Sign up to save your podcasts
Or
Share How to Provide Strong Leadership in the Security Industry with Drew Daniels
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
How to Provide Strong Leadership in the Security Industry with Drew Daniels
When it comes to information security and technology, Drew Daniels is the person to talk to. After over two decades of experience in the industry, Drew is now in charge of information technology and security as both the CIO and CISO at Druva. He believes information security can be a business driver as important as providing strong leadership.
Having been in the industry before cloud computing, he's also knowledgeable about the best pre and post-cloud practices. However, despite his long experience and large expertise, Drew is no stranger to struggles at work.
___________________________
Guest-at-a-Glance
💡 Name: Drew Daniels
💡 What he does: Drew is the Chief Information Officer (CIO) & Chief Information Security Officer (CISO) at Druva, the global leader in Cloud Data Protection and Management.
💡 Company: Druva
💡 Noteworthy: He has been in information security for about 21 years, and he's also an angel investor, independent board member, advisor to companies on funding, security to help them get off the ground successfully.
💡 Where to find Drew: LinkedIn
___________________________
Key Insights
âš¡ Balancing between the CIO and CISO roles is a challenge. Drew says that though these two roles don't always align, they present an interesting challenge. According to him, it's fun wearing both hats. "I have to be responsible for service delivery at Druva and making sure that our employees and our applications are running, available, and enabling the business. But at the same time, thinking about how I secure those things so that those end-users, customers, and the data that resides in those applications are secure and protected. It's a really interesting challenge some days. I have to think about it from an availability standpoint. Other days, I have to think about it from a security standpoint, and there are still days where I have to be keeping both things in my head."
âš¡ Change control process has persistently hung on even in the post-cloud era. Drew struggled the most with the change control process as both the CISO and CIO. He says he expected it to go away because it didn't make sense in such an ephemeral world, but it has persisted nonetheless. "I fight with auditors, and I fight with traditional IT personnel around change control because they're like every time I see a policy on change control, it talks about change control, approval board, and things like that. And I'm like, 'We can't do that. Things are moving too fast.'"
âš¡ Collaboration is key. When people don't communicate, they risk compromising the quality of their work. Drew talks about the challenges people in security face when it comes to consistent collaboration. "People I know in the industry, engineers, and developers, what I hear from them over and over again is when that happens, they work to get around, avoid, ignore the advice of those security teams, which makes the security team's job so much harder."
View all episodes
By Orca Security
5
88 ratings
When it comes to information security and technology, Drew Daniels is the person to talk to. After over two decades of experience in the industry, Drew is now in charge of information technology and security as both the CIO and CISO at Druva. He believes information security can be a business driver as important as providing strong leadership.
Having been in the industry before cloud computing, he's also knowledgeable about the best pre and post-cloud practices. However, despite his long experience and large expertise, Drew is no stranger to struggles at work.
___________________________
Guest-at-a-Glance
💡 Name: Drew Daniels
💡 What he does: Drew is the Chief Information Officer (CIO) & Chief Information Security Officer (CISO) at Druva, the global leader in Cloud Data Protection and Management.
💡 Company: Druva
💡 Noteworthy: He has been in information security for about 21 years, and he's also an angel investor, independent board member, advisor to companies on funding, security to help them get off the ground successfully.
💡 Where to find Drew: LinkedIn
___________________________
Key Insights
âš¡ Balancing between the CIO and CISO roles is a challenge. Drew says that though these two roles don't always align, they present an interesting challenge. According to him, it's fun wearing both hats. "I have to be responsible for service delivery at Druva and making sure that our employees and our applications are running, available, and enabling the business. But at the same time, thinking about how I secure those things so that those end-users, customers, and the data that resides in those applications are secure and protected. It's a really interesting challenge some days. I have to think about it from an availability standpoint. Other days, I have to think about it from a security standpoint, and there are still days where I have to be keeping both things in my head."
âš¡ Change control process has persistently hung on even in the post-cloud era. Drew struggled the most with the change control process as both the CISO and CIO. He says he expected it to go away because it didn't make sense in such an ephemeral world, but it has persisted nonetheless. "I fight with auditors, and I fight with traditional IT personnel around change control because they're like every time I see a policy on change control, it talks about change control, approval board, and things like that. And I'm like, 'We can't do that. Things are moving too fast.'"
âš¡ Collaboration is key. When people don't communicate, they risk compromising the quality of their work. Drew talks about the challenges people in security face when it comes to consistent collaboration. "People I know in the industry, engineers, and developers, what I hear from them over and over again is when that happens, they work to get around, avoid, ignore the advice of those security teams, which makes the security team's job so much harder."