Americas

Asia

Europe

Oceania

Popular Topics

Topics

About

Policies

Our Network

More

HomeCommunityAndy Ellis

Andy Ellis

  • Image
    Advisory CISO, Orca Security, and Contributing Writer
    Andy Ellis is the Advisory CISO at Orca Security, and 2021 Inductee into the CSO Hall of Fame. He is an Operating Partner at YL Ventures, and was formerly a US Air Force officer and the CSO at Akamai Technologies. You can find him hosting the Cloud Security Reinvented podcast and on Twitter at @csoandy.

Articles by Andy Ellis

opinion

The death of the CIO

CISOs grew up in the CIO’s blindspot. As cloud and SaaS bring IT and security back together, which will survive their impending deathmatch?

By Andy Ellis
28 Feb 2024 4 mins
CSO and CISO Careers IT Leadership
opinion

Why assessing third parties for security risk is still an unsolved problem

By Andy Ellis
20 Jun 2023 4 mins
Risk Management
opinion

Software liability reform is liable to push us off a cliff

By Andy Ellis
02 Mar 2023 6 mins
Application Security Compliance Open Source
opinion

What the Uber verdict means to CISOs: You’re (probably) not going to jail

CISOs and potential CISOs worried about criminal risk won't go to jail if they follow four simple steps.

By Andy Ellis
13 Oct 2022 5 mins
CSO and CISO
news analysis

TikTok resets the clock on security leadership

Roland Cloutier is stepping down as global CSO to become a strategic advisor to TikTok’s CEO. The clock is ticking on the CSO succession plan.

By Andy Ellis
15 Jul 2022 4 mins
IT Leadership Security
opinion

We don’t need another infosec hero

By setting yourself up as the defender, the solver of problems, you cast your business colleagues as hapless victims or, worse, threats. This is not a useful construct for engagement.

By Andy Ellis
16 Jun 2022 4 mins
CSO and CISO IT Leadership
opinion

The cloud security emperor has no pants

“Shared responsibility” usually means that no one is responsible for minding the gap. Don’t fall in.

By Andy Ellis
26 Apr 2022 4 mins
Cloud Security
opinion

The security user experience (SUX)

Security processes that treat the very users we protect as unwanted burdens and alienate them in the process are a path to failure.

By Andy Ellis
15 Apr 2022 4 mins
Fraud Security Practices
opinion

CISOs are still chiefs in name only

If you’re not in the meeting where decisions are made, then you’re not part of the C-Suite—whatever your title may be.

By Andy Ellis
07 Mar 2022 4 mins
CSO and CISO Careers IT Leadership
opinion

Drop the SBOM

Software bills of material are having a moment, but the costs of an externally visible SBOM are likely to outweigh the benefits, says Andy Ellis.

By Andy Ellis
22 Feb 2022 5 mins
Application Security Open Source

Show me more

news

AT&T suffers critical breach impacting 73 million customers

By Shweta Sharma
01 Apr 20244 mins
Data Breach
Image
feature

Recruit for diversity: Practical ways to remove bias from the hiring process

By Aimee Chanthadavong
01 Apr 20248 mins
Careers
Image
feature

The CSO guide to top security conferences

By CSO Staff
01 Apr 202417 mins
Technology IndustryIT SkillsEvents
Image
podcast

CSO Executive Sessions: 2024 International Women's Day special

13 Mar 202410 mins
CSO and CISO
Image
podcast

CSO Executive Sessions: Former convicted hacker Hieu Minh Ngo on blindspots in data protection

20 Feb 202421 mins
CSO and CISO
Image
podcast

CSO Executive Sessions Australia with Sunil Sale, CISO at MinterEllison

20 Nov 202315 mins
CSO and CISO
Image
video

CSO Executive Sessions: Geopolitical tensions in the South China Sea - why the private sector should care

01 Apr 202416 mins
CSO and CISO
Image
video

CSO Executive Sessions: 2024 International Women's Day special

13 Mar 202410 mins
CSO and CISO
Image
video

LockBit feud with law enforcement feels like a TV drama

05 Mar 202456 mins
RansomwareArtificial Intelligence
Image