An executive/manager in charge of cybersecurity in an organization has the unenviable task of influencing the Board and the executive leadership group as well as impacting the security culture across the organisation. Cybersecurity leader does not necessarily need in depth technical skills, but certainly needs dynamic leadership skills.

What does transformational leadership in Cybersecurity mean?

If you are a Board member/Executive manager looking to hire a Security manager or you are a security manager looking to rise to the challenge, in addition to technical understanding of security, I would focus on getting/ developing the following skills.

• Great communicator and story teller: Only a great communicator can influence effectively at the board and executive level as well end users from various business units with varied amounts of technical knowledge.

• High Emotional Intelligence: A highly developed emotional intelligence is needed in order to foster enduring internal relationships with peers, business unit leaders, and technical staff. EI is a critical trait as it will influence collaboration, teamwork, crisis management, and more.

• Big-picture thinking: “Being able to see the forest for the trees…..” A security manager usually comes from a technical background and technical engineers are very good at focussing on the minutiae which is necessary to solve technical problems. Security on the other hand is very much connected with being able to see the bigger picture and the context. Security leader needs to have a big-picture thinking to be successful.

• Business Acumen: A security leader has a very important part to play in business planning, strategic planning, and ensuring security and risk is built into all business processes. Most importantly the person needs to be able to frame security challenges into business opportunities, ultimately, security leader need to balance dollars with risk.

• Ability to lead cultural change: Organizational culture sets the tone, the framework, and the operational context for security to operate. Implementing a mature security posture has a lot to do with successfully leading culture change in an organization. Ultimately security leader must create a positive security culture.

• Personal integrity: For the security leader the foundation of success is built on how he/she can engender trust of various parts of the organisation in the security processes and security programs being put in place. Trust starts with the security leader and hence he/she must exhibit greatest of personal integrity in everything the person says and does.

• Execution- Ability to get things done: Security leader must be results oriented. At the end of the day, soft skills and communication and integrity and EI are all good, but the security manager must have the ability to execute and complete tasks and projects successfully. Security leader must find ways to say “yes” to internal stakeholders and make security an enabler and not a roadblock.

• Be a team builder: Good leaders build good teams. The security leader needs to be a “servant leader” and build a team of specialists with multi-dimensional skillsets and attracting the best talent to the organisation. Successful security program needs people with right mix of talent, technical skills and interpersonal skills working as a cohesive unit.