Interview with Angus MacLeod
Email interview held on 12th September 2017 – as follows between Alan Radley (questioner) and Angus MacLeod (relator):
1. What are your thoughts on the current state of cybersecurity, both for organizations and for consumers?
I do not think that business are taking security seriously. Most organisations have not invested in security, they want to get the badges, and certification, but they are not really wanting to do address security properly, what is the minimum we can do to is the attitude.
Security also tends to be under CTO, IT Director, they do not like it when you hold them to account there is a conflict of interests report to IT security should be imbedded in IT and the business with clear direct reporting channels to the board.
2. What – in your estimation – are the reasons behind the many computer security breaches/failures that we see today?
Lack of investment, in people processes and technology.
Security needs to be addressed top-down and bottom-up be part of the culture of the business.
Business tend to think of it as an IT issues. There is not enough traing and awareness.
3. Where do you go to find your “science” of cybersecurity?
Various web forms, blogs, news feeds, vendors, training lots of reading in general.
4. Do you recommend a particular cybersecurity blog that our readers could follow?
5. What keeps you up at night in the context of the cyber environment that the world finds itself in?
When it comes to cyber security nothing keeps me awake, you give the business advice, they don’t listen, you have a breach and you deal with it, and you tell them all I told you so.
Thank you kindly Angus MacLeod for taking the time out of what must be a busy schedule to answer our questions in such a useful and purposeful way.
Interviewee: Angus MacLeod.,
Information & Cyber Security professional.
Angus MacLeod – CISM – Biography
Experienced Information Technology Security Manager with a demonstrated history of working in the non-profit organizations public and private sectors and in the civil service. A Strong information technology professional skilled in Information and Cyber Security, Service Delivery, Microsoft Solutions , Local Area Network (LAN), and Technical Support.