Transcript
Mike Matchett: Yeah, I mean I know some CISO's and I talk to a bunch of them regularly and it's interesting to hear the different perspectives they have about this kind of conversation about security and data loss prevention and data protection. In fact, written large compared to some of the business people they work with. And, you know, they're the ones who are responsible for it and don't get to sleep at night if things go wrong. And, you know, they have to sort of make this argument to the business folks about what to do next and, you know, their responsibility, bring along the automation and the recommendations. So what would you start to recommend to our CISO audience? Andy Olpin: So I would say that one of the things CISOs have to figure out is that their job is not to say no, right? When you say no all the time, that's when you really conflict with your business owners, right? The business is saying we have to, the CISO says no. The CISO's job is to say, all right, I see the business need. I know you need to do that, but I'm going to help you do it securely, right? So now it comes down to how do we get controls over that business data so that you can still have business data in Office 365. You can still share that business data with all the collaborators you need to, but we have some security assurances to make sure not only that the data doesn't go missing, but that we can help train users in how they use that business data and where it goes and where it allows so that we can kind of make everybody happy.
