Darren Mott - A Wake-Up Call for Corporate America

Critical Stats

LinkedIn: https://www.linkedin.com/in/darrenmott/

Started their cybersecurity journey in: 1977 (I was only 11, but my mother was a computer programmer at her bank, and MAN was that computer a behemoth. That is where my interest in computers began.)

Most passionate about: Educating and protecting individuals and businesses so they can “Understand the threats targeting them, assess their risk, and proceed wisely!”

Favorite zero-day: The Morris Worm (it started it all, and we seemingly still haven’t learned!)

Favorite song: “More Than a Feeling” by Boston

Introduction

With over two decades in the FBI, Darren Mott brings unparalleled expertise in cybercrime and counterintelligence operations to the cybersecurity landscape. As a retired Special Agent, he now channels his extensive experience into protecting organizations through strategic cyber defense education. His unique background bridges law enforcement and modern cybersecurity, making him a sought-after expert in navigating today's complex digital threats.

Darren is a mover-and-shaker!

We selected Darren because he is a mover-and-shaker! His years conducting high-stakes investigations and leading cybercrime operations have provided him with real-world insights that inform his current mission: empowering businesses and individuals with practical, innovative approaches to cybersecurity. Darren's hands-on experience with nation-state actors and sophisticated cyber criminals allows him to offer an unmatched perspective on threat detection, incident response, and strategic defense. He is also a really great guy! All former FBI Agents are, btw… #facts. LOL.

Did I mention that he is a published author? He wrote Get Cyber Smart: A User-friendly Guide to Protecting Your Family, Your Business, and Yourself Online. Without further ado, we asked Darren our standard set of 5 questions to rule them all, and here are his responses:

Five questions to rule them all!

1. What is the biggest problem we are dealing with in cybersecurity?

The biggest issue is businesses of all sizes' failure to understand that they are targeted by cyber bad actors (CBA). Size doesn’t matter; every company has something a CBA wants. The fact that large Fortune 500 companies continue to be compromised should highlight this for small to mid-sized businesses, but the belief that “we are too small to be targeted” is still rampant.

2. How can we address the fact that organizations of all sizes fail to understand that cyber bad actors target them?

I often use a story (not mine) about a group of people adrift in the ocean after their boat capsized. A helicopter is sent to save them, but it is realized that it is too small to save everyone, so it hovers about 50 feet from the group. Some instinctively swim away from the helicopter, and some swim towards it. Cybersecurity professionals can only save those who “swim” toward them, so start there.

Simply put, as cybersecurity professionals, I recommend we find businesses and individuals who want to protect themselves and help them. After those organizations prove more resilient and better suited to defend against CBAs, others will see that success and “swim” toward us.

3. What are three actions a CEO can take to protect their company from cyberattacks?

I would tell a CEO a few things. I would say, “You need to:

1. Prepare for the fact that you are a target and are constantly targeted by CBAs from both the criminal and nation-state realms.

2. Start your cybersecurity journey by doing the basics.  Have a third party assess your current posture and surface fundamental issues you must address.

3. Understand that good cybersecurity hygiene does NOT have to be expensive, but it has a cost. However, this expense is significantly less than the collective cost of a single cyber “incident,” especially when you factor in all of the expenses: legal fees, data recovery, system remediation, loss of business, reputational damage, regulatory fines, erosion of customer trust, loss of intellectual property, diminished employee morale, and the list goes on.

4. What are the best resources for learning more about cybersecurity?

1. The CyBUr Smart Morning News Update - Okay, this is self-serving, as it is my podcast. Still, it provides businesses and individuals with knowledge of current cyber issues that impact them in a straightforward, non-technical manner.

2. The Dr. Zero Trust Podcast - Dr. Chase Cunningham’s podcast takes a practical/no-nonsense approach to current cyber trends and news.

3. Top Cyber News NOW by Gerald Auger (SimplyCyber) - This is a detailed look at daily cyber news, AND you can get continuing education credits by watching it. Plus, Gerald gets deeper into the technical weeds than Chase or myself.

5. What is one piece of advice for those wanting to pursue a cybersecurity career?

I have a few things to say here:

1. You don’t need a four-year degree to get started, although it isn’t bad to have one if that is the route you want to take. Have at it! I have two Master's degrees myself, so I get higher education. That said, you can accelerate into the field quicker by getting some basic certifications and getting in the door somewhere.

2. Once you get into a role at an organization, take as much leadership training as possible. The cybersecurity world needs “wrench turners,” but strong leaders are even more critical. Strong leadership is required to drive the vision and effectively build a defense against CBAs. However, effective leadership in the field is lacking. I instituted a leadership development program at a former employer to address this issue. In summary, good leaders must drive positive cybersecurity changes to ensure we operate in a safer online world.

It's alive! It's alive! The article is alive, it must be shared with everyone! Psst… I am talking to you. Yes, you. Share it! Please and thank you. 😉

Are you looking to go to a persona page?

Cyber 101 | The Solopreneur | SMB | BoD