Life of a CISO with Dr. Eric Cole

• Breaking Into Cybersecurity and Future Trends with Henrik Parkkinen

  In this episode of Life of a CISO, Dr. Eric Cole interviews Hendrik Parkkinen, a seasoned cybersecurity expert from Sweden with over 20 years of experience, mostly in consulting and security strategy. They discuss Henrik’s journey into cybersecurity, emphasizing how passion and curiosity play a crucial role in succeeding in the field. Henrik shares how he transitioned from studying economics to cybersecurity after a recommendation from his mother and how he fell in love with the subject through a 12-month training program. Both Eric and Henrik highlight the importance of loving the work rather than just chasing money, since cybersecurity demands ongoing learning and commitment beyond regular hours. They also discuss practical advice for newcomers: be curious, explore various domains within cybersecurity, and don’t be afraid to pivot if something doesn’t fit. With the rise of accessible and often free learning resources online, breaking into the field is more feasible than ever, but focus and completing courses is essential. When it comes to certifications, Henrik believes they serve as useful entry points or validation badges, especially for HR filters, but experience and mastery are ultimately more important. Certifications should be viewed as part of a broader learning process, not an end in themselves.  

  --------  

  35:21
• Alignment

  In this new episode of Life of a CISO, Dr. Eric Cole opens with one of his most powerful guiding principles: “Let data drive decisions, not emotions.” Drawing from his experiences traveling and meeting with top executives, he emphasizes the importance of making decisions based on reliable data rather than emotional impulses. He challenges listeners to ask themselves whether they have enough information to make an informed choice—not perfect information, but sufficient insight to move forward. When we delay decisions out of fear or uncertainty, it’s often because we lack confidence due to missing data. Dr. Cole encourages action: if you don’t have enough data, go get it. He then introduces his second foundational principle: “Smart people know the right answers; brilliant people ask the right questions.” These two mantras form the core of what it means to be a world-class CISO. But Dr. Cole takes it even further, revealing that the root of most professional frustration stems from a lack of alignment—whether it’s misalignment with your goals, your team, or the organization itself. He draws parallels between business alignment and physical alignment in cars or our bodies, reinforcing that clarity of purpose and alignment of actions are essential for not only being effective, but also reducing stress. Whether you’re a CISO or not, these lessons apply to every area of life.  

  --------  

  31:47
• CISO Blind Spots

  In this episode of Life of a CISO, Dr. Eric Cole shines a spotlight on a critical blind spot that many Chief Information Security Officers overlook: legal liability. While CISOs are often highly skilled and technically knowledgeable, it’s what they don’t know—particularly about their legal exposure—that can put them at serious risk. Dr. Cole explains that many CISOs hold the title of “chief” without realizing they may not officially be corporate officers, and that distinction matters. If you are considered a true officer of the company, you may be personally liable for failures or breaches, even if you weren't the root cause. He urges CISOs to ask the right questions during negotiations, ensure they understand their official role, and protect themselves with legal counsel and proper insurance coverage. He goes on to emphasize the importance of understanding how communication becomes evidence at the executive level. In today’s digital world, emails and text messages are no longer just conversations—they are legal records that can be used for or against you. Dr. Cole discusses how even a lack of written documentation can lead to lawsuits or termination if it's perceived that a CISO failed to inform the board about a critical risk. However, over-documenting can also backfire by making colleagues uncomfortable or wary. This delicate balance between transparency and discretion is a key leadership skill every CISO must develop. Ultimately, this episode is a wake-up call to every cybersecurity leader: the higher you rise, the more you must be aware of the legal and personal implications of your role.  

  --------  

  32:08
• AI Risks

  In this episode of Life of a CISO, Dr. Eric Cole dives deep into the dominating force of 2025: artificial intelligence. While AI is everywhere—embedded in nearly every conversation and technology—the real concern, he explains, isn’t just about its capabilities but the risks it brings, especially in cybersecurity and data privacy. Dr. Cole breaks AI down into its two primary types: machine learning, which relies on data sets, and expert systems, which mimic expert decision-making through logical rules. He shares how AI isn’t new, recounting his own early work building simple expert systems back in college, but warns that today’s AI is only as good—or as dangerous—as the data it consumes. Dr. Cole emphasizes that data is the real power behind AI, not the algorithms. Using TikTok as an example, he highlights how data collected over years can predict behaviors and influence markets, creating national security and privacy concerns. He also discusses why big players like Amazon might seek access to such rich behavioral data to maintain dominance in e-commerce. Drawing attention to the eerie accuracy of modern predictive systems, Dr. Cole calls on CISOs and security professionals to take responsibility: every interaction with AI is feeding it data, and that data needs to be protected. He urges leaders to ask tough questions about where their data goes, how it's used, and whether they are unknowingly contributing to systems that could expose sensitive information.  

  --------  

  32:59
• Blindspots

  In this powerful episode of Life of a CISO, Dr. Eric Cole opens by highlighting a key success principle: even the world’s top performers — whether in sports, business, or entertainment — rely on coaches to help them spot their blind spots. Drawing from his deep experience coaching CISOs, Dr. Cole shares that cybersecurity leaders are no different. They often miss critical areas simply because they're too focused on day-to-day operations. He emphasizes that one of the most common blind spots for CISOs is the unrealistic pursuit of 100% security, which simply doesn’t exist. As Dr. Cole reminds us, every added functionality in a business decreases security — and breaches are not a question of if but when. The episode dives deep into the mindset shift every CISO must make: embracing the breach. This doesn’t mean accepting failure, but rather committing to early detection, fast response, and minimizing business impact when an incident occurs. Dr. Cole stresses that a CISO’s survival depends on aligning with executives early, clearly communicating that breaches are inevitable, and setting realistic expectations. Without that alignment, companies often fire the CISO after a breach — not because of the breach itself, but because of failed communication. To prevent this, Dr. Cole recommends that CISOs regularly update executives with simple, non-technical risk reports that show the likelihood, potential cost, and status of key security threats. By turning security into a transparent business conversation, CISOs can transform from scapegoats to trusted advisors — even in the face of attacks.  

  --------  

  28:17

More Technology podcasts

Trending Technology podcasts

About Life of a CISO with Dr. Eric Cole