What is the problem we're trying to solve?

In this catalyst episode of the Exploring Information Security podcast, I explore the question, "What is the problem we're trying to solve" with Michael Santarcangelo.

Michael Santarcangelo, AKA The @catalyst, joins me to explain why answering the question is key to better security. The question, "What is the problem we're trying to solve" is the first step in identifying whether or not the problem at hand is worth addressing at this time. Essentially, is this what we should be working on right now and what will this gain us. This is a question to be answered by leadership. Michael has two decades of experience in security and working at the executive level. He's a regular on the Security Weekly and Down the Security Rabbithole podcasts. He's also launching his new program Straight Talk on Security.

In this episode we discuss:

  • What does the question mean?
  • Risk catnip
  • Why is the question important?
  • How to answer the question
  • The three perspectives of the quesiton