Jean-Christoph von Oertzen

What Fantasy Role-Playing Games Can Teach Us About Cybersecurity Roles

jean-christoph — Fri, 14 Nov 2025 18:34:47 +0000

— And why your SOC might actually need a Bard 🐉⚔️ Cybersecurity teams are often compared to armies, fire brigades, or special forces. Personally? I think they’re much closer to a party of heroes in a classic fantasy role-playing game. No matter how many frameworks, SIEMs, or AI tools we summon, defending a digital kingdom […]

The post What Fantasy Role-Playing Games Can Teach Us About Cybersecurity Roles appeared first on Jean-Christoph von Oertzen.

Lessons from Sun Tzu’s “The Art of War” in Cybersecurity: Timeless Wisdom or Outdated Tactics?

jean-christoph — Sat, 29 Mar 2025 13:08:40 +0000

Introduction Sun Tzu’s "The Art of War" is a legendary strategic treatise written more than 2,500 years ago. Its enduring principles of warfare strategy have transcended military boundaries, influencing disciplines from business management to competitive sports. In today’s digital age, its relevance is increasingly apparent in the cybersecurity landscape, particularly for CISOs of medium-sized enterprises, […]

The post Lessons from Sun Tzu’s “The Art of War” in Cybersecurity: Timeless Wisdom or Outdated Tactics? appeared first on Jean-Christoph von Oertzen.

Ransomware Resilience Starts in the Mind: Overcoming Cognitive Biases and Decision-Making Errors in Cybersecurity

jean-christoph — Sun, 09 Feb 2025 18:52:45 +0000

Why We Keep Losing Despite Stronger Security Controls Over the past three years, businesses have almost doubled their confidence in cybersecurity—rising from 32% in 2021 to 54% in 2024 (The Global Cost of Ransomware Study, 2025). Despite this, ransomware’s impact has only grown: 40% of affected companies suffered significant revenue losses, 58% experienced operational downtime, […]

The post Ransomware Resilience Starts in the Mind: Overcoming Cognitive Biases and Decision-Making Errors in Cybersecurity appeared first on Jean-Christoph von Oertzen.

AI Cyber Security 2025: Key Threats and Essential Strategies for Your Business

jean-christoph — Tue, 21 Jan 2025 07:05:05 +0000

Artificial Intelligence is transforming businesses and industries worldwide, but with this transformation comes unprecedented challenges. The recent launch of Cisco AI Defense, a specialized AI security solution, highlights the urgency of securing AI applications. According to Cisco, only 29% of enterprises feel fully prepared to detect and prevent unauthorized manipulations of AI systems. This low […]

The post AI Cyber Security 2025: Key Threats and Essential Strategies for Your Business appeared first on Jean-Christoph von Oertzen.

SPQA: A Radical AI Architecture—and Why Security Must Adapt

jean-christoph — Sat, 21 Dec 2024 18:00:04 +0000

Introduction Until recently, many developers laughed at the notion that Artificial Intelligence might write their code someday. Yet code assistants like Cursor, Bolt.new, and Copilot—already adopted by 51% of enterprises [1]—show how swiftly AI is reshaping software development. At the same time, spending on generative AI skyrocketed from $2.3 billion in 2023 to $13.8 billion […]

The post SPQA: A Radical AI Architecture—and Why Security Must Adapt appeared first on Jean-Christoph von Oertzen.

European Cybersecurity Awareness Month: Key Takeaways for a Safer Digital Future

jean-christoph — Mon, 02 Dec 2024 23:16:02 +0000

October is synonymous with the European Cybersecurity Awareness Month (ECSM), a time when cybersecurity professionals around the world unite to promote awareness and share valuable insights. Throughout this month, I shared a series of LinkedIn posts that highlighted various facets of cybersecurity, including password managers, multifactor authentication (MFA), the dangers of phishing, and the revolutionary […]

The post European Cybersecurity Awareness Month: Key Takeaways for a Safer Digital Future appeared first on Jean-Christoph von Oertzen.

CISSP Essentials: Why It’s Crucial Beyond IT and My Best Exam Prep Tips

jean-christoph — Sat, 27 Jul 2024 16:42:00 +0000

What is the CISSP (for non-IT people)? Most people in my social circle aren’t involved in information security, nor are they in IT. So when I shared my achievement of passing the CISSP exam, they congratulated me, but I could see in their eyes that they were uncertain about how much of a celebration I […]

The post CISSP Essentials: Why It’s Crucial Beyond IT and My Best Exam Prep Tips appeared first on Jean-Christoph von Oertzen.

Webinar takeaway – MailFail – Who’s Spoofing Your Email and How Are They Doing It?

jean-christoph — Thu, 27 Jun 2024 18:22:15 +0000

My key takeaways SPF ensures that the SMTP FROM domain explicitly allows the connecting IP address. SPF does NOT ensure that the email address seen by the user is the one which was checked. the existance of SMTP FROM and the From field is a vulnarability: SPF checks SMTP FROM but most mail clients show […]

The post Webinar takeaway – MailFail – Who’s Spoofing Your Email and How Are They Doing It? appeared first on Jean-Christoph von Oertzen.

Boosting Cybersecurity in German SMEs with Gamification and Serious Play

jean-christoph — Wed, 01 May 2024 13:14:14 +0000

TL;DR Gamified cybersecurity training offers an engaging and effective way to improve security awareness and practices within German SMEs. The ALARM Information Security project demonstrates the success of integrating gamification into training, enhancing retention and understanding of cybersecurity principles. By leveraging customized game scenarios, regular workshops, and participatory feedback loops, SMEs can bolster their cybersecurity […]

The post Boosting Cybersecurity in German SMEs with Gamification and Serious Play appeared first on Jean-Christoph von Oertzen.

Unlock Effective Cybersecurity: Simplify Policies with the Clarity of the OSI Model

jean-christoph — Mon, 18 Mar 2024 23:01:59 +0000

TL;DR Diving into the essence of effective cybersecurity, this article shines a light on the transformative power of simplifying policy language, inspired by the OSI model’s structured communication layers. It goes beyond theoretical insights, offering actionable strategies for CISOs to demystify complex jargon and make cybersecurity policies accessible and engaging for every team member. Highlighting […]

The post Unlock Effective Cybersecurity: Simplify Policies with the Clarity of the OSI Model appeared first on Jean-Christoph von Oertzen.