Three ways a CSO can stop being the bad guy
Are you the Dr. No of your company, always with security-related reasons for stopping or slowing down projects?
When you meet with management, is it to ask for more money for security or else horrible things will happen? If so, do you say it like, “one meeeeellion dollars” while petting a white cat? You do know that one million dollars will hardly make a dent in the problem. Better make it, “one beeeeellion dollars.”
(Yes, I know it was Dr. Evil who made “one meeeellion dollars” a catchphrase, but it was Dr. No who said it first.)
And when you’re not going around telling people to stop doing what they want, or asking for money, are you delivering bad news about breaches?