today and how an executive program like this can help overcome them?
Two significant challenges in cybersecurity today are the rapid evolution of cyber threats, and the rapid emergence of AI technology, coupled with the shortage of skilled cybersecurity professionals. An executive program like the Duke CISO program helps overcome these challenges by providing advanced knowledge and skills to anticipate and counteract emerging threats. It also equips professionals with leadership and strategic planning capabilities, enabling them to build and lead effective cybersecurity teams and fostering a proactive security posture within their organizations.