In this week's episode of the Future of Cyber Risk podcast, David speaks to Erik Rasmussen, Global Head of Cybersecurity and Risk Management at Grobstein Teeple LLP, a leading consulting firm offering cybersecurity and business consulting services. They discuss what it means to be a leader in the cybersecurity world, how Erik's secret service and social sciences background contribute to his consulting, and how he works with clients on a daily basis. They also discuss what security practitioners tend to get wrong, what skills are important for security, and advice for new security professionals.

Topics discussed:

• Erik's background that lead him to security, from majoring in history, to attending law school, to being recruited to the secret service, to finally moving into the private sector as a security consultant.
• The day-to-day work as a security consultant, which includes working with clients on incident response, strategic management, overflow monitoring, security testing, and more.
• What security practitioners get wrong about risk, and why solving problems involves putting people before the technology.
• What skills are necessary to possess in security, and the importance of reading, writing, and ongoing learning.
• How security professionals can be better writers, and communicate their ideas and findings more clearly to those who may not have security backgrounds.
• Advice for security professionals on how to improve networking skills, how to collaborate with others, and why it's beneficial to focus on just a few areas of expertise.