Back
Video

The CISO Verdict: Exposure Management Has a Delivery Problem

/1 min read/

CISO Perspective | On-Demand Interview

Stop Promising. Start Delivering: A CISO's Unfiltered Take on Exposure Management

Drew Simonis has spent nearly 30 years as a CISO. His assessment of the industry's progress? The scope has expanded. The approach hasn't.

In this candid conversation, Drew and Brad Hibbert — Brinqa's COO & CSO — talk through the gap between finding and fixing, why remediation still stalls in most enterprise programs, what it actually takes to evaluate an AI claim, and the three questions every CISO should be asking a vendor, but usually doesn't.

No slides or script, just two security practitioners speaking plainly about what's broken, what's improving, and what it looks like when exposure management finally works.

Watch the full interview:

If other people don't embrace the technology and embrace the process changes that come with it, demonstrate a willingness to work in a new way, then you're pushing a rope uphill.‌‍​‍​‍‌‍‌​‍‌‍‍‌‌‍‌‌‍‍‌‌‍‍​‍​‍​‍‍​‍​‍‌​‌‍​‌‌‍‍‌‍‍‌‌‌​‌‍‌​‍‍‌‍‍‌‌‍​‍​‍​‍​​‍​‍‌‍‍​‌​‍‌‍‌‌‌‍‌‍​‍​‍​‍‍​‍​‍‌‍‍​‌‌​‌‌​‌​​‌​​‍‍​‍​‍‌‍​‍‌​‍‌‍‍‌‌‍‍‌​‌‌‍​‌​‍‍‌​‌‍​‌‌‍‍‌‍‍‌‌‌​‌‍‌​‍‍‌​‌‌​‌‌‌‌‍‌​‌‍‍‌‌‍​‍‌‍‍‌‌‍‍‌‌​‌‍‌‌‌‍‍‌‌​​‍‌‍‌‌‌‍‌​‌‍‍‌‌‌​​‍‌‍‌‌‍‌‍‌​‌‍‌‌​‌‌​​‌​‍‌‍‌‌‌​‌‍‌‌‌‍‍‌‌​‌‍​‌‌‌​‌‍‍‌‌‍‌‍‍​‍‌‍‍‌‌‍‌​​‌‌‍‌‌‌‍‌​​‍‌​​​​‍​‌‍‌​‌‍​‌​​​​‍‌​​​​​‍​​​​‍‌​‍‌​‌​​​‌‌‍‌‌‌‍​​‍‌‌‍​‌​‌‍​​​‌‍‌‌​‍‌​​​‌‍​‍​‌‌‌‍‌​‌‍​‌‍‌‌​‌‍​​‌​‌‍​​‍​​‌‍​‍​‍‌‌​‌‍‌‌​​‌‍‌‌​‌‌​​‌‍‌​‌‌​​‍‌​​‌‍​‌‌‌​‌‍‍​​‌‌‍​‍‌‍‌‍‌​‌‍‌​‍‌‌​‌‌‌​​‍‌‌‌‍‍‌‍‌‌‌‍‌​‍‌‌​​‌​‌​​‍‌‌​​‌​‌​​‍‌‌​​‍​​‍‌‍‌‌​‌‌​‍‌​‌‍​‌‍​​​‌‍‌‌​‌​‌‍‌‍​‌‌‌‍​‍​‌‌​‍‌‌​​‍​​‍​‍‌‌​‌‌‌​‌​​‍‍‌‍​‌‌‌‌‌‌​‌‍‍​‌‍‌​‍​‌‍​‍‌‍​‌‌​‌‍‌‌‌‌‌‌‌​‍‌‍​​‌‌‍‍​‌‌​‌‌​‌​​‌​​‍‌‌​​‌​​‌​‍‌‌​​‍‌​‌‍​‍‌‌​​‍‌​‌‍‌‍​‍‌​‍‌‍‍‌‌‍‍‌​‌‌‍​‌​‍‍‌​‌‍​‌‌‍‍‌‍‍‌‌‌​‌‍‌​‍‍‌​‌‌​‌‌‌‌‍‌​‌‍‍‌‌‍​‍‌‍‌‍‍‌‌‍‌​​‌‌‍‌‌‌‍‌​​‍‌​​​​‍​‌‍‌​‌‍​‌​​​​‍‌​​​​​‍​​​​‍‌​‍‌​‌​​​‌‌‍‌‌‌‍​​‍‌‌‍​‌​‌‍​​​‌‍‌‌​‍‌​​​‌‍​‍​‌‌‌‍‌​‌‍​‌‍‌‌​‌‍​​‌​‌‍​​‍​​‌‍​‍​‍‌‍‌‌​‌‍‌‌​​‌‍‌‌​‌‌​​‌‍‌​‌‌​​‍‌‍‌​​‌‍​‌‌‌​‌‍‍​​‌‌‍​‍‌‍‌‍‌​‌‍‌​‍‌‌​‌‌‌​​‍‌‌‌‍‍‌‍‌‌‌‍‌​‍‌‌​​‌​‌​​‍‌‌​​‌​‌​​‍‌‌​​‍​​‍‌‍‌‌​‌‌​‍‌​‌‍​‌‍​​​‌‍‌‌​‌​‌‍‌‍​‌‌‌‍​‍​‌‌​‍‌‌​​‍​​‍​‍‌‌​‌‌‌​‌​​‍‍‌‍​‌‌‌‌‌‌​‌‍‍​‌‍‌​‍​‍‌‍‌​​‌‍‌‌‌​‍‌​‌​​‌‍‌‌‌‍​‌‌​‌‍‍‌‌‌‍‌‍‌‌​‌‌​​‌‌‌‌‍​‍‌‍​‌‍‍‌‌​‌‍‍​‌‍‌‌‌‍‌​​‍​‍‌‌

— Drew Simonis​​​​, CISO in Residence, Insight Partners

Videos

Related Resources

Insights from cybersecurity leaders and risk practitioners.

Visit the Resource HubVisit the Resource Hub

Executive & CISO Guides

The Questions Every CISO Should Ask an Exposure Management Vendor (But Usually Doesn't)

Whitepaper/Guide

Your AI-Powered Exposure Management Playbook: How to Build Clarity Inside the Chaos

Podcast

From Vulnerability Chaos to Exposure Control: The Risk Reduction Playbook

Ready to Unify Your Cyber Risk Lifecycle?

Get a DemoGet a Demo