Artwork for podcast Security by Default
From Prosecutor to CSO: Joe Sullivan on Cybersecurity Leadership, Crisis, and Resilience
Episode 216th January 2026 • Security by Default • Joseph Carson
00:00:00 00:47:48

Share Episode

Shownotes

In this episode of the Security by Default podcast, host Joseph Carson interviews Joe Sullivan, a prominent figure in cybersecurity. They discuss Joe's journey from a federal prosecutor to the Chief Security Officer at Facebook, exploring the challenges and expectations in transitioning from government to private sector roles. The conversation delves into the evolving landscape of cybersecurity, the impact of ransomware, and the importance of crisis management and preparedness. Joe shares valuable lessons for aspiring security executives and highlights the significance of understanding technology in leadership roles. The episode concludes with Joe's current projects, including his nonprofit initiative, Ukraine Friends, which provides laptops to children affected by the war in Ukraine.

Takeaways

  1. Security is possible for everyone.
  2. Joe Sullivan's journey reflects a unique path into cybersecurity.
  3. Transitioning from government to private sector presents challenges.
  4. Understanding corporate culture is crucial for success.
  5. Measuring success in cybersecurity requires clear metrics.
  6. Ransomware has fundamentally changed the cybersecurity landscape.
  7. Security leaders are increasingly reporting to CEOs.
  8. Crisis management is essential for organizational resilience.
  9. Aspiring security executives should focus on business understanding.
  10. Giving back to the community is a vital part of the cybersecurity profession.


Sound bites

  1. "Security is possible for everyone."
  2. "I got an MBA through osmosis."
  3. "The expectations were so high."


Chapters

  1. 00:00 Introduction to Security by Default Podcast
  2. 01:02 Joe Sullivan's Journey into Cybersecurity
  3. 05:10 Transition from Government to Private Sector
  4. 11:06 Navigating the Corporate Landscape
  5. 15:48 Measuring Success in Security
  6. 20:04 The Impact of Ransomware on Cybersecurity
  7. 28:01 The Evolving Role of Security Leaders
  8. 30:57 Understanding Business Strategy in Security
  9. 32:59 Risk Management and Business Partnership
  10. 33:52 Navigating Technology Risks
  11. 35:54 The Race for AI Innovation
  12. 38:03 Crisis Management and Preparedness
  13. 39:59 Building Resilience in Security Teams
  14. 42:16 The Importance of Response Training
  15. 44:10 Lessons from Emergency Services
  16. 47:41 Community Impact through Technology


Additional Resources:

https://www.joesullivansecurity.com/about

https://ukrainefriends.org/

https://www.linkedin.com/in/joesu11ivan/

https://en.wikipedia.org/wiki/Joe_Sullivan_(cybersecurity)

Links

Chapters

Video

More from YouTube