CISO Stories Podcast: Five Mistakes Impacting Security and Privacy Policy Creation

Charles Cresson Wood set the ‘gold standard’ for policy guidance with the book Information Security Policies Made Easy, now in its 14th version. Wood has extensively researched what separates good processes from bad and has helped countless organizations develop and deliver sound policies that work to enable the business. Wood joins the podcast to discuss the five key mistakes teams make in creating and delivering impactful security and privacy policies for any organization - check it out...

Charles Wood
About the Guest

Charles Cresson Wood

Attorney and Management Consultant at InfoSecurity Infrastructure, Inc.

Charles Cresson Wood, Esq., (JD, MBA, MSE, CISA, CISM, CGEIT, CIPP/US, CISSP) is best known for his book Information Security Policies Made Easy, which is used by over 70% of the Fortune 500 companies for guidance in sound policy creation. He has been working as a consultant and researcher in the information security and privacy field for over 40 years, and has most recently published the book, titled Corporate Directors’ & Officers’ Legal Duties for Information Security and Privacy: A Turn-Key Compliance Audit Process.

About the Hosts

About the Host

Sam Curry

Chief Security Officer at Cybereason

Sam Curry (@samjcurry) is CSO at Cybereason and is a Visiting Fellow at the National Security Institute.  Previously, Sam was CTO and CISO for Arbor Networks (NetScout) and was CSO and SVP R&D at MicroStrategy in addition to holding senior security roles at McAfee and CA. He spent 7 years at RSA, the Security Division of EMC as Chief Technologist and SVP of Product.

Sam also has over 20 patents in security from his time as a security architect, has been a leader in two successful startups and is a board member of the Cybersecurity Coalition, of SSH Communications and of Sequitur Labs.

About the Host

Todd Fitzgerald

Vice President, Cybersecurity Strategy at Cybersecurity Collaborative

Todd Fitzgerald (@securityfitz) has built information Fortune 500/large company security programs for 20 years. 

Todd serves as VP, Cybersecurity Strategy and Chairman of the Cybersecurity Collaborative Executive Committee, was named 2016–17 Chicago CISO of the Year, ranked Top 50 Information Security Executive, authored 4 books including #1 Best Selling and 2020 CANON Hall of Fame Winner CISO COMPASS: Navigating Cybersecurity Leadership Challenges with Insights from Pioneers (2019), ground-breaking CISO Leadership: Essential Principles for Success, as well as contributions to a dozen others. 

Todd held senior leadership positions at Northern Trust, Grant Thornton International, Ltd, ManpowerGroup, WellPoint (Anthem) Blue Cross Blue Shield/ National Government Services, Zeneca/Syngenta, IMS Health and American Airlines.

CISO Stories Podcast

About The CISO Stories Podcast

The Cybersecurity Collaborative, in conjunction with Cybereason, is proud to present the CISO Stories Podcast. Each week CISO Stories takes a deep dive on security leadership with top security professionals from across the public and private sectors who share their insights and expertise with the community.

The Cybersecurity Collaborative is a unique membership community enabling cybersecurity leaders to work together in a trusted environment. To learn more, visit:

All Episodes of CISO Stories Podcast