During times of volatility, business leaders often don’t know what they are able to change or even what they should change. At precisely these times, business leaders become risk leaders and need to quickly learn how to identify what is within their control and what isn’t — to not only survive but thrive.
Alla Valente, Principal Analyst at Forrester Research, joins Business Security Weekly to discuss how to Regain Control Over Business Risk With The Three E’s Framework, a report that provides a framework for identifying what is controllable and how to be smart when dealing with volatility.
In the leadership and communications section, Cybersecurity for Mergers and Acquisitions – A CISO’s Guide, Your Employees Aren’t the Problem. Your Leadership Habits Are, When the Best Leadership Skill Is Just Being Present, and more!
Alla is a principal analyst at Forrester. Her research interests include governance, risk, and compliance (GRC), third-party risk management (TPRM), and contract lifecycle management (CLM), and Alla’s current research focuses on enterprise risk management (ERM), AI risk, and risk management frameworks. Alla helps Forrester’s security & risk clients establish strategy, adopt best practices, and select technology. Alla’s work has enjoyed wide exposure in the media, including in The Wall Street Journal, CNBC, and she speaks frequently at risk and executive conferences.
Matt Alderman
- How is the role of the CISO evolving?
The role of the Chief Information Security Officer (CISO) has undergone a profound metamorphosis. Once a primarily technical custodian sequestered within IT, the modern CISO is increasingly a strategic business leader, pivotal to organizational resilience, innovation enablement, and stakeholder trust.
- CISO Stature Rises, but Budgets Remain Tight
Chief information security officers (CISOs) are being paid better than ever, more likely to be an executive — or report directly to an executive — and have expanding responsibilities. Yet tight security budgets continue to be a major challenge.
- Cybersecurity for Mergers and Acquisitions – A CISO’s Guide
Mergers and acquisitions (M&A) have become a high-stakes battleground for cybersecurity risks, with 2024 witnessing a surge in regulatory scrutiny, sophisticated cyberattacks, and costly post-deal breaches. Here's a guide for CISOs.
- A handy list of risk questions every healthcare CISO should ask potential suppliers
Every healthcare company relies on external suppliers to activate services and process, transmit, or store their data — and every one of those relationships creates risk. CISOs and business leaders who manage supplier risk should ask three hard questions of every supplier before entrusting them with sensitive data.
- Your Employees Aren’t the Problem. Your Leadership Habits Are
Struggling with team disengagement? This article explores how leadership habits — not employee effort — are often the real issue. Learn how to build trust, spark motivation, and create a culture of ownership through Identity-First Leadership.
- When the Best Leadership Skill Is Just Being Present
Unlike traditional leadership responses to employees—offering advice, jumping to solutions, or minimizing feelings—attunement is about being with another person instead of trying to fix them or the situation. It’s when a leader deeply notices, actively listens, and signals to an employee: I see you. I understand you. You are safe here. Unfortunately, this powerful skill is rare among leaders, who are often taught that action is more important than listening. To practice attunement, consider five steps: Set the intention, shift into calm, stay curious, listen with your body, and invite reflection. Taken together, they will help anchor your employees—which, in world that’s increasingly chaotic, can be the difference between disengagement and resilience.
