Katie Kaz (5:03)

So when you said failure at things previously, do you mean just generally or do you mean like another role? Something had happened and then you felt this need of responsibility to succeed.

Simon Hodgkinson (5:15)

Yeah, absolutely. So, you know, I go back to. I mean, when you sit with a corporate psychologist, they go back to your. And give you a sense of why, as you went up through the organization in terms of seniority with bp, they would make sure they, again, a brilliant company, they would make sure that you had time with a corporate psychologist to make sure that you could deal at the level you were going to operate at and with some of the stresses that were there. So it was a great company and making sure that they didn't over promote somebody into an area where they couldn't cope. So the whole point of the corporate psychologist and I did it two or three times in my career was all about caring for people and making sure that people were looked after. So it was a good thing and it was a real privilege to spend time. But they took you back to literally, you know, take you back to your childhood. Tell me about your childhood. And as I was coming up through schools I had a massive wake up call when I frankly messed up my A levels in the early 80s and then through different points through my career, you know, managed to have some amazing job opportunities in my career but you know, inevitably you had things that failed. So a big program in the sort of mid-2000s, lots of money, lots of people that frankly know we had to write off. And it was unsuccessful, me particularly, but actually, you know, I should have recognized earlier in that cycle that the program wasn't going to be successful and shut it down earlier. It was bleeding edge technology and the business weren't really committed to it. So you learn through that. Yeah, you get to learn about things you're good at and things you're not. And I had a 360 degree feedback session with my direct reports and peers, et cetera. And I thought I was quite an empowering manager until I got the 360 degree feedback from my, from the people who work from me. And basically, you know, it was they really liked working for me and a lot of positive messages. But the one message that stood out was actually Simon, you always ask for more data to make sure, you know, to assure yourself that things are on track. And so there was that sort of, that early failure in my career led me to be somebody who just wanted to make sure everything was going to be successful and therefore I just worked so hard.

Katie Kaz (7:37)

I can relate to some of those things that you're saying as well. But I think the problem that you're, we're going to get into this a bit more at the detriment of your life and your well being and all those sort of things. But before we move on to that, you said something before that the corporate psychologists sort of understood and assessed whether you could deal at the level you're going to be operating at, which was a senior global role you're always on time zones. All of the things. How do they sort of assess like, yes, Simon can deal or not deal. I know it's not so binary where it's like yes or no, but what are some of the sort of tell signs, would you say?

Simon Hodgkinson (8:13)

First of all, you've got to be able to, you know, as a technologist, and I came through from my career, has always been deeply technical. As you go up through the organization, you have to be able to deal with business leadership, you have to be able to translate, you know, technology into business language. You have to operate with the highest people in the company. You know, BP was a huge organization. You were in front of the board. I've spent a lot of time with the executive team and spent a lot of time with different committee structures. So, you know, can you flex that natural muscle to be able to cope with those different demands which in their own right, although they might not be sort of real time incidents that you're responding to can be equally stressful in terms of, you know, you want to do the very best job to, to get the outcomes you want. So they're sort of assessing you on your ability to step up to a different level of stepping stakeholders. And they also, you know, they also interview people around you before those sessions to get feedback on, you know, how do you respond. What you don't want in a crisis is somebody who runs around with their hair on fire, for instance. You need somebody who's calm, but equally somebody who's able to make some pretty tough decisions in the heat of the moment and accept the ramifications that might come from that. And so those are the sort of things, I mean, there's lots more, but those are the sort of things that they're assess through a series of interviews with people that work for or around you. But also with the interviews, you spend a lot of time with them, they take you through different psychometric tests, etc. So yeah, it's a very thorough process.

Katie Kaz (9:53)

And would you say, given your tenure in this space, perhaps there are people out there that really want the title of a SIZO Global SIZO vp? All of the things they want, the salary they want, the title, the benefits they want. I'm flying around, I'm doing all the, all the stuff, all the hoo ha. But would you say that perhaps the responsibility is like, well, now that I got the title and all the extras, I got to do the responsibility, do you think that sometimes people push more to get the title and the status over the responsibility? It Was just more of a curious question. And I know people predominantly in cybersecurity are driven by the mission, but I've just started to hear in the market over the years of people are saying oh, that person got the job. But like I think they just really wanted it for the title.

Simon Hodgkinson (10:37)

Yeah, I think this, I think people are becoming more aware of just such a tough job now an executive level. I think there's an element of sort of small to medium. You can get the title of ciso but you know, you don't really have the relationships and the scale and the scope that you do at an enterprise level. So I'm sure there's some of that and people see actually getting the title as a mechanism to stepping up through, through different organizations. I mean you call out it's actually the 10 years seem to be a little bit long. We're certainly in the UK at the moment, but it was a 12 to 18, well, probably even less than that, 11 to 18 months sort of tenure at one point being a CISO as people got the title and moved on to bigger organizations and more salary. But I do think, I think the industry is becoming more aware of the downside to the role and the downsides of the role obviously are the scope, the scale, the profile and inevitably the proverbial will hit the fan fairly regularly. Not hopefully for most organizations it won't be sort of the existential threat issue. Although lots of organizations go through some horrible events but every day you're dealing with something and sort of, you know, back to you, you made the point about you never switch off. And I think there is an element of how you're wired personally. But for me, you know, that was my problem is I could, I could never switch off. So I think ye, yes, I think to answer the question, I think there are some. But I do think, you know, the cyber community generally is very mission orientated and people who want to do the very best job they can by the companies they work for.

Katie Kaz (12:14)

So I'm talking about switching off. Do you switch off, Neil?

Simon Hodgkinson (12:17)

Oh, absolutely. In 2019 I'd been doing the job for two and a half years and prior to CISO I ran global infrastructure and operations for three years. So that was everything from data centers, networks, end user compute field services, again across the, the same scale of organization and geographies and what have you. So you add that was seven, broadly seven years doing that sort of 24 by seven job and cyber is an issue, but actually any prolonged loss of technology is incredibly stressful. I remember an event where we lost our email system for days and the business stops.

Katie Kaz (12:56)

Right.

Simon Hodgkinson (12:57)

I mean it's really, I mean email was so important to the way we communicated. That was like 12 years ago or what have you. But the reality is the pressure was similar in that role, but the profile wasn't quite the same. She didn't have the board reporting and all of that sort of stuff. But 2019, I sadly lost my eldest brother. He was in Abu Dhabi and he died of a pulmonary embolism. And my brother had gone to, you know, for last couple of years of his career to the Middle east and never made it back again. You know, he was working his socks off over there. Different profession, but again he was working all the hours God sends. And that was a real wake up call for me. And I'd previous lost my other brother. So I was then having been one of three, I was one of one at that point and it was a really big wake up call. It's like, have you really got your balance right in life? And I deeply regret prioritizing work over frankly a lot of family time as well. But now I'm in the position where I am. I've really recognized that through the event, what my brother went through and talking to his, his wife, et cetera. And also, you know what, when you reflect through that process, your own situation, you look at yourself and think, well, I just lost the plot. I absolutely lost the plot and what's important. And as I said, I deeply regret it. But now I absolutely recognize that. So, you know, not a day goes by without going out for a long walk, doing a bit of exercise, making sure in my diary, you know, there are breaks that I can do something different than just work. You know, spend time with the family, make sure my. Both my kids have moved away, make sure I reach out to them regularly to check in on how they are, stay connected with my friends. I spend more time going out and chatting with my friends or my next door neighbors. So anything just to step away from work. Now I'm in the luxurious position now of being in sort of career 2, 0 in a plural career where that same pressure that doesn't exist. But I do speak to lots, lots and lots of CISOs. Not in a formal mentoring sense, but just giving them the feedback that just don't be me, please don't be me. It isn't worth it. You know, you've got to make sure you look after your family, look after your physical and your mental health. I'm a great believer and you can't separate those two things. And a pleasure of meeting Rachel Vickery last year and hadn't even ever talked about physiological impacts of things like cyber. We'd only ever talked about psychology. And actually, I think that physiological piece is really key as well. And that to me is about keeping that balance between your physical and your mental state.

Katie Kaz (15:51)

Well, firstly, I'm really sad to hear about your brother and then your other brother. That's a lot. And I'm glad that you recognized it though. So would you say that when your brother in Dubai sadly passed away, that really was the time when you're like, hang on, there's gotta be more going on than just what I'm doing day in, day out?

Simon Hodgkinson (16:12)

Oh, absolutely. And again, I will stress that I was so lucky to work for bp. The support structure they put around me at that point and, you know, anything from helping me with kind of getting the repatriation of the body back through to making sure that I had space at work, I couldn't speak more highly of the leadership of BP around that care at a very personal level. And we obviously had people in the region and there were some amazing people that just reached out to help and navigate a different culture. So I was incredibly lucky to work for that sort of organization. Many don't when they go through those lifestyle or life issues. And so it just becomes another attitude, the stressor on top of the work stress without any kind of release valve. But I recognized then very much that I needed to change. And BP had a change of leadership in early 2020. There was a massive reorganization of the Tier 1 and Tier 2 structure. So the leadership team and the next level down. I fought very hard to get the CISO role elevated to tier 2 so it was no longer under the CIO, albeit I, you know, I had a great relationship with the CIO when I was working there and who was again was very supportive. But we managed to get the role elevated. And then obviously I, you know, they offered me the role and I said then this, you know, I've been doing the role four years. I had all this stuff in my personal life that had gone on and I asked BP if then we could look for my successor and they agreed. And you know, I spent, spent 2020 making sure we had the right successor in place. I had already hired her and she was in my organization, making sure she was ready to take over. And I left at the end of 2020. What was really interesting in that period though, I was starting to slow down a little bit and it was the middle of COVID if you recall, I went out for a run one day and I thought, wow, I feel really tired and I'm relatively fit. And I came back and said to my wife at the time, you know, I'm didn't feel great, probably Covid, but tested no Covid. Next day I jumped on the bike, same thing. I was fine just walking or just pedaling gently, but if I tried to do anything. Anyway, long story short, she said, you better phone the doctor. So I called the doctor, feeling really guilty through Covid, of course, and he sent me for a blood test and they identified I had pulmonary embolism, just exactly the thing that killed my brother. And that was the kind of real, actually, yeah, if I hadn't changed my lookout on life, I would never have called that doctor because I would have been 100% banging, focused on work. And then it was like, yeah, I'm doing the right thing. Yeah, I'm absolutely doing the right thing. Stepping back,

Katie Kaz (19:11)

if you're working in AI, machine learning or data science, you're likely already handling sensitive information proving your security and compliance posture. That's where VANTA comes in. Vanta helps AI driven teams fast track compliance. Think SOC2 ISO 27001 GDPR with minimal disruption to development. Visit vanta.com kbcast V-A-T-A.com kbcast to learn more. So when you had time and you went for the run, you obviously started to tune in a bit more around. Oh, definitely feeling a bit more tired than I normally would. And that was sort of was the impetus to, for your wife to say, call the doctor and then do further investigation. But would you say if you're operating at the level before, you would have just ignored it?

Simon Hodgkinson (20:05)

I would have ignored it. I absolutely would have. Because work was the most important thing. There was no doubt in my mind that had not made that break, I would have just knuckled down, carried on, didn't feel bad. I would just wrote it off as, yeah, nothing to worry about, I'll get better in a couple of weeks. But I probably wouldn't have had a couple of weeks. It probably would have killed me before then.

Podcast Announcer (20:27)

That's terrible.

Simon Hodgkinson (20:29)

That's life. I'm afraid that's the reality now. I am, or I will say again, I had an amazing support structure in BP that was about me, you know, and it was my. I just got so wrapped up in the job. It was so full on. If you let it be, there are some people that are able to compartmentalize things and they don't have the same issue. But, you know, when you got somebody like me who'd even been through all of that sort of testing regime that was just in me. I needed to be over everything. I needed to know everything. I needed to know everything was on track. I loved it. And I don't think I was a particularly egotistical person, KB But I actually think when you pull back the covers and you say why, then I probably was. I probably liked the profile and the fact that, you know, the job was very high profile internally in the company as well as externally as well. So I think for somebody, like I said, didn't think I had a big ego, I probably did. Just didn't recognize it.

Katie Kaz (21:29)

And you said before, I think I lost the plot. Describe losing the plot in your words.

Simon Hodgkinson (21:36)

My poor wife at the time, you know, I would come home from work and she would want to talk to me, and I would be sitting there and nodding my head, but I'd been talking to people for 12 hours by that point, and my head was on work all of the time. So, you know, invariably she said, said she would be saying something and then turn around. So you didn't hear me, did you? And it's like, oh, so, you know, I'm just so tired. Can I just need a bit of peace, quiet and what have you. So I wasn't. I wasn't there for my wife. And I deeply regret that. Right. I mean, it's like that's losing the plot. My son, at one point, not in a hurtful way. It wasn't meant to be hurtful. He'd come back from university, and I think we used to have a policy not bringing the phones to the table when you're having dinner. I can't remember the exact quote, but it was something along the lines of, you're physically here, but you're not mentally a lot of the time. And, you know, what he meant was, you know, I'd sit at the table a bit like, you know, like. Like the experience with my wife, but my kids would be talking to me and, you know, again, it would be. My mind wasn't 100% focused on my kids. My. My mind was a percentage of my mind was always in work, always in work. And again, I deeply regret that. I love my kids to death, you know, and you look back on it and you think, I should have been there for them more present there. I was there physically, but should have been up. Albeit I did travel a lot as well. But when I was physically there, I Wasn't mentally, fully, fully there for them. And I left that burden to my wife, which is just wrong. Right. That for me is losing the plot.

Katie Kaz (23:12)

One of the things that I've often heard for men in your sort of position and growing up in. My dad worked away a lot, so I'm quite familiar with how that feels. Would be, yeah, and I get that my wife's at home, but I'm like, there's more like, obviously, traditionally speaking, men, and maybe even, you know, back then, or even even younger than that would be, they were more the breadwinners and they would go out. So it's like, okay, but I'm still helping my kids, like a lot of men that I speak to, which is a lot. Rationalize it with. Yes, but I'm helping my kids because I can. I've got the job, I've got the salary to put them through the college to do the things to pay for their weddings. Where does that statement sit with you?

Simon Hodgkinson (23:54)

In some respects, I was thinking I was doing the right thing. But, you know, that's not what my kids wanted. That's not what my wife wanted. They wanted you there, both physically and mentally. And you know, money can't replace that. Right. And you can't go back. And the thing I say to tcos I talk to on a personal level about this is it's something you can never get back. All right? Money can't buy that time back. Those experiences are gone, you know? And yes, you know, you might be able to afford a better holiday, but my guess is if you sit down with your kids or your wife and you really talk about what's important, what's really important is being there as a dad to support both. And I do recognize, and I hear people say that that. And there's an element of, obviously it has benefited the family from a financial perspective, but that. That is nowhere close to the time that you've lost with your children. And being there for them all of the time and being present for them all of the time, when you're there, you know, that again, is life. Work means you will be away. And when you're at work, throwing yourself in 100%. Absolutely right. Exactly. What you should do and you should commit to it, it when you're at home, make sure you spend time and focus on your family.

Katie Kaz (25:13)

So one of the things I'm curious to know now is people you said before you had to backfill, the successor came in. So did that lady inherit some of your problems? Was it just a personal thing? And I asked this because to do these sort of roles, sometimes it really is required from someone. You can't change time zones. Like, if it's in all over the world, you do unfortunately have to be on. And I'm just trying to see how do people get to the point where they can manage and not have this, to regret and feel like they're losing the plot also, whilst maintaining that level of, hey, I'm doing this job, I'm being paid to do this job. How do you find that balance? And I know that's a really hard question to ask, but, like, someone at the end of the day does need to do the job, or is it just when you're in the job and we've seen it, you said it before, there's. It's like clockwork. Someone's in, then they're out. How do we address that problem? Because unfortunately, it's one of those sort of jobs. You don't know what's going to hit you that day, what's going to come up. It's not like you choose to spend your Saturday dealing with an incident. But I think this is a really big question because we do need these people in these roles. But is it at the detriment of not spending time with their family and potentially eroding their health, or. I'm just curious to understand from your perspective, Simon, given what you've shared with me already today.

Simon Hodgkinson (26:37)

I think there's a lot in who you are, so I think there are people that are better able to compartmentalize those two, you know, your work and your life. I think it's about recognizing the quality of your team as well. I had a great team and as I said, I shared that the fact I had a 360 and people said I wasn't particularly empowering because I was always seeking assurance. I could have done a lot more to say, actually, I'm not here. You know, I had people in Houston, I had people around the globe who were more than capable of stepping in. But it was a. It was something in me that wanted to be part of all of that, wanted to know everything that was going on. So it's a lot, I think a lot about how you're wired personally. That said, I was working in an enterprise with terrific support at BP from the Executive Dome. So I had had good level of resourcing, right tools, right people, et cetera. I speak to lots of CISOs in the market that don't have that. So then it comes down to. Actually, it's down to you and whether you're prepared to make that stand and say, no, I've gone home now and I'm going to let my soc manage this overnight and only call me if it's, if it's really gone pear shaped or, you know, if I not get involved in projects, I'm going to compartmentalize my time and focus more on the strategic elements, things like governance, risk and compliance, all of the board stuff. But I was over all of it and that was just a lot about me. So I think CISOs need to really, really focus on, you know, get focused on what do they really need to get involved in, what are their top priorities, how do they compartmentalize that time? And also some people should consider whether you said about people coming into the role, there's also a question of timing, right. Where are you in your life cycle? Cycle? If I went back now and, you know, no, my kids were older when I moved into those roles, but if my kids were really young and somebody offered me that role then, knowing what I do now, I would turn it down just because I would want to be there. There's a lot of regret in this. Of course I would wanted to be there a lot more for my, my family.

Katie Kaz (28:52)

So do you believe there is a burnout crisis happening in the cybersecurity industry today?

Simon Hodgkinson (28:59)

Yes. My litmus test for that is how many people talk to me about this is the last job I'm doing. I want to go into the plural career and assuming that's an easier way because of the stresses and the strains of the role. So that would be my litmus test. Now I talk to a lot of CISOs at kind of enterprise level and tend to be more of my sort of age and therefore they are naturally coming to sort of at that pivot point in their career. But an awful lot of them are just like the stress and the overheads are just so enormous that I want to do something different.

Katie Kaz (29:34)

So do you believe that there's going to be a deficit of people? Because, I mean, depends on who you are. So I've heard over the years like, oh, we don't enough people. But then people might listen to this and go, you know what, what Simon said, I'm absolutely never doing senior role like that because I don't want to lose my family and my health and all these things that you discussed with me today, which I appreciate. Where does that leave the industry then? As I mentioned, like someone does have to do the role. So does that mean that we're going to have people that are perhaps not ready to do that role, but then there's no one else because people like, well, actually it sounds stressful and I'm not, I don't want to do it. Or where does that, where does that land?

Simon Hodgkinson (30:09)

I think you're always going to have enough people who put their hands up to do the role at different stages in their life. The big question is, are they ready for it? Because it's not, you know, it's not like if you look at my career was always through a technical background. You know, I worked for commercial software companies, went in and worked in investment banking at Lehman Brothers, did a.com, joined BP, all in technical roles, and then grew into a role that, frankly is one of the most important business leadership roles there are going now. I was lucky again, I worked in a company that gave me all the right support and coaching and mentoring to make that level. I think you've got a lot of people see it as this ability to make more money, get a high profile, maybe move to the next job, next company, et cetera. The question is, are they doing it for the right reasons and are they aware of the stresses and the strains? I'm not sure necessarily. Everybody is. I think hopefully people will listen to this podcast not to stop people doing the role, but to actually give them the ability to think about what are their red lines, what are they going to put in place and say, actually, yes, I'd love to take your role, whichever company they're applying for, but here's a lot about me. I've got a young family. I'm going to make sure that my Saturdays and Sundays, unless there's a major incident, I ain't going to work them. I'm going to make sure I spend time with my families. You know, I need to be home at 6 o' clock in the evening because that's when the family has their dinner and I want to spend time with my kids and being a bit more sort of declarative over what your own red lines are as you move into what is a very high profile, getting more high profile, especially with things like AI coming in and CISOs inevitably picking up the rush to AI problems, which there are many and will cause a lot more incidents. But I think actually people, if they listen to this and take one thing away, is be clear about what your red lines are and make sure you implement.

Katie Kaz (32:12)

Do you think, looking back, you were ever fixated on things that perhaps it's not like it didn't matter, but maybe weren't as Important, perhaps. For example, I've worked with. I mean, I haven't worked for someone for a long time, but I have worked with previous bosses that were really fixated on how policy was written and I get that's important, but sometimes it's like there's a little bit too much OCD going on in there and they're sort of driven by the document rather than the outcome of the document, like how the document looks. I'm just using as an example, do you think that perhaps that absorbed some of your time as well, of just. You said you had to be across everything and do you think looking back on it, you focused on things in addition to your intense tasks that really you didn't need to?

Simon Hodgkinson (32:55)

Yeah, yeah, for sure. I had an amazing team of people, but I wanted to be involved. I am a techno, I love technology. Right. So there were lots of incidents and technical issues that I really didn't need to get involved in. But. But I was fascinated by it and I was keen to get roll my sleeves up. And some of my best times were like sitting with the tech guys on an incident bridge trying to figure out how we fix things. I actually really loved being the decision maker. So, you know, when we had very significant incidents, I loved to be part of that. It was almost like a hero culture. And back to. I didn't think I had an ego, but I really did, you know, that made me feel important. So. Yeah, absolutely. No question, no question. And Again, amplifying the 360 degree feedback, you know, I had a great team in place. When you get into those roles, you hire a good team. Right. And then make sure you empower them by not doing their job for them.

Katie Kaz (33:51)

You were the best person to make the decision at the end of the day that no one else could, perhaps in your absence.

Simon Hodgkinson (33:57)

Yes, I probably did that quite a lot. And people could have made the decision and in many respects they did make the decision. There was a little bit of me making sure that I gave people who work for me ear cover. So if I made the decision and the decision was wrong, that was down to me. If they made the decision, I didn't want them to be exposed necessarily. So there was an element of that as well.

Katie Kaz (34:20)

You mentioned before you had great support from bp. I know that other people that I speak to in this market right across the world do not. So what do you think they do then? Maybe they don't have the support. Maybe, you know, their boss doesn't really care at the end of the day, or it's about the shareholders. Maybe you were lucky, you were lucky, but other people aren't as lucky. So what would you sort of advise for people that are listening? They're in this position, they're like, well, I don't really have any support going on.

Simon Hodgkinson (34:49)

So I think a couple of things I think back to, you know, when you go into those roles, make sure you're clear with whoever's hiring you. Whatever company you're applying for, make sure they, they're clear about your position and your red lines, how you work. So it's not a one way interview process. You're interviewing them as well. You know, you want to make sure you work for the right organization, that they're going to allow you to do the things that are important to you. That takes a fair bit of majority to do. But actually if they respond well to that, you're probably working for a decent organization. So I think that's kind of one element that is important. And, and I think, well then there's being utterly transparent. I think some of the conversations I have with CISOs are not one to expose some of the issues that exist in organizations. The job of the ciso, in fact the job of anybody who manages risk, which is pretty much everybody in an organization, is to speak up, up and be clear about the risk position. Not in a the sky's falling in way, but in a very balanced business narrative is like if you choose not to do this, this is the likelihood and the impact of something happening and that's your decision. Ultimately the CEO and the board are accountable for all the risk. Don't try and hide things, don't try and cover gaps with sort of narrative that isn't factual and to the point. Your job is to make, make sure that the organization is aware of the risk they're taking. If that's fine, if that's within their risk appetite, well, like every other risk in a business, that's okay, they've accepted it and move on. I see a lot of CISOs not wanting to do that because they see it as failure, but that will end up coming to bite you on the backside. So utter transparency and being clear about what your red lines I would say are two critical points.

Katie Kaz (36:43)

You mentioned before that now you're more of a luxurious position. So you're doing a lot of senior advising for companies like Sempris. But if you didn't do the role before, do you think you'd be in the position you are in now? So is there some light at the end of the tunnel or not really, absolutely.

Simon Hodgkinson (37:01)

The relationships that I had been that's given me access to do this role. And I think that's why I end up speaking to a lot of people who are looking at career 2.0 now. They've done big roles as CISOs and they see opportunities is to do something different and not have that level of accountability necessarily. So yeah, absolutely. Without that role, you know, my prior role was a big role as well, running global infrastructure and ops. I'm sure that would have led me to potentially similar opportunities and actually work it. I just love working with Semperous largely because they're incredibly mature startup. You know, Mickey Bresman and the team are, you know, they have this mission of a force for good. They look out for this. So it's great to work with a company that sort of. I have aligned values on with that. But equally, you know, I had a lot of background in infrastructure and ops as well. So Sempras often sits between security and infra. So it's been ideal in that respect. I was talking to somebody last week over breakfast and they were talking about interim roles and interim roles are interesting. I've been off with quite a few different interim roles, but I tend to think that what you end up doing, certainly I know my personality. If I went in for an interim role, I want to make a big difference in six months. So I'd probably work a damn sight harder just to make a difference and therefore my own personal red line say sorry. Even though the thing's interesting, Simon, don't put yourself in that position again. Interim roles as a ciso, I mean, and I'm very clear that I know myself more now. What I've learned about myself and what drives me. I know if I did that I would put myself back in the same position, if not worse than I was at bp. So I'm just not going to do it. That's my personal red line.

Katie Kaz (38:51)

So what drives you now?

Simon Hodgkinson (38:53)

Desperately love. I love working with tech, so I really enjoy working with the startup community. I love seeing these companies solving real business problems. There's so many business problems out there and seeing them mature. So I've been with Sampras five years and seeing them go from sub hundred people to over 500, you know, they've got the biggest and the best marquee brands in the world as customers now. It's just been an amazing delight actually to see an organization that was a startup go through, scale up, et cetera. It's fantastic. And you know, I'm at the back end of my career now and I've got quite a lot of experience. So anything I can do to help those organizations be successful and see them grow is just amazing. And it's not easy, right? I mean, you know, I talked about the stress of the ciso, but you know, the stress for these companies going from zero to a scale up organization, it comes with a lot of pain as well along the way. So a lot of pressure on selling and all of that. So it's different stress and strain, but still stress and strain nonetheless.

Katie Kaz (40:00)

And lastly, Simon, what would you like to leave our audience with today?

Simon Hodgkinson (40:04)

Well, I'd really like to think by sharing my own experience it might help people frame a little bit about how they compartmentalise, how they get really clear about what's important in life. And it's not work. We talk about work, life balance. It should be life, work balance, the way we talk about it, the things that really can to your family and your friends and making sure you prioritize that over work. And hence this notion of getting clear about what your red lines are and being clearer with your leadership about, you know, if you take the role, this is how I'm going to do it. These are the things I'm going to protect. Unless obviously if there's a massive ransomware attack that sort of goes out the window. But in day to day operations which includes loads of incidents all the time, this is the way I'm going to work. I'm going to prioritize my family. So really get clear on what's important to you, what your red lines are and be utterly transparent about that as well as being trans utterly transparent with your organization about the kind of risk posture as well. They will hide anything.

Podcast Announcer (41:13)

This is kabcast, the Voice of Cyber.

Katie Kaz (41:18)

Thanks for tuning in for more industry leading news and thought provoking articles visit KBI Media to get access today.

Podcast Announcer (41:26)

This this episode is brought to you by MercSec. Your smarter route to security talent MercSec's executive search has helped enterprise organizations find the right people from around the world since 2012. Their on demand talent acquisition team helps startups and mid sized businesses scale faster and more efficiently. Find out more@mercsec.com today.